NAME__________Apache Airflow information disclosurePlatforms Affected:Apache Airflow 2.5.0 Apache Airflow 2.6.1Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apache Airflow could allow a remote authenticated attacker...
NAME__________IceFrog code executionPlatforms Affected:IceFrog IceFrog 1.1.8Risk Level:5.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________IceFrog could allow a remote authenticated attacker within the local network to...
NAME__________Libtiff denial of servicePlatforms Affected:Libtiff LibTIFF 3.9.0 LibTIFF LibTIFF 4.5.1Risk Level:5.9Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________Libtiff is vulnerable to a...
NAME__________Agro-School Management System SQL injectionPlatforms Affected:SourceCode and Projects Agro-School Management System 1.0Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Agro-School Management System is vulnerable to...
NAME__________Lightdash directory traversalPlatforms Affected:Lightdash Lightdash 0.506.4 Lightdash Lightdash 0.510.2Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Lightdash could allow a remote attacker to traverse directories...
NAME__________Online Shopping System Advanced cross-site scriptingPlatforms Affected:Risk Level:2.4Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Online Shopping System Advanced is vulnerable to cross-site scripting, caused by...
NAME__________Resort Reservation System cross-site scriptingPlatforms Affected:Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Resort Reservation System is vulnerable to cross-site scripting, caused by improper validation...
NAME__________Huawei HarmonyOS denial of servicePlatforms Affected:Huawei HarmonyOS 2.0.0Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Huawei HarmonyOS is vulnerable to a denial of service,...
As Threat Actors Continuously Adapt their TTPs in Today's Threat Landscape, So Must You Earlier this year, threat researchers at...
Individuals in the Pakistan region have been targeted using two rogue Android apps available on the Google Play Store as...
Early Warning is joining MyNCSC Recap of Early Warning Existing users will know that https://www.ncsc.gov.uk/information/early-warning-service" target="_self">Early Warning is a threat-notification...
A malware campaign is using fake OnlyFans content and adult lures to install a remote access trojan known as 'DcRAT,'...
ASUS has released new firmware with cumulative security updates that address vulnerabilities in multiple router models, warning customers to immediately...
Des Moines Public Schools, Iowa's largest school district, confirmed today that a ransomware attack was behind an incident that forced...
Three Android apps on Google Play were used by state-sponsored threat actors to collect intelligence from targeted devices, such as...
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on June 13, 2023. These...
CISA Issues BOD 23-02: Mitigating the Risk from Internet-Exposed Management Interfaces Today, CISA issued Binding Operational Directive (BOD) 23-02: Mitigating...
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA and NSA Release Joint Guidance on Hardening Baseboard Management Controllers (BMCs) Today, CISA, together with the National Security Agency...
Adobe Releases Security Updates for Multiple Products Adobe has released security updates to address multiple vulnerabilities in Adobe software. An...
CISA and Partners Release Joint Advisory on Understanding Ransomware Threat Actors: LockBit Today, CISA, the Federal Bureau of Investigation (FBI),...
CISA, FBI, and MS-ISAC Update Joint CSA on Progress Telerik Vulnerabilities Today, CISA, the Federal Bureau of Investigation (FBI), and...
CISA Releases Fourteen Industrial Control Systems Advisories CISA released fourteen Industrial Control Systems (ICS) advisories on June 15, 2023. These...
Progress Software Releases Security Advisory for MOVEit Transfer Vulnerability Progress Software has released a security advisory(link is external) for a...
