Palo Alto Networks Security Advisories /CVE-2025-0136CVE-2025-0136 PAN-OS: Unencrypted Data Transfer when using AES-128-CCM on Intel-based hardware devicesUrgencyMODERATE047910Severity1.3 ·LOWExploit MaturityUNREPORTEDResponse EffortMODERATERecoveryUSERValue...
Palo Alto Networks Security Advisories /CVE-2025-0131CVE-2025-0131 GlobalProtect App: Incorrect Privilege Management Vulnerability in OPSWAT MetaDefender Endpoint Security SDKUrgencyMODERATE047910Severity4 ·MEDIUMExploit MaturityUNREPORTEDResponse...
Palo Alto Networks Security Advisories /CVE-2025-0135CVE-2025-0135 GlobalProtect App on macOS: Non Admin User Can Disable the GlobalProtect AppUrgencyMODERATE047910Severity1.8 ·LOWExploit MaturityUNREPORTEDResponse...
Palo Alto Networks Security Advisories /CVE-2025-0130CVE-2025-0130 PAN-OS: Firewall Denial-of-Service (DoS) in the Web-Proxy Feature via a Burst of Maliciously Crafted...
Palo Alto Networks Security Advisories /PAN-SA-2025-0009PAN-SA-2025-0009 Chromium: Monthly Vulnerability Update (May 2025)UrgencyMODERATE047910Severity7.6 ·HIGHExploit MaturityUNREPORTEDResponse EffortLOWRecoveryUSERValue DensityDIFFUSEAttack VectorNETWORKAttack ComplexityLOWAttack RequirementsNONEAutomatableNOUser InteractionACTIVEProduct...
Palo Alto Networks Security Advisories /CVE-2025-0134CVE-2025-0134 Cortex XDR Broker VM: Authenticated Code Injection Vulnerability in Broker VMUrgencyMODERATE047910Severity2.6 ·LOWExploit MaturityUNREPORTEDResponse EffortMODERATERecoveryUSERValue...
Palo Alto Networks Security Advisories /CVE-2025-0137CVE-2025-0137 PAN-OS: Improper Neutralization of Input in the Management Web InterfaceUrgencyMODERATE047910Severity1.1 ·LOWExploit MaturityUNREPORTEDResponse EffortMODERATERecoveryUSERValue DensityCONCENTRATEDAttack...
Palo Alto Networks Security Advisories /CVE-2025-0132CVE-2025-0132 Cortex XDR Broker VM: Unauthenticated User Can Disable Internal ServicesUrgencyMODERATE047910Severity2.7 ·LOWExploit MaturityUNREPORTEDResponse EffortMODERATERecoveryUSERValue DensityCONCENTRATEDAttack...
Ransomware Group: AKIRA VICTIM NAME: Franman NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Ransomware Group: AKIRA VICTIM NAME: Murphy Pearson Bradley & Feeney NOTE: No files or stolen information are by RedPacket Security....
Reflected XSS on esto.nasa.gov allows arbitrary JavaScript execution and redirection Reflected XSS on esto.nasa.gov allows arbitrary JavaScript execution and redirection...
an confidential pdf regarding technical memorandom an confidential pdf regarding technical memorandom Researcher: SahilGadhe Engagement: National Aeronautics and Space Administration...
Information Disclosure through configuration and various logs Information Disclosure through configuration and various logs Researcher: yashjare Engagement: National Aeronautics and...
Hardcoded API Key Found in Public NASA GitHub Repository Hardcoded API Key Found in Public NASA GitHub Repository Researcher: Uma_Maheshwar_Ayyala...
Stored XSS in NASA ASRS Maintenance Form – Payload Executes on Print Page Stored XSS in NASA ASRS Maintenance Form...
Exposed Python Script with Hardcoded SFTP Credentials, Internal IPs, and Sensitive Data Access Exposed Python Script with Hardcoded SFTP Credentials,...
Possible Public Exposure of CONFIDENTIAL Document on NASA NTRS Possible Public Exposure of CONFIDENTIAL Document on NASA NTRS Researcher: b1t3x0p...
Improper Access Control: Authenticated Resource Exposed via Wayback Machine Archive- Nasa sheets& docs Improper Access Control: Authenticated Resource Exposed via...
Reflected XSS Vulnerability in SEWP Provider Lookup Tool - www.sewp.nasa.gov Reflected XSS Vulnerability in SEWP Provider Lookup Tool - www.sewp.nasa.gov...
EXIF Geolocation Data Not Stripped in NASA CDSCC Image - Exposure of Sensitive Location (Canberra Deep Space Communication Complex) EXIF...
Public Exposure of Internal Calibration Planning File on heasarc.gsfc.nasa.gov (XMM-Newton) Public Exposure of Internal Calibration Planning File on heasarc.gsfc.nasa.gov (XMM-Newton)...
Public Exposure of Internal Calibration Planning File on heasarc.gsfc.nasa.gov (XMM-Newton) Public Exposure of Internal Calibration Planning File on heasarc.gsfc.nasa.gov (XMM-Newton)...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Ransomware Group: MEDUSA VICTIM NAME: Trindel Insurance Fund NOTE: No files or stolen information are by RedPacket Security. Any legal...
