NAME__________Cisco Unified Communications Products privilege escalationPlatforms Affected:Cisco Emergency Responder Cisco Unity Connection Cisco Unified CM Cisco Unified CM SMERisk Level:6.5Exploitability:UnprovenConsequences:Gain...
NAME__________Usermin cross-site scriptingPlatforms Affected:Webmin Webmin 2.001Risk Level:5.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Usermin is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
NAME__________GitLab denial of servicePlatforms Affected:GitLab Community Edition 16.2.0 GitLab Enterprise Edition 16.2.0Risk Level:4.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________GitLab is vulnerable to a...
VMware Aria Operations for Networks (formerly vRealize Network Insight) is vulnerable to a critical severity authentication bypass flaw that could...
Hackers are targeting Cisco Adaptive Security Appliance (ASA) SSL VPNs in credential stuffing and brute-force attacks that take advantage of...
Image: Midjourney Trojanized Signal and Telegram apps containing the BadBazaar spyware were uploaded onto Google Play and Samsung Galaxy Store...
All-in-One WP Migration, a popular data migration plugin for WordPress sites with 5 million active installations, suffers from unauthenticated access...
American entertainment giant Paramount Global disclosed a data breach after its systems got hacked and attackers gained access to personally...
The creators of ChatGPT, OpenAI, have launched ChatGPT Enterprise which it claims to be the “most powerful version of ChatGPT...
Organizations have been warned about the cyber risks of large language models (LLMs), including OpenAI’s ChatGPT, by the UK’s National...
The FBI has led a multinational law enforcement operation that has successfully dismantled QakBot, a leading malware loader used by...
Cybersecurity firm Mandiant has unveiled the details of a sophisticated global espionage campaign allegedly orchestrated by a Chinese-nexus threat group...
A new security flaw has been discovered in the widely used All-in-One WP Migration Extensions plugin, potentially leaving millions of...
ESET researchers have exposed a sophisticated espionage tool named BadBazaar, which targets Android users through malicious versions of popular communication...
New findings show that malicious actors could leverage a sneaky malware detection evasion technique and bypass endpoint security solutions by...
CISA Releases IOCs Associated with Malicious Barracuda Activity CISA has released additional indicators of compromise (IOCs) associated with exploitation of...
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog,...
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on August 24, 2023. These...
CISA’s VDP Platform 2022 Annual Report Showcases Success Today, the Cybersecurity and Infrastructure Security Agency (CISA) released its inaugural Vulnerability Disclosure...
Mozilla Releases Security Updates for Firefox and Firefox ESR Mozilla has released security updates to address vulnerabilities for Firefox 117,...
CISA and FBI Publish Joint Advisory on QakBot Infrastructure Today, the Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau...
VMware Releases Security Updates for Aria Operations for Networks VMware has released security updates to address multiple vulnerabilities in Aria...
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on August 29, 2023. This...
