Critical Vulnerability in WordPress Backup Migration Plugin
WordPress has released updates addressing a critical vulnerability (CVE-2023-6553) in their Backup Migration plugin. The vulnerability has a Common Vulnerability...
Active Exploitation of Zero-Day Vulnerability in QNAP VioStor Network Video Recorder (NVR)
QNAP has released security updates to address a zero-day vulnerability (CVE-2023-47565) in their NVR products. The vulnerability is reportedly being...
CISA: FBI, CISA, and ASD’s ACSC Release Advisory on Play Ransomware
FBI, CISA, and ASD’s ACSC Release Advisory on Play Ransomware Today, the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure...
Medusa Locker Ransomware Victim: ATCO Products Inc
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: Biomatrix LLC
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Black Basta Ransomware Victim: hallidays[.]co[.]uk
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: vyera[.]com
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: navitaspet[.]com
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Four U.S. Nationals Charged in $80 Million Pig Butchering Crypto Scam
Four U.S. nationals have been charged for participating in an illicit scheme that earned them more than $80 million via...
QakBot Malware Resurfaces with New Tactics, Targeting the Hospitality Industry
A new wave of phishing messages distributing the QakBot malware has been observed, more than three months after a law...
GLPI SQL injection | CVE-2023-43813
NAME__________GLPI SQL injectionPlatforms Affected:GLPI GLPI 10.0.10Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________GLPI is vulnerable to SQL injection. A remote authenticated attacker could send...
Dell vApp Manager command execution | CVE-2023-48665
NAME__________Dell vApp Manager command executionPlatforms Affected:Dell vApp ManagerRisk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Dell vApp Manager could allow a remote authenticated attacker to...
Dell vApp Manager command execution | CVE-2023-48663
NAME__________Dell vApp Manager command executionPlatforms Affected:Dell vApp ManagerRisk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Dell vApp Manager could allow a remote authenticated attacker to...
Zoom Mobile App for Android, Zoom Mobile App for iOS and Zoom SDKs nformation disclosure | CVE-2023-43583
NAME__________Zoom Mobile App for Android, Zoom Mobile App for iOS and Zoom SDKs nformation disclosurePlatforms Affected:Zoom Video SDK Zoom Mobile...
Stupid Simple CMS command execution | CVE-2023-6901
NAME__________Stupid Simple CMS command executionPlatforms Affected:Stupid Simple CMS Stupid Simple CMS 1.2.3Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Stupid Simple CMS could allow a...
SchedMD Slurm security bypass | CVE-2023-49938
NAME__________SchedMD Slurm security bypassPlatforms Affected:SchedMD Slurm 22.05 SchedMD Slurm 23.02Risk Level:4.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________SchedMD Slurm could allow a remote authenticated attacker...
GLPI code execution | CVE-2023-46726
NAME__________GLPI code executionPlatforms Affected:GLPI GLPI 10.0.10Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________GLPI could allow a remote authenticated attacker to execute arbitrary code on...
Progress Software WhatsUp Gold information disclosure | CVE-2023-6595
NAME__________Progress Software WhatsUp Gold information disclosurePlatforms Affected:Progress WhatsUp Gold 2022.1 Progress WhatsUp Gold 2022.0Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Progress Software WhatsUp Gold...
Dell vApp Manager information disclosure | CVE-2023-48660
NAME__________Dell vApp Manager information disclosurePlatforms Affected:Dell vApp ManagerRisk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Dell vApp Manager could allow a remote attacker to obtain...
Dell vApp Manager command execution | CVE-2023-48664
NAME__________Dell vApp Manager command executionPlatforms Affected:Dell vApp ManagerRisk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Dell vApp Manager could allow a remote authenticated attacker to...
Dell PowerProtect DD command execution | CVE-2023-48667
NAME__________Dell PowerProtect DD command executionPlatforms Affected:Dell PowerProtect DDRisk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Dell PowerProtect DD could allow a remote authenticated attacker to...
Siemens SIMATIC CP, SINAMICS, SIPLUS NET CP denial of service | CVE-2023-38380
NAME__________Siemens SIMATIC CP, SINAMICS, SIPLUS NET CP denial of servicePlatforms Affected:Siemens SIPLUS NET CP 1543-1 (6AG1543-1AX00- 2XE0) Siemens SIMATIC CP...
Siemens SCALANCE M-800/S615 Family command execution | CVE-2023-49691
NAME__________Siemens SCALANCE M-800/S615 Family command executionPlatforms Affected:Siemens SCALANCE M800/S615 Siemens RUGGEDCOM RM1224 LTE(4G) EU (6GK6108- 4AM00-2BA2) Siemens RUGGEDCOM RM1224 LTE(4G)...
Progress Software WhatsUp Gold information disclosure | CVE-2023-6368
NAME__________Progress Software WhatsUp Gold information disclosurePlatforms Affected:Progress WhatsUp Gold 2022.1 Progress WhatsUp Gold 2022.0Risk Level:5.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Progress Software WhatsUp Gold...
