Year: 2023

Qualcomm Chipsets code execution | CVE-2022-40515

March 10, 2023

NAME__________Qualcomm Chipsets code executionPlatforms Affected:Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Qualcomm Chipsets could allow a remote attacker to execute arbitrary code on the...

Qualcomm Chipsets code execution | CVE-2022-33278

March 10, 2023

NAME__________Qualcomm Chipsets code executionPlatforms Affected:Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Qualcomm Chipsets could allow a local authenticated attacker to execute arbitrary code on...

Qualcomm Chipsets denial of service | CVE-2022-33244

March 10, 2023

NAME__________Qualcomm Chipsets denial of servicePlatforms Affected:Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Qualcomm Chipsets are vulnerable to a denial of service, caused by...

Agilebio Electronic Lab Notebook file inclusion | CVE-2023-24217

March 10, 2023

NAME__________Agilebio Electronic Lab Notebook file inclusionPlatforms Affected:Risk Level:5.5Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________Agilebio Electronic Lab Notebook could allow a remote authenticated...

Google Chrome Extensions API security bypass | CVE-2023-1221

March 10, 2023

NAME__________Google Chrome Extensions API security bypassPlatforms Affected:Google Chrome 111.0Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Google Chrome could allow a remote attacker to bypass...

Multiple Buffalo products default account | CVE-2023-26588

March 10, 2023

NAME__________Multiple Buffalo products default accountPlatforms Affected:Buffalo BS-GSL2024 firmware 1.10-0.03 Buffalo BS-GSL2016P firmware 1.10-0.03 Buffalo BS-GSL2016 firmware 1.10-0.03 Buffalo BS-GS2008 firmware...

Parallels Desktop privilege escalation | CVE-2023-27328

March 10, 2023

NAME__________Parallels Desktop privilege escalationPlatforms Affected:Parallels Desktop 18.1Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Parallels Desktop could allow a local authenticated attacker to gain elevated...

Fortinet FortiSOAR security bypass | CVE-2023-25605

March 10, 2023

NAME__________Fortinet FortiSOAR security bypassPlatforms Affected:Risk Level:7.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Fortinet FortiSOAR could allow a remote attacker to bypass security restrictions, caused by...

Fortinet FortiProxy and Fortinet FortiOS information disclosure | CVE-2022-41329

March 10, 2023

NAME__________Fortinet FortiProxy and Fortinet FortiOS information disclosurePlatforms Affected:Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Fortinet FortiProxy and Fortinet FortiOS could allow a remote attacker...

Google Chrome Navigation security bypass | CVE-2023-1225

March 10, 2023

NAME__________Google Chrome Navigation security bypassPlatforms Affected:Google Chrome 111.0Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Google Chrome could allow a remote attacker to bypass security...

Fortinet FortiWeb and Fortinet FortiRecorder information disclosure | CVE-2022-22297

March 10, 2023

NAME__________Fortinet FortiWeb and Fortinet FortiRecorder information disclosurePlatforms Affected:Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Fortinet FortiWeb and Fortinet FortiRecorder could allow a local authenticated...

CMP plugin for WordPress information disclosure | CVE-2023-1263

March 10, 2023

NAME__________CMP plugin for WordPress information disclosurePlatforms Affected:WordPress GMP Plugin for WordPress 4.1.6Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________CMP plugin for WordPress could allow...

Google Chrome Web Payments API security bypass | CVE-2023-1224

March 10, 2023

NAME__________Google Chrome Web Payments API security bypassPlatforms Affected:Google Chrome 111.0Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Google Chrome could allow a remote attacker to...

Fortinet FortiOS and Fortinet FortiProxy denial of service | CVE-2022-45861

March 10, 2023

NAME__________Fortinet FortiOS and Fortinet FortiProxy denial of servicePlatforms Affected:Fortinet FortiOS 6.2.8 Fortinet FortiOS 6.4.8 Fortinet FortiOS 6.4.9 Fortinet FortiOS 7.0.4...

SourceCodester Health Center Patient Record Management System SQL injection | CVE-2023-1253

March 10, 2023

NAME__________SourceCodester Health Center Patient Record Management System SQL injectionPlatforms Affected:Sourcecodester Health Center Patient Record Management System 1.0Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________SourceCodester...

Parallels Desktop privilege escalation | CVE-2023-27325

March 10, 2023

Apache HTTP Server request splitting | CVE-2023-25690

March 10, 2023

NAME__________Apache HTTP Server request splittingPlatforms Affected:Apache HTTP Server 2.4.17 Apache HTTP Server 2.4.48 Apache HTTP Server 2.4.50 Apache HTTP Server...

Parallels Desktop privilege escalation | CVE-2023-27324

March 10, 2023

Directus information disclosure | CVE-2023-27481

March 10, 2023

NAME__________Directus information disclosurePlatforms Affected:Directus Directus 9.15.1Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Directus could allow a remote authenticated attacker to obtain sensitive information, caused...

Apache Dubbo code execution | CVE-2023-23638

March 10, 2023

NAME__________Apache Dubbo code executionPlatforms Affected:Apache Dubbo 2.7.0 Apache Dubbo 3.0.0 Apache Dubbo 3.1.0 Apache Dubbo 2.7.21 Apache Dubbo 3.0.13 Apache...

XWiki Platform information disclosure | CVE-2023-27480

March 10, 2023

NAME__________XWiki Platform information disclosurePlatforms Affected:XWiki XWiki Platform 13.10.10 XWiki XWiki Platform 14.4.6 XWiki XWiki Platform 14.9Risk Level:7.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________XWiki Platform...

Year: 2023

Qualcomm Chipsets code execution | CVE-2022-40515

Qualcomm Chipsets code execution | CVE-2022-33278

Qualcomm Chipsets denial of service | CVE-2022-33244

Agilebio Electronic Lab Notebook file inclusion | CVE-2023-24217

Google Chrome Extensions API security bypass | CVE-2023-1221

Multiple Buffalo products default account | CVE-2023-26588

Parallels Desktop privilege escalation | CVE-2023-27328

Fortinet FortiSOAR security bypass | CVE-2023-25605

Fortinet FortiProxy and Fortinet FortiOS information disclosure | CVE-2022-41329

Google Chrome Navigation security bypass | CVE-2023-1225

Fortinet FortiWeb and Fortinet FortiRecorder information disclosure | CVE-2022-22297

CMP plugin for WordPress information disclosure | CVE-2023-1263

Google Chrome Web Payments API security bypass | CVE-2023-1224

Fortinet FortiOS and Fortinet FortiProxy denial of service | CVE-2022-45861

SourceCodester Health Center Patient Record Management System SQL injection | CVE-2023-1253

Parallels Desktop privilege escalation | CVE-2023-27325

Apache HTTP Server request splitting | CVE-2023-25690

Parallels Desktop privilege escalation | CVE-2023-27324

Directus information disclosure | CVE-2023-27481

Apache Dubbo code execution | CVE-2023-23638

XWiki Platform information disclosure | CVE-2023-27480

Foxit Reader code execution | CVE-2023-27329

Foxit Reader code execution | CVE-2023-27331

Cisco IOS XR Software information disclosure | CVE-2023-20064

Cobalt Strike Beacon Detected – 193[.]112[.]83[.]36:8080

Cobalt Strike Beacon Detected – 60[.]204[.]245[.]37:8080

Cobalt Strike Beacon Detected – 118[.]24[.]117[.]221:8080

Cobalt Strike Beacon Detected – 47[.]120[.]13[.]85:8889

Cobalt Strike Beacon Detected – 20[.]41[.]73[.]175:8080

You may have missed