US-CERT Vulnerability Summary for the Week of October 16, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info1e -- platformAffected 1E Platform versions have a Blind SQL Injection vulnerability...
PatchaPalooza – A Comprehensive Tool That Provides An Insightful Analysis Of Microsoft’s Monthly Security Updates
A comprehensive tool that provides an insightful analysis of Microsoft's monthly security updates. IF you are interested in seing all...
HackerOne Bug Bounty Disclosure: b-bypass-report-submit-restriction-ban-using-the-api-key-b-light-r
Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'light3r'Link to Submitters Profile:https://hackerone.com/b'light3r' Report Title:b'Bypass report submit restriction/ban using the API...
Akira Ransomware Victim: Inventum Øst
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
browserify browserify-sign security bypass | CVE-2023-46234
NAME__________browserify browserify-sign security bypassPlatforms Affected:browserify browserify-sign 2.6.0 browserify browserify-sign 4.2.1Risk Level:7.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________browserify browserify-sign could allow a remote attacker to...
IBM i privilege escalation | CVE-2023-40685
NAME__________IBM i privilege escalationPlatforms Affected:IBM i 7.2 IBM i 7.3 IBM i 7.4 IBM i 7.5Risk Level:7.4Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Management Central...
Ashlar-Vellum Cobalt, Graphite, Xenon, Argon, Lithium, and Cobalt Share code execution | CVE-2023-39427
NAME__________Ashlar-Vellum Cobalt, Graphite, Xenon, Argon, Lithium, and Cobalt Share code executionPlatforms Affected:Ashlar-Vellum Cobalt 1204.77 Ashlar-Vellum Graphite 13.0.48 Ashlar-Vellum Xenon 1204.77...
Nagvis cross-site scripting | CVE-2023-46287
NAME__________Nagvis cross-site scriptingPlatforms Affected:NagVis NagVis 1.9.37Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Nagvis is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
IBM QRadar information disclosure | CVE-2023-43041
NAME__________IBM QRadar information disclosurePlatforms Affected:IBM QRadar SIEM 7.5Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________IBM QRadar SIEM 7.5 is vulnerable to information exposure allowing...
Ashlar-Vellum Cobalt, Graphite, Xenon, Argon, Lithium, and Cobalt Share code execution | CVE-2023-39936
NAME__________Ashlar-Vellum Cobalt, Graphite, Xenon, Argon, Lithium, and Cobalt Share code executionPlatforms Affected:Ashlar-Vellum Cobalt 1204.77 Ashlar-Vellum Graphite 13.0.48 Ashlar-Vellum Xenon 1204.77...
IBM i privilege escalation | CVE-2023-40686
NAME__________IBM i privilege escalationPlatforms Affected:IBM i 7.2 IBM i 7.3 IBM i 7.4 IBM i 7.5Risk Level:4.9Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Management Central...
BianLian Ransomware Victim: Dow Golub Remels & Gilbreath
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
BianLian Ransomware Victim: TNT Plastic Molding
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
BianLian Ransomware Victim: Jebsen & Co[.] Ltd[.]
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
BianLian Ransomware Victim: International Biomedical Ltd
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
BianLian Ransomware Victim: Griffing & Company, P[.]C
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
A Weekly Cyber Security Tip: Mastering Firewall Technology
In our continuous effort to help you improve your cyber security, this week, we delve into the world of Firewall...
HackerOne paid ethical hackers over $300 million in bug bounties
HackerOne has announced that its bug bounty programs have awarded over $300 million in rewards to ethical hackers and vulnerability...
Hackers email stolen student data to parents of Nevada school district
Image: CCSD The Clark County School District (CCSD) in Nevada is dealing with a potentially massive data breach, as hackers...
Play Ransomware Victim: Dallas County
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Play Ransomware Victim: Alpha Mortgage
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Play Ransomware Victim: Encompass Elements
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Play Ransomware Victim: Sam Tell Companies
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Play Ransomware Victim: Yingling Aviation
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
