NAME__________Zoom clients cross-site scriptingPlatforms Affected:Zoom Zoom Rooms (for Android iOS Linux macOS and Windows) clients 5.13.4Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Zoom clients...
NAME__________Adobe Commerce and Magento Open Source information disclosurePlatforms Affected:Adobe Commerce 2.4.6 Adobe Commerce 2.4.5-p2 Adobe Commerce 2.4.4-p3 Adobe Commerce 2.4.3-ext-2...
NAME__________Microsoft Windows DNS spoofingPlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows Server 2016 Microsoft Windows Server...
NAME__________Microsoft Dynamics 365 (on-premises) cross-site scriptingPlatforms Affected:Microsoft Dynamics 365 (on-premises) 9.1Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Microsoft Dynamics 365 (on-premises) is vulnerable to...
NAME__________Microsoft .NET denial of servicePlatforms Affected:Microsoft .NET Framework 4.8 on Windows 10 for 32-bit Systems 1607 Microsoft .NET Framework 4.8...
NAME__________Microsoft Yet Another Reverse Proxy (YARP) denial of servicePlatforms Affected:Microsoft YARP 2.0Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Microsoft Yet Another Reverse Proxy...
NAME__________Microsoft Azure DevOps Server spoofingPlatforms Affected:Microsoft Azure DevOps Server 2020.0.1 Microsoft Azure DevOps Server 2022 Microsoft Azure DevOps Server 2022.0.1Risk...
NAME__________Microsoft Windows Media code executionPlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows 10 x32 Microsoft Windows...
NAME__________Adobe Commerce and Magento Open Source information disclosurePlatforms Affected:Adobe Commerce 2.4.6 Adobe Commerce 2.4.5-p2 Adobe Commerce 2.4.4-p3 Adobe Commerce 2.4.3-ext-2...
The term "attack surface management" (ASM) went from unknown to ubiquitous in the cybersecurity space over the past few years....
Believe it or not, your attack surface is expanding faster than you realize. How? APIs, of course! More formally known...
Microsoft has rolled out fixes for its Windows operating system and other software components to remediate major security shortcomings as...
Vice Society Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Remote desktop connections are so powerful a magnet for hackers that an exposed connection can average more than 37,000 times...
Imagine if all you needed to do to turn a security policy into an enforced workflow was type it out...
A widespread brand impersonation campaign targeting over a hundred popular apparel, footwear, and clothing brands has been underway since June...
The WooCommerce Stripe Gateway plugin for WordPress was found to be vulnerable to a bug that allows any unauthenticated user...
Romanian national Mihai Ionut Paunescu, aka "Virus," was sentenced to three years in prison by a Manhattan federal court for...
CISA issued this year's first binding operational directive (BOD) ordering federal civilian agencies to secure misconfigured or Internet-exposed networking equipment...
Hackers are distributing Windows 10 using torrents that hide cryptocurrency hijackers in the EFI (Extensible Firmware Interface) partition to evade...
VMware patched today a VMware ESXi zero-day vulnerability exploited by a Chinese-sponsored hacking group to backdoor Windows and Linux virtual...
CISA Issues BOD 23-02: Mitigating the Risk from Internet-Exposed Management Interfaces Today, CISA issued Binding Operational Directive (BOD) 23-02: Mitigating...
Adobe Releases Security Updates for Multiple Products Adobe has released security updates to address multiple vulnerabilities in Adobe software. An...
Fortinet Releases Security Updates for FortiOS and FortiProxy Fortinet has released security updates to address a heap-based buffer overflow vulnerability...
