NAME__________Dell Common Event Enabler privilege escalationPlatforms Affected:Dell Common Event Enabler 8.9.8.2Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Dell Common Event Enabler could allow a...
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-21554Microsoft Message Queuing Remote Code Execution VulnerabilityCVE-2023-43261 No description provided CVE-2023-36845A PHP...
The LostTrust ransomware operation is believed to be a rebrand of MetaEncryptor, utilizing almost identical data leak sites and encryptors....
A flaw related to the PKCS #1 v1.5 padding in SSL servers discovered in 1998 and believed to have been...
10/1/23 update adds Amazon statement below. Amazon mistakenly sent out purchase confirmation emails for Hotels.com, Google Play, and Mastercard gift...
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infoacronis -- cyber_protect_home_officeSensitive information disclosure due to insecure folder permissions. The following...
OSDP attack tool (and the Elvish word for friend) Attack #1: Encryption is Optional OSDP supports, but doesn't strictly require,...
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
NAME__________Discourse Encrypt cross-site scriptingPlatforms Affected:Discourse EncryptRisk Level:7.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Discourse Encrypt is vulnerable to cross-site scripting, caused by improper validation of...
NAME__________OpenFGA denial of servicePlatforms Affected:OpenFGA OpenFGA 1.3.1Risk Level:5.9Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________OpenFGA is vulnerable to a denial of service, caused by...
NAME__________Chai.js Assertion Library get-func-name denial of servicePlatforms Affected:Chai.js Assertion Library get-func-name 2.0.0Risk Level:7.5Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________Chai.js Assertion Library...
NAME__________Matrix Hookshot security bypassPlatforms Affected:matrix.org Hookshot 4.4.1Risk Level:5.6Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Matrix Hookshot could allow a local attacker to bypass security restrictions,...
NAME__________Warptech Warpgate security bypassPlatforms Affected:Warptech Industries Warpgate 0.8.0Risk Level:6.2Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Warptech Warpgate could allow a remote authenticated attacker to bypass...
In today's interconnected world, where data is the new oil, cyber security acts as a safeguard protecting this valuable resource....
Cloudflare's Firewall and DDoS prevention can be bypassed through a specific attack process that leverages logic flaws in cross-tenant security...
Progress Software has urged customers to patch a critical new vulnerability in one of its flagship file transfer software products,...
A sophisticated Chinese cyber-espionage campaign targeting Microsoft Outlook accounts gave Beijing access to tens of thousands of private US government...
The Russian firm Operation Zero has announced a staggering $20m reward for hacking tools capable of compromising iPhones and Android...
