CVE Alert: CVE-2024-53256
Vulnerability Summary: CVE-2024-53256 Rizin is a UNIX-like reverse engineering framework and command-line toolset. `rizin.c` still had an old snippet of...
OSINT
CVE Alert: CVE-2024-55539
Vulnerability Summary: CVE-2024-55539 Weak algorithm used to sign RPM package. The following products are affected: Acronis Cyber Protect Cloud Agent...
CVE Alert: CVE-2024-12903
Vulnerability Summary: CVE-2024-12903 Incorrect default permissions vulnerability in Evoko Home, affecting version 2.4.2 to 2.7.4. A non-admin user could exploit...
CVE Alert: CVE-2024-12902
Vulnerability Summary: CVE-2024-12902 ANCHOR from Global Wisdom Software is an integrated product running on a Windows virtual machine. The underlying...
CVE Alert: CVE-2018-25106
Vulnerability Summary: CVE-2018-25106 A vulnerability, which was classified as critical, has been found in webuidesigning NebulaX Theme up to 5.0...
CVE Alert: CVE-2024-56364
Vulnerability Summary: CVE-2024-56364 SimpleXLSX is software for parsing and retrieving data from Excel XLSx files. Starting in 1.0.12 and ending...
CVE Alert: CVE-2024-56362
Vulnerability Summary: CVE-2024-56362 Navidrome is an open source web-based music collection server and streamer. Navidrome stores the JWT secret in...
CVE Alert: CVE-2024-53961
Vulnerability Summary: CVE-2024-53961 ColdFusion versions 2023.11, 2021.17 and earlier are affected by an Improper Limitation of a Pathname to a...
CVE Alert: CVE-2024-56363
Vulnerability Summary: CVE-2024-56363 APTRS (Automated Penetration Testing Reporting System) is a Python and Django-based automated reporting tool designed for penetration...
[FUNKSEC] – Ransomware Victim: itc[.]gov[.]ae with 1K !
Ransomware Group: FUNKSEC VICTIM NAME: itcgovae with 1K ! NOTE: No files or stolen information are by RedPacket Security. Any...
[FUNKSEC] – Ransomware Victim: egyptair[.]com 5 sell
Ransomware Group: FUNKSEC VICTIM NAME: egyptaircom 5 sell NOTE: No files or stolen information are by RedPacket Security. Any legal...
[FUNKSEC] – Ransomware Victim: asjp[.]cerist[.]dz sell
Ransomware Group: FUNKSEC VICTIM NAME: asjpceristdz sell NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Eight Industrial Control Systems Advisories
CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on December 3, 2024. These...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA and Partners Release Joint Guidance on PRC-Affiliated Threat Actor Compromising Networks of Global Telecommunications Providers
CISA and Partners Release Joint Guidance on PRC-Affiliated Threat Actor Compromising Networks of Global Telecommunications Providers Today, CISA—in partnership with...
CISA: CISA Releases Six Industrial Control Systems Advisories
CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on November 26, 2024. These...
CISA: ASD’s ACSC, CISA, and US and International Partners Release Guidance on Choosing Secure and Verifiable Technologies
ASD’s ACSC, CISA, and US and International Partners Release Guidance on Choosing Secure and Verifiable Technologies Today, CISA—in partnership with...
CISA: Cisco Releases Security Updates for NX-OS Software
Cisco Releases Security Updates for NX-OS Software Cisco released security updates to address a vulnerability in Cisco NX-OS software. A...
CISA: CISA Releases New Public Version of CDM Data Model Document
CISA Releases New Public Version of CDM Data Model Document Today, the Cybersecurity and Infrastructure Security Agency (CISA) released an...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on December 5, 2024. These...
CISA: Ivanti Releases Security Updates for Multiple Products
Ivanti Releases Security Updates for Multiple Products Ivanti released security updates to address vulnerabilities in Ivanti Cloud Service Application, Ivanti...
CISA: Adobe Releases Security Updates for Multiple Products
Adobe Releases Security Updates for Multiple Products Adobe released security updates to address vulnerabilities in multiple Adobe software products including...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
