CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
OSINT
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Eight Industrial Control Systems Advisories
CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on December 19, 2024. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: Fortinet Releases Security Updates for FortiManager
Fortinet Releases Security Updates for FortiManager Fortinet released a security update to address a vulnerability in FortiManager. A remote cyber...
CVE Alert: CVE-2024-50701
Vulnerability Summary: CVE-2024-50701 TeamPass before 3.1.3.1, when retrieving information about access rights for a folder, does not properly check whether...
CVE Alert: CVE-2024-54181
Vulnerability Summary: CVE-2024-54181 IBM WebSphere Automation 1.7.5 could allow a remote privileged user, who has authorized access to the swagger...
CVE Alert: CVE-2024-50702
Vulnerability Summary: CVE-2024-50702 TeamPass before 3.1.3.1 does not properly check whether a mail_me (aka action_mail) operation is on behalf of...
CVE Alert: CVE-2024-10044
Vulnerability Summary: CVE-2024-10044 A Server-Side Request Forgery (SSRF) vulnerability exists in the POST /worker_generate_stream API endpoint of the Controller API...
CVE Alert: CVE-2024-50703
Vulnerability Summary: CVE-2024-50703 TeamPass before 3.1.3.1 does not properly prevent a user from acting with the privileges of a different...
CVE Alert: CVE-2024-12835
Vulnerability Summary: CVE-2024-12835 Delta Electronics DRASimuCAD ICS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers...
CVE Alert: CVE-2024-12754
Vulnerability Summary: CVE-2024-12754 AnyDesk Link Following Information Disclosure Vulnerability. This vulnerability allows local attackers to disclose sensitive information on affected...
CVE Alert: CVE-2024-12834
Vulnerability Summary: CVE-2024-12834 Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers...
CVE Alert: CVE-2024-12836
Vulnerability Summary: CVE-2024-12836 Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers...
CVE Alert: CVE-2024-12828
Vulnerability Summary: CVE-2024-12828 Webmin CGI Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code...
[FUNKSEC] – Ransomware Victim: RaaS Open
Ransomware Group: FUNKSEC VICTIM NAME: RaaS Open NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2024-56733
Vulnerability Summary: CVE-2024-56733 Password Pusher is an open source application to communicate sensitive information over the web. A vulnerability has...
CVE Alert: CVE-2024-46542
Vulnerability Summary: CVE-2024-46542 Veritas / Arctera Data Insight before 7.1.1 allows Application Administrators to conduct SQL injection attacks. Affected Endpoints:...
CVE Alert: CVE-2024-56800
Vulnerability Summary: CVE-2024-56800 Firecrawl is a web scraper that allows users to extract the content of a webpage for a...
CVE Alert: CVE-2024-52294
Vulnerability Summary: CVE-2024-52294 Khoj is a self-hostable artificial intelligence app. Prior to version 1.29.10, an Insecure Direct Object Reference (IDOR)...
CVE Alert: CVE-2024-56799
Vulnerability Summary: CVE-2024-56799 Simofa is a tool to help automate static website building and deployment. Prior to version 0.2.7, due...
CVE Alert: CVE-2024-13043
Vulnerability Summary: CVE-2024-13043 Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges...
CVE Alert: CVE-2024-11944
Vulnerability Summary: CVE-2024-11944 iXsystems TrueNAS CORE tarfile.extractall Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute...
