Month: May 2023

Sierra Wireless AirVantage information disclosure | CVE-2023-31280

May 12, 2023

NAME__________Sierra Wireless AirVantage information disclosurePlatforms Affected:Sierra Wireless AirVantageRisk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Sierra Wireless AirVantage could allow a remote attacker to obtain...

DigitalPersona FPSensor privilege escalation | CVE-2023-2644

May 12, 2023

NAME__________DigitalPersona FPSensor privilege escalationPlatforms Affected:DigitalPersona FPSensor 1.0.0.1Risk Level:5.3Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________DigitalPersona FPSensor could allow a local authenticated attacker to gain elevated...

Month: May 2023

Sierra Wireless AirVantage information disclosure | CVE-2023-31280

DigitalPersona FPSensor privilege escalation | CVE-2023-2644

TP-Link Archer C7 V2 denial of service | CVE-2023-2646

PTC Vuforia Studio security bypass | CVE-2023-29152

Teltonika RUT router code execution | CVE-2023-32349

Online Exam System SQL injection | CVE-2023-2642

File Tracker Manager System SQL injection | CVE-2023-2643

PTC Vuforia Studio cross-site request forgery | CVE-2023-31200

PTC Vuforia Studio file upload | CVE-2023-27881

PTC Vuforia Studio information disclosure | CVE-2023-29168

Lost and Found Information System SQL injection | CVE-2023-2653

VMware Aria Operations privilege escalation | CVE-2023-20880

Former Ubiquiti dev who extorted the firm gets six years in prison

Twitter rolls out encrypted DMs, but only for paying accounts

Multinational tech firm ABB hit by Black Basta ransomware attack

Babuk code used by 9 ransomware gangs to encrypt VMWare ESXi servers

Brightly warns of SchoolDude data breach exposing credentials

WordPress Elementor plugin bug let attackers hijack accounts on 1M sites

Stealthier version of Linux BPFDoor malware spotted in the wild

CISA: CISA Urges Organizations to Incorporate the FCC Covered List Into Risk Management Plans

CISA: Microsoft Releases May 2023 Security Updates

CISA: CISA Releases One Industrial Control Systems Advisory

CISA: CISA Releases One Industrial Control Systems Advisory

CISA: CISA Releases Two Industrial Control Systems Advisories

[INCRANSOM] – Ransomware Victim: VZW Avalon

Ai Layoffs To Backfire: Half Quietly Rehired At Lower Pay

[BLACKSHRANTAC] – Ransomware Victim: The Matlusky Firm LLC

[QILIN] – Ransomware Victim: bagnoles[.]nl

[BLACKSHRANTAC] – Ransomware Victim: ApleNet Co[.], Ltd

You may have missed