Medusa Locker Ransomware Victim: Richmond Fellowship Scotland
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: The Gainsborough Bath
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: Waldner’s
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Black Basta Ransomware Victim: southernwater[.]co[.]uk
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
52% of Serious Vulnerabilities We Find are Related to Windows 10
We analyzed 2,5 million vulnerabilities we discovered in our customer's assets. This is what we found. Digging into the data...
FTC Bans InMarket for Selling Precise User Location Without Consent
The U.S. Federal Trade Commission (FTC) is continuing to clamp down on data brokers by prohibiting InMarket Media from selling...
NS-STEALER Uses Discord Bots to Exfiltrate Your Secrets from Popular Browsers
Cybersecurity researchers have discovered a new Java-based "sophisticated" information stealer that uses a Discord bot to exfiltrate sensitive data from...
Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition unspecified | CVE-2024-20919
NAME__________Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition unspecifiedPlatforms Affected:Oracle GraalVM Enterprise Edition 21.3.8 Oracle GraalVM Enterprise...
TianoCore EDK II denial of service | US-CERT VU#132380
NAME__________TianoCore EDK II denial of servicePlatforms Affected:Risk Level:7.5Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________TianoCore EDK II is vulnerable to a denial...
TianoCore EDK II information disclosure | US-CERT VU#132380
NAME__________TianoCore EDK II information disclosurePlatforms Affected:Risk Level:6.5Exploitability:Proof of ConceptConsequences:Obtain Information DESCRIPTION__________TianoCore EDK II could allow a remote attacker to obtain...
Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition unspecified | CVE-2024-20921
NAME__________Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition unspecifiedPlatforms Affected:Oracle GraalVM Enterprise Edition 21.3.8 Oracle GraalVM Enterprise...
TianoCore EDK II denial of service | US-CERT VU#132380
NAME__________TianoCore EDK II denial of servicePlatforms Affected:Risk Level:7.5Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________TianoCore EDK II is vulnerable to a denial...
Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition unspecified | CVE-2024-20945
NAME__________Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition unspecifiedPlatforms Affected:Oracle GraalVM Enterprise Edition 21.3.8 Oracle GraalVM Enterprise...
Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition unspecified | CVE-2024-20952
NAME__________Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition unspecifiedPlatforms Affected:Oracle GraalVM Enterprise Edition 22.3.2 Oracle GraalVM Enterprise...
PHPGurukul Company Visitor Management System cross-site scripting | CVE-2024-0652
NAME__________PHPGurukul Company Visitor Management System cross-site scriptingPlatforms Affected:PHPGurukul Company Visitor Management System 1.0Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________PHPGurukul Company Visitor Management System...
TianoCore EDK II information disclosure | US-CERT VU#132380
NAME__________TianoCore EDK II information disclosurePlatforms Affected:Risk Level:5.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________TianoCore EDK II could allow a remote attacker to obtain sensitive information,...
Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition unspecified | CVE-2024-20918
NAME__________Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition unspecifiedPlatforms Affected:Oracle GraalVM Enterprise Edition 22.3.2 Oracle GraalVM Enterprise...
Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition unspecified | CVE-2024-20926
NAME__________Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition unspecifiedPlatforms Affected:Oracle GraalVM Enterprise Edition 22.3.2 Oracle GraalVM Enterprise...
ZhiHuiYun server-side request forgery | CVE-2024-0649
NAME__________ZhiHuiYun server-side request forgeryPlatforms Affected:ZhiHuiYun ZhiHuiYun 4.4.13Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ZhiHuiYun is vulnerable to server-side request forgery, caused by a flaw...
Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition unspecified | CVE-2024-20932
NAME__________Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition unspecifiedPlatforms Affected:Oracle GraalVM Enterprise Edition 22.3.2 Oracle GraalVM Enterprise...
Sparksuite SimpleMDE cross-site scripting | CVE-2024-0647
NAME__________Sparksuite SimpleMDE cross-site scriptingPlatforms Affected:Sparksuite SimpleMDE 1.11.2Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Sparksuite SimpleMDE is vulnerable to cross-site scripting, caused by improper validation...
Plone CMS cross-frame scripting | CVE-2024-0669
NAME__________Plone CMS cross-frame scriptingPlatforms Affected:Plone Plone CMS 6.0.6Risk Level:6.3Exploitability:HighConsequences:Obtain Information DESCRIPTION__________Plone CMS is vulnerable to cross-frame scripting, caused by improper...
AtroCore AtroPIM cross-site scripting | CVE-2024-0696
NAME__________AtroCore AtroPIM cross-site scriptingPlatforms Affected:AtroCore AtroPIM 1.8.4Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________AtroCore AtroPIM is vulnerable to cross-site scripting, caused by improper validation...
DeepFaceLab code execution | CVE-2024-0654
NAME__________DeepFaceLab code executionPlatforms Affected:DeepFaceLab DeepFaceLab pretrained DeepFaceLab DeepFaceLab DF.wf.288res.384.92.72.22Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________DeepFaceLab could allow a remote attacker to execute arbitrary...
