OpenSSH security bypass | CVE-2023-51767
NAME__________OpenSSH security bypassPlatforms Affected:OpenSSH OpenSSH 9.1 OpenSSH OpenSSH 9.2 OpenSSH OpenSSH 9.3 OpenSSH OpenSSH 9.5 OpenSSH OpenSSH 9.4 OpenSSH OpenSSH...
BUFFALO VR-S1000 devices command execution | CVE-2023-45741
NAME__________BUFFALO VR-S1000 devices command executionPlatforms Affected:BUFFALO VR-S1000 2.37Risk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________BUFFALO VR-S1000 devices could allow a remote authenticated attacker to...
Postfix SMTP smuggling | CVE-2023-51764
NAME__________Postfix SMTP smugglingPlatforms Affected:Postfix Postfix 3.5 Postfix Postfix 3.6 Postfix Postfix 3.7 Postfix Postfix 3.8Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Postfix is vulnerable...
Proofpoint sendmail SMTP smuggling | CVE-2023-51765
NAME__________Proofpoint sendmail SMTP smugglingPlatforms Affected:Proofpoint sendmail 8.14.7Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Proofpoint sendmail is vulnerable to SMTP smuggling, caused by improper handling...
Open Design Alliance Drawings SDK code execution | CVE-2023-5180
NAME__________Open Design Alliance Drawings SDK code executionPlatforms Affected:Open Design Alliance Drawings SDKRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Open Design Alliance Drawings SDK could...
BUFFALO VR-S1000 devices information disclosure | CVE-2023-51363
NAME__________BUFFALO VR-S1000 devices information disclosurePlatforms Affected:BUFFALO VR-S1000 2.37Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________BUFFALO VR-S1000 devices could allow a remote attacker to obtain...
Exim SMTP smuggling | CVE-2023-51766
NAME__________Exim SMTP smugglingPlatforms Affected:Exim Exim 4.97Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________is vulnerable to SMTP smuggling, caused by improper handling of line endings...
New Sneaky Xamalicious Android Malware Hits Over 327,000 Devices
A new Android backdoor has been discovered with potent capabilities to carry out a range of malicious actions on infected...
Github Warns Users To Enable 2fa Before Upcoming Deadline
GitHub is warning users that they will soon have limited functionality on the site if they do not enable two-factor...
Integris Health Patients Get Extortion Emails After Cyberattack
Integris Health patients in Oklahoma are receiving blackmail emails stating that their data was stolen in a cyberattack on the...
Daily Malicious Files Soar 3% in 2023, Kaspersky Finds
Cybercriminals unleashed an average of 411,000 malicious files every day in 2023, representing a 3% increase from the previous year,...
CISA: FBI, CISA, and ASD’s ACSC Release Advisory on Play Ransomware
FBI, CISA, and ASD’s ACSC Release Advisory on Play Ransomware Today, the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure...
CISA: CISA Releases Seven Industrial Control Systems Advisories
CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on December 19, 2023. These...
CISA: CISA Secure by Design Alert Urges Manufacturers to Eliminate Default Passwords
CISA Secure by Design Alert Urges Manufacturers to Eliminate Default Passwords Today, CISA published guidance on How Manufacturers Can Protect...
CISA: CISA Releases Advisory on Cyber Resilience for the HPH Sector
CISA Releases Advisory on Cyber Resilience for the HPH Sector Today, CISA released a Cybersecurity Advisory, Enhancing Cyber Resilience: Insights...
CISA: CISA and FBI Release Advisory on ALPHV Blackcat Affiliates
CISA and FBI Release Advisory on ALPHV Blackcat Affiliates Today, CISA and the Federal Bureau of Investigation (FBI) released a...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Microsoft 365 Secure Configuration Baselines and SCuBAGear Tool
CISA Releases Microsoft 365 Secure Configuration Baselines and SCuBAGear Tool CISA has published the finalized Microsoft 365 Secure Configuration Baselines,...
CISA: Apple Releases Security Updates for Multiple Products
Apple Releases Security Updates for Multiple Products Apple has released security updates to address vulnerabilities in Safari, iOS, iPadOS, and...
CISA: Mozilla Releases Security Updates for Firefox and Thunderbird
Mozilla Releases Security Updates for Firefox and Thunderbird Mozilla has released security updates to address vulnerabilities in Firefox and Thunderbird....
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on December 21, 2023. These...
US-CERT Vulnerability Summary for the Week of December 18, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Akira Ransomware Victim: International Electr onic Machines Corp
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
LiteSpeed Cache plugin for WordPress cross-site scripting | CVE-2023-4372
NAME__________LiteSpeed Cache plugin for WordPress cross-site scriptingPlatforms Affected:WordPress LiteSpeed Cache plugin for WordPress 5.6Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________LiteSpeed Cache plugin for...
