CISA: CISA Issues Emergency Directive on Ivanti Vulnerabilities
CISA Issues Emergency Directive on Ivanti Vulnerabilities CISA has issued Emergency Directive (ED) 24-01 Mitigate Ivanti Connect Secure and Ivanti...
CISA: VMware Releases Security Advisory for Aria Automation
VMware Releases Security Advisory for Aria Automation VMware released a security advisory to address a vulnerability (CVE-2023-34063) in Aria Automation....
Preventing Data Loss: Backup and Recovery Strategies for Exchange Server Administrators
In the current digital landscape, data has emerged as a crucial asset for organizations, akin to currency. It's the lifeblood...
Experts Warn of macOS Backdoor Hidden in Pirated Versions of Popular Software
Pirated applications targeting Apple macOS users have been observed containing a backdoor capable of granting attackers remote control to infected...
Active Exploitation of Critical Vulnerability in Ivanti Products
There are reports of active exploitation of a critical authentication bypass vulnerability (CVE-2023-35082) in Ivanti's Endpoint Manager Mobile (EPMM) and...
Oracle Outside In Technology unspecified | CVE-2024-20930
NAME__________Oracle Outside In Technology unspecifiedPlatforms Affected:Oracle Outside In Technology 8.5.6Risk Level:6.3Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified vulnerability in Oracle Outside In Technology related...
Oracle Knowledge Management unspecified | CVE-2024-20948
NAME__________Oracle Knowledge Management unspecifiedPlatforms Affected:Oracle Knowledge Management 12.2.3 Oracle Knowledge Management 12.2.13Risk Level:6.1Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified vulnerability in Oracle Knowledge Management...
PAX Technology A920Pro/A50 devices code execution | CVE-2023-42135
NAME__________PAX Technology A920Pro/A50 devices code executionPlatforms Affected:PAX Technology A920 Pro 11.1.50_20230614 PAX Technology A50 11.1.50_20230614Risk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________PAX Technology A920Pro/A50...
Oracle WebCenter Sites unspecified | CVE-2024-20908
NAME__________Oracle WebCenter Sites unspecifiedPlatforms Affected:Oracle WebCenter Sites 12.2.1.4.0Risk Level:6.1Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified vulnerability in Oracle WebCenter Sites related to the Advanced...
Tenda A15 buffer overflow | CVE-2024-0531
NAME__________Tenda A15 buffer overflowPlatforms Affected:Tenda A15 15.13.07.13Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Tenda A15 is vulnerable to a stack-based buffer overflow, caused by...
StackIdeas EasyDiscuss SQL injection | CVE-2023-51810
NAME__________StackIdeas EasyDiscuss SQL injectionPlatforms Affected:StackIdeas EasyDiscuss 5.0.5 StackIdeas EasyDiscuss 5.0.10Risk Level:6.5Exploitability:HighConsequences:Obtain Information DESCRIPTION__________StackIdeas EasyDiscuss is vulnerable to SQL injection. A...
Oracle ZFS Storage Appliance Kit unspecified | CVE-2024-20959
NAME__________Oracle ZFS Storage Appliance Kit unspecifiedPlatforms Affected:Oracle ZFS Storage Appliance Kit 8.8Risk Level:4.4Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified vulnerability in Oracle ZFS Storage...
Oracle Solaris unspecified | CVE-2024-20946
NAME__________Oracle Solaris unspecifiedPlatforms Affected:Oracle Solaris 11Risk Level:5.5Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified vulnerability in Oracle Solaris related to the Kernel component could allow...
Taokeyun Drs.php SQL injection | CVE-2024-0480
NAME__________Taokeyun Drs.php SQL injectionPlatforms Affected:taokeyun taokeyun 1.0.5Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Taokeyun is vulnerable to SQL injection. A remote attacker could send...
Xitami denial of service |
NAME__________Xitami denial of servicePlatforms Affected:xitami xitami 2.5Risk Level:5.3Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________Xitami is vulnerable to a denial of service,...
Oracle Integrated Lights Out Manager (ILOM) unspecified | CVE-2024-20906
NAME__________Oracle Integrated Lights Out Manager (ILOM) unspecifiedPlatforms Affected:Oracle Integrated Lights Out Manager (ILOM) 3 Oracle Integrated Lights Out Manager (ILOM)...
Synology RT6600ax code execution | CVE-2024-21473
NAME__________Synology RT6600ax code executionPlatforms Affected:Synology RT6600axRisk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Synology RT6600ax could allow a remote attacker to execute arbitrary code on...
Oracle ZFS Storage Appliance Kit unspecified | CVE-2024-20914
NAME__________Oracle ZFS Storage Appliance Kit unspecifiedPlatforms Affected:Oracle ZFS Storage Appliance Kit 8.8Risk Level:2.3Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified vulnerability in Oracle ZFS Storage...
Oracle WebCenter Content unspecified | CVE-2024-20928
NAME__________Oracle WebCenter Content unspecifiedPlatforms Affected:Oracle WebCenter Content 12.2.1.4.0Risk Level:6.1Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified vulnerability in Oracle WebCenter Content related to the Content...
Tenda A15 buffer overflow | CVE-2024-0533
NAME__________Tenda A15 buffer overflowPlatforms Affected:Tenda A15 15.13.07.13Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Tenda A15 is vulnerable to a stack-based buffer overflow, caused by...
Oracle Knowledge Management unspecified | CVE-2024-20940
NAME__________Oracle Knowledge Management unspecifiedPlatforms Affected:Oracle Knowledge Management 12.2.3 Oracle Knowledge Management 12.2.13Risk Level:6.1Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified vulnerability in Oracle Knowledge Management...
PAX Technology POS terminals code execution | CVE-2023-42137
NAME__________PAX Technology POS terminals code executionPlatforms Affected:PAX Technology POS terminals 11.1.50_20230614Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________PAX Technology POS terminals could allow a...
IBM Maximo Spatial Asset Management server-side request forgery | CVE-2023-32337
NAME__________IBM Maximo Spatial Asset Management server-side request forgeryPlatforms Affected:IBM Maximo Application Suite 8.10Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________IBM Maximo Spatial Asset Management...
Oracle One-to-One Fulfillment unspecified | CVE-2024-20936
NAME__________Oracle One-to-One Fulfillment unspecifiedPlatforms Affected:Oracle One-to-One Fulfillment 12.2.3 Oracle One-to-One Fulfillment 12.2.13Risk Level:6.1Exploitability:UnprovenConsequences:Unknown DESCRIPTION__________An unspecified vulnerability in Oracle One-to-One Fulfillment...
