Knight Ransomware Victim: Kinesis Film Srl
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Knight Ransomware Victim: Guhring was hacked[.] Thousands of confidential files stolen[.]
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Knight Ransomware Victim: Faieta Motorcompany IT
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Knight Ransomware Victim: AKBASOGLU HOLDING Trans KA
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Knight Ransomware Victim: BMW Munique Motors
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Knight Ransomware Victim: Mario de Cecco – Workwear & Corporate Wear IT
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Lenovo Desktop, Smart Edge and ThinkStation products privilege escalation | CVE-2023-45075
NAME__________Lenovo Desktop, Smart Edge and ThinkStation products privilege escalationPlatforms Affected:Lenovo ThinkStation Lenovo Desktop Lenovo Smart EdgeRisk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Lenovo Desktop,...
Lenovo Desktop, Smart Edge and ThinkStation products privilege escalation | CVE-2023-45076
NAME__________Lenovo Desktop, Smart Edge and ThinkStation products privilege escalationPlatforms Affected:Lenovo ThinkStation Lenovo Desktop Lenovo Smart EdgeRisk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Lenovo Desktop,...
SAP S/4HANA Core information disclosure | CVE-2023-42475
NAME__________SAP S/4HANA Core information disclosurePlatforms Affected:SAP S/4Hana Core S4CORE 102 SAP S/4Hana Core S4CORE 103 SAP S/4Hana Core S4CORE 104...
IBM Security Verify Governance file upload | CVE-2023-35903
NAME__________IBM Security Verify Governance file uploadPlatforms Affected:IBM Security Verify Governance 10.0Risk Level:3.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________IBM Security Verify Governance 10.0 could allow...
HCL BigFix Insights for Vulnerability Remediation (IVR) information disclosure | CVE-2022-44757
NAME__________HCL BigFix Insights for Vulnerability Remediation (IVR) information disclosurePlatforms Affected:HCL BigFix IVR 2.0.2Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________HCL BigFix Insights for Vulnerability...
Node.js undici module information disclosure | CVE-2023-45143
NAME__________Node.js undici module information disclosurePlatforms Affected:Node.js undici 5.26.1Risk Level:3.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Node.js undici module could allow a remote authenticated attacker to...
Microsoft Windows TCP/IP denial of service | CVE-2023-36603
NAME__________Microsoft Windows TCP/IP denial of servicePlatforms Affected:Microsoft Windows Server 2019 Microsoft Windows 10 1809 for x64-based Systems Microsoft Windows 10...
HCL BigFix Insights for Vulnerability Remediation (IVR) information disclosure | CVE-2022-44758
NAME__________HCL BigFix Insights for Vulnerability Remediation (IVR) information disclosurePlatforms Affected:HCL BigFix IVR 2.0.2Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________HCL BigFix Insights for Vulnerability...
IBM Security Verify Governance privilege escalation | CVE-2023-35018
NAME__________IBM Security Verify Governance privilege escalationPlatforms Affected:IBM Security Verify Governance 10.0Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________IBM Security Verify Governance 10.0, Identity Manager...
Node.js Multiple Vulnerabilities
Multiple vulnerabilities have been identified in Node.js. A remote attacker can exploit these vulnerabilities to trigger denial of service, security...
US-CERT Vulnerability Summary for the Week of October 2, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infoacronis -- agentLocal privilege escalation due to improper soft link handling. The...
HBSQLI – Automated Tool For Testing Header Based Blind SQL Injection
HBSQLI is an automated command-line tool for performing Header Based Blind SQL injection attacks on web applications. It automates the...
JSpector – A Simple Burp Suite Extension To Crawl JavaScript (JS) Files In Passive Mode And Display The Results Directly On The Issues
JSpector is a Burp Suite extension that passively crawls JavaScript files and automatically creates issues with URLs, endpoints and dangerous...
Microsoft Windows TCP/IP denial of service | CVE-2023-36603
NAME__________Microsoft Windows TCP/IP denial of servicePlatforms Affected:Microsoft Windows Server 2019 Microsoft Windows 10 1809 for x64-based Systems Microsoft Windows 10...
Siemens SICAM PAS/PQS privilege escalation | CVE-2023-45205
NAME__________Siemens SICAM PAS/PQS privilege escalationPlatforms Affected:Siemens SICAM PAS 8.00 Siemens SICAM PAS 8.21 Siemens SICAM PQS 8.00 Siemens SICAM PQS...
SAP S/4HANA Core information disclosure | CVE-2023-42475
NAME__________SAP S/4HANA Core information disclosurePlatforms Affected:SAP S/4Hana Core S4CORE 102 SAP S/4Hana Core S4CORE 103 SAP S/4Hana Core S4CORE 104...
Lenovo Desktop, Smart Edge and ThinkStation products privilege escalation | CVE-2023-45075
NAME__________Lenovo Desktop, Smart Edge and ThinkStation products privilege escalationPlatforms Affected:Lenovo ThinkStation Lenovo Desktop Lenovo Smart EdgeRisk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Lenovo Desktop,...
Plixer Scrutinizer information disclosure | CVE-2023-41262
NAME__________Plixer Scrutinizer information disclosurePlatforms Affected:Plixer Scrutinizer 19.3.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Plixer Scrutinizer is vulnerable to SQL injection. A remote attacker could...
