NAME__________Home Assistant cross-site scriptingPlatforms Affected:Home Assistant Home Assistant 2023.8.4 Home Assistant Home Assistant 2023.8.3 Home Assistant Home Assistant 2023.8.2Risk Level:7.1Exploitability:HighConsequences:Cross-Site...
NAME__________Home Assistant server-side request forgeryPlatforms Affected:Home Assistant Home Assistant 2023.8.4 Home Assistant Home Assistant 2023.8.3 Home Assistant Home Assistant 2023.8.2Risk...
NAME__________Wagtail information disclosurePlatforms Affected:Wagtail Wagtail 4.2 Wagtail Wagtail 4.1.8 Wagtail Wagtail 5.0.4 Wagtail Wagtail 5.1 Wagtail Wagtail 5.1.2Risk Level:2.7Exploitability:UnprovenConsequences:Obtain Information...
NAME__________VMware Fusion privilege escalationPlatforms Affected:VMware Fusion 13Risk Level:6.7Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________VMware Fusion could allow a local authenticated attacker to gain elevated...
NAME__________JustSystems Ichitaro code executionPlatforms Affected:JustSystems Ichitaro 2023 1.0.1.59372Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________JustSystems Ichitaro could allow a remote attacker to execute arbitrary...
NAME__________Artifact Hub information disclosurePlatforms Affected:Artifact Hub Artifact Hub 1.15.0 Artifact Hub Artifact Hub 1.14.0 Artifact Hub Artifact Hub 1.13.0Risk Level:3.7Exploitability:UnprovenConsequences:Obtain...
NAME__________Home Assistant information disclosurePlatforms Affected:Home Assistant Home Assistant 2023.8.4 Home Assistant Home Assistant 2023.8.3 Home Assistant Home Assistant 2023.8.2Risk Level:5.3Exploitability:UnprovenConsequences:Obtain...
NAME__________Cisco IOS XE privilege escalationPlatforms Affected:Cisco IOS XE SoftwareRisk Level:7.2Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Cisco IOS XE could allow a remote authenticated attacker...
NAME__________Artifact Hub hijackingPlatforms Affected:Artifact Hub Artifact Hub 1.15.0 Artifact Hub Artifact Hub 1.14.0 Artifact Hub Artifact Hub 1.13.0Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-20198Cisco is aware of active exploitation of a previously unknown vulnerability in...
A threat actor is using fake LinkedIn posts and direct messages about a Facebook Ads specialist position at hardware maker Corsair...
Two weeks into an ongoing IT outage, Kwik Trip finally confirmed that it's investigating a cyberattack impacting the convenience store...
Cisco disclosed a new high-severity zero-day (CVE-2023-20273) today, actively exploited to deploy malicious implants on IOS XE devices compromised using...
Update October 20, 16:15 EDT: Added BeyondTrust incident details. Update October 20, 18:59 EDT: Added Cloudflare incident details. Okta says attackers accessed...
Security researchers found three critical remote code execution vulnerabilities in the SolarWinds Access Rights Manager (ARM) product that remote attackers could...
Law enforcement agencies arrested a malware developer linked with the Ragnar Locker ransomware gang and seized the group's dark web...
A man has been extradited from the UK to the US for allegedly operating a website that sold access to...
Dark web watchdog SOCRadar has revealed that GhostSec, a self-described "vigilante" group that has recently turned to financially motivated cyber...
Vietnam-based cybercriminals are believed to be behind to attacks using DarkGate malware, which have targeted organizations in the UK, US...
The Hoxhunt Challenge has unveiled alarming trends in employee susceptibility to phishing attacks, emphasizing the critical role of engagement in...
Valve is bolstering the security of its Steamworks platform by introducing SMS verification for developers, aiming to prevent future incidents...
The use of AI chatbots and AI-enabled manipulation of information by malicious actors is a key threat ahead of the...
HIBP In September 2023, over 1M rows of data from the educational robots company Sphero was posted to a popular...
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
