Stopping A Targeted Attack On A Managed Service Provider Msp With Threatdown Mdr
In late January 2024, the ThreatDown Managed Detection and Response (MDR) team found and stopped a three-month long malware campaign...
Akira Ransomware Victim: DTN Management Compa ny
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Dark Angel Victim: Supply Technologies LLC
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
medikoo es5-ext denial of service | CVE-2024-27088
NAME__________medikoo es5-ext denial of servicePlatforms Affected:medikoo es5-ext 0.10.0 medikoo es5-ext 0.10.62Risk Level:0Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________medikoo es5-ext is vulnerable to a...
WithSecure products denial of service | CVE-2024-27359
NAME__________WithSecure products denial of servicePlatforms Affected:WithSecure Client Security 15 WithSecure Server Security 15 WithSecure Email and Server Security 15 WithSecure...
ESPHome code execution | CVE-2024-27081
NAME__________ESPHome code executionPlatforms Affected:ESPHome ESPHome 2023.12.9 ESPHome ESPHome 2024.2.0Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ESPHome could allow a remote authenticated attacker to execute...
MLflow cross-site scripting | CVE-2024-27132
NAME__________MLflow cross-site scriptingPlatforms Affected:MLflow Project MLflow 2.9.1 MLflow Project MLflow 2.9.2Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________MLflow is vulnerable to cross-site scripting, caused...
Kirby cross-site scripting | CVE-2024-27087
NAME__________Kirby cross-site scriptingPlatforms Affected:Kirby Kirby 4.0.0 Kirby Kirby 4.1.0Risk Level:4.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Kirby is vulnerable to cross-site scripting, caused by improper...
Hoppscotch open redirect | CVE-2024-27092
NAME__________Hoppscotch open redirectPlatforms Affected:Hoppscotch Hoppscotch 2023.12.5Risk Level:5.4Exploitability:UnprovenConsequences:Other DESCRIPTION__________Hoppscotch could allow a remote authenticated attacker to conduct phishing attacks, caused by...
Minder denial of service | CVE-2024-27093
NAME__________Minder denial of servicePlatforms Affected:Stacklok Minder 0.0.31 Stacklok Minder 0.0.30 Stacklok Minder 0.0.29Risk Level:4.6Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Minder is vulnerable to...
HPE Aruba ClearPass Policy Manager command execution | CVE-2024-26298
NAME__________HPE Aruba ClearPass Policy Manager command executionPlatforms Affected:HPE Aruba ClearPass Policy Manager 6.9 HPE Aruba ClearPass Policy Manager 6.10 HPE...
HPE Aruba ClearPass Policy Manager information disclosure | CVE-2024-26302
NAME__________HPE Aruba ClearPass Policy Manager information disclosurePlatforms Affected:HPE Aruba ClearPass Policy Manager 6.9 HPE Aruba ClearPass Policy Manager 6.10 HPE...
HPE Aruba ClearPass Policy Manager cross-site scripting | CVE-2024-26299
NAME__________HPE Aruba ClearPass Policy Manager cross-site scriptingPlatforms Affected:HPE Aruba ClearPass Policy Manager 6.9 HPE Aruba ClearPass Policy Manager 6.10 HPE...
HPE Aruba ClearPass Policy Manager cross-site scripting | CVE-2024-26300
NAME__________HPE Aruba ClearPass Policy Manager cross-site scriptingPlatforms Affected:HPE Aruba ClearPass Policy Manager 6.9 HPE Aruba ClearPass Policy Manager 6.10 HPE...
HPE Aruba ClearPass Policy Manager command execution | CVE-2024-26295
NAME__________HPE Aruba ClearPass Policy Manager command executionPlatforms Affected:HPE Aruba ClearPass Policy Manager 6.9 HPE Aruba ClearPass Policy Manager 6.10 HPE...
HPE Aruba ClearPass Policy Manager command execution | CVE-2024-26297
NAME__________HPE Aruba ClearPass Policy Manager command executionPlatforms Affected:HPE Aruba ClearPass Policy Manager 6.9 HPE Aruba ClearPass Policy Manager 6.10 HPE...
Amazon Fire OS weak security | CVE-2024-27350
NAME__________Amazon Fire OS weak securityPlatforms Affected:Amazon Fire OS 7 Amazon Fire OS 8 Amazon Fire OS 7.6.6.8 Amazon Fire OS...
Apache Superset SQL injection | CVE-2024-24772
NAME__________Apache Superset SQL injectionPlatforms Affected:Apache Superset 3.0.3 Apache Superset 3.1.0Risk Level:5.4Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Apache Superset is vulnerable to SQL injection. A...
Apache Superset security byass | CVE-2024-26016
NAME__________Apache Superset security byassPlatforms Affected:Apache Superset 3.0.3 Apache Superset 3.1.0Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Apache Superset could allow a remote authenticated attacker...
Performance Co-Pilotweak security | CVE-2023-6917
NAME__________Performance Co-Pilotweak securityPlatforms Affected:Performance Co-Pilot Performance Co-Pilot 6.1.1 Performance Co-Pilot Performance Co-Pilot 6.1.0 Performance Co-Pilot Performance Co-Pilot 6.0.5 Performance Co-Pilot...
HPE Aruba ClearPass Policy Manager information disclosure | CVE-2024-26301
NAME__________HPE Aruba ClearPass Policy Manager information disclosurePlatforms Affected:HPE Aruba ClearPass Policy Manager 6.9 HPE Aruba ClearPass Policy Manager 6.10 HPE...
Google Chrome denial of service |
NAME__________Google Chrome denial of servicePlatforms Affected:Google Chromium 121.0.6152.0 Google Chrome 119.0.6045.160Risk Level:4.6Exploitability:Consequences:Denial of Service DESCRIPTION__________Google Chrome is vulnerable to a...
Apache Superset SQL injection | CVE-2024-27315
NAME__________Apache Superset SQL injectionPlatforms Affected:Apache Superset 3.0.3 Apache Superset 3.1.0Risk Level:3.8Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Apache Superset is vulnerable to SQL injection. A...
Coffee module for Drupal cross-site scripting |
NAME__________Coffee module for Drupal cross-site scriptingPlatforms Affected:Drupal Drupal Drupal Coffee module for Drupal 1.3.0Risk Level:5.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Coffee module for Drupal...
