CVE Alert: CVE-2024-49268
Vulnerability Summary: CVE-2024-49268 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in sunburntkamel disconnected allows...
CVE Alert: CVE-2024-49265
Vulnerability Summary: CVE-2024-49265 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Partnerships at Booking.Com...
CVE Alert: CVE-2024-20280
Vulnerability Summary: CVE-2024-20280 A vulnerability in the backup feature of Cisco UCS Central Software could allow an attacker with access...
CVE Alert: CVE-2024-20460
Vulnerability Summary: CVE-2024-20460 A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could...
CVE Alert: CVE-2024-20420
Vulnerability Summary: CVE-2024-20420 A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could...
CVE Alert: CVE-2024-10033
Vulnerability Summary: CVE-2024-10033 A vulnerability was found in aap-gateway. A Cross-site Scripting (XSS) vulnerability exists in the gateway component. This...
Cobalt Strike Beacon Detected – 47[.]108[.]159[.]178:5555
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 119[.]91[.]95[.]88:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[SARCOMA] – Ransomware Victim: Auxit S[.]r[.]l
Ransomware Group: SARCOMA VICTIM NAME: Auxit Srl NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
SideWinder APT Strikes Middle East and Africa With Stealthy Multi-Stage Attack
An advanced persistent threat (APT) actor with suspected ties to India has sprung forth with a flurry of attacks against...
U.S. Charges Two Sudanese Brothers for Record 35,000 DDoS Attacks
Federal prosecutors in the U.S. have charged two Sudanese brothers with running a distributed denial-of-service (DDoS) botnet for hire that...
Microsoft Monthly Security Update (June 2024)
Updated Risk, Description, Source and Related Links.CVE-2024-30088 is being exploited in the wild. This is a Windows Kernel Time-of-check Time-of-use (TOCTOU)...
CVE Alert: CVE-2024-20458
Vulnerability Summary: CVE-2024-20458 A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could...
CVE Alert: CVE-2024-20463
Vulnerability Summary: CVE-2024-20463 A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could...
CVE Alert: CVE-2024-20421
Vulnerability Summary: CVE-2024-20421 A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapter firmware could...
CVE Alert: CVE-2024-20459
Vulnerability Summary: CVE-2024-20459 A vulnerability in the web-based management interface of Cisco ATA 190 Multiplatform Series Analog Telephone Adapter firmware...
CVE Alert: CVE-2024-20512
Vulnerability Summary: CVE-2024-20512 A vulnerability in the web-based management interface of Cisco Unified Contact Center Management Portal (Unified CCMP) could...
CVE Alert: CVE-2024-20461
Vulnerability Summary: CVE-2024-20461 A vulnerability in the CLI of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an authenticated,...
CVE Alert: CVE-2024-38814
Vulnerability Summary: CVE-2024-38814 An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A malicious authenticated user...
CVE Alert: CVE-2024-20462
Vulnerability Summary: CVE-2024-20462 A vulnerability in the web-based management interface of Cisco ATA 190 Series Multiplatform Analog Telephone Adapter firmware...
CVE Alert: CVE-2024-45072
Vulnerability Summary: CVE-2024-45072 IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML External Entity Injection (XXE) attack...
CVE Alert: CVE-2024-45071
Vulnerability Summary: CVE-2024-45071 IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to stored cross-site scripting. This vulnerability allows a...
Power-PWN: A Comprehensive Guide to Offensive and Defensive Security for Microsoft 365
Power-PWN is a sophisticated offensive security toolset designed to test and identify vulnerabilities in Microsoft 365 environments. It supports red...
Critical Kubernetes Image Builder Vulnerability Exposes Nodes to Root Access Risk
A critical security flaw has been disclosed in the Kubernetes Image Builder that, if successfully exploited, could be abused to...
