CVE Alert: CVE-2024-47183
Vulnerability Summary: CVE-2024-47183 Parse Server is an open source backend that can be deployed to any infrastructure that can run...
OSINT
CVE Alert: CVE-2024-25707
Vulnerability Summary: CVE-2024-25707 There is a reflected cross site scripting in Esri Portal for ArcGIS 11.1 and below on Windows...
[RANSOMHUB] – Ransomware Victim: winwinza[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: winwinzacom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-38039
Vulnerability Summary: CVE-2024-38039 There is an HTML injection vulnerability in Esri Portal for ArcGIS versions 11.0 and below that may...
CVE Alert: CVE-2024-25701
Vulnerability Summary: CVE-2024-25701 There is a stored Cross-site Scripting vulnerability in Esri Portal for ArcGIS Enterprise Experience Builder versions 10.8.1...
CVE Alert: CVE-2024-25694
Vulnerability Summary: CVE-2024-25694 There is a stored Cross-site Scripting vulnerability in Esri Portal for ArcGIS Enterprise versions 10.8.1 – 10.9.1...
CVE Alert: CVE-2024-38040
Vulnerability Summary: CVE-2024-38040 There is a local file inclusion vulnerability in Esri Portal for ArcGIS 11.2. 11.1, 11.0 and 10.9.1...
CVE Alert: CVE-2024-25702
Vulnerability Summary: CVE-2024-25702 There is a stored Cross-site Scripting vulnerability in Esri Portal for ArcGIS Enterprise Sites versions 10.8.1 –...
CVE Alert: CVE-2024-38037
Vulnerability Summary: CVE-2024-38037 There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.0 and 10.9.1 that may allow...
CVE Alert: CVE-2024-8148
Vulnerability Summary: CVE-2024-8148 There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 10.8.1 - 11.2 that may allow...
CVE Alert: CVE-2024-47911
Vulnerability Summary: CVE-2024-47911 In SonarSource SonarQube 10.4 through 10.5 before 10.6, a vulnerability was discovered in the authorizations/group-memberships API endpoint...
CVE Alert: CVE-2024-8149
Vulnerability Summary: CVE-2024-8149 There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 11.1 and 11.2 which may...
CVE Alert: CVE-2024-38038
Vulnerability Summary: CVE-2024-38038 There is a reflected XSS vulnerability in Esri Portal for ArcGIS versions 10.9.1, 10.8.1 and 10.7.1 which...
[INCRANSOM] – Ransomware Victim: Storck-Baugesellschaft mbH
Ransomware Group: INCRANSOM VICTIM NAME: Storck-Baugesellschaft mbH NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
Cobalt Strike Beacon Detected – 112[.]124[.]68[.]87:2222
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 154[.]216[.]19[.]161:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 124[.]220[.]180[.]112:2087
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 45[.]147[.]200[.]140:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 123[.]60[.]83[.]46:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]245[.]97[.]19:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2024-47136
Vulnerability Summary: CVE-2024-47136 Out-of-bounds read vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.14.0...
CVE Alert: CVE-2024-47135
Vulnerability Summary: CVE-2024-47135 Stack-based buffer overflow vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version...
CISA: CISA Releases Analysis of FY23 Risk and Vulnerability Assessments
CISA Releases Analysis of FY23 Risk and Vulnerability Assessments CISA has released an analysis and infographic detailing the findings from...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...