RedPacket Security - InfoSec News & Tutorials

Malware Analysis – djvu – b57dcc7a7a09f7bade0edc670e8f71b7

February 18, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: b57dcc7a7a09f7bade0edc670e8f71b7SHA1: dac61b151a9fc6235ffcf1cbd66eb561fbf8e405ANALYSIS DATE: 2023-02-18T11:41:54ZTTPS: T1012, T1082, T1053, T1005,...

Malware Analysis – djvu – 14a6e77f2cf391b679fe64638d7d51cb

February 18, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 14a6e77f2cf391b679fe64638d7d51cbSHA1: 0b8280d789e95fda1ff5fc93ac9d78d6c7c29679ANALYSIS DATE: 2023-02-18T11:38:28ZTTPS: T1222, T1053, T1005, T1081,...

Malware Analysis – persistence – 47c4a8f56f5770a8371c0464e133ece6

February 18, 2023

Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 47c4a8f56f5770a8371c0464e133ece6SHA1: afc27e538f9cc3983020790880601fcc00b9c6e7ANALYSIS DATE: 2023-02-18T11:41:24ZTTPS: T1060, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or...

NETGEAR WNDR3700v2 denial of service | CVE-2023-0848

February 18, 2023

NAME__________NETGEAR WNDR3700v2 denial of servicePlatforms Affected:NETGEAR WNDR3700v2 1.0.1.14Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________NETGEAR WNDR3700v2 is vulnerable to a denial of service,...

NETGEAR WNDR3700v2 denial of service | CVE-2023-0850

February 18, 2023

NAME__________NETGEAR WNDR3700v2 denial of servicePlatforms Affected:NETGEAR WNDR3700v2 1.0.1.14Risk Level:2.7Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________NETGEAR WNDR3700v2 is vulnerable to a denial of service,...

NETGEAR WNDR3700v2 command execution | CVE-2023-0849

February 18, 2023

NAME__________NETGEAR WNDR3700v2 command executionPlatforms Affected:NETGEAR WNDR3700v2 1.0.1.14Risk Level:4.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NETGEAR WNDR3700v2 could allow a remote authenticated attacker to execute arbitrary...

Sequelize information disclosure | CVE-2023-22580

February 18, 2023

NAME__________Sequelize information disclosurePlatforms Affected:Sequelize Sequelize 6.28.0Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Sequelize could allow a remote attacker to obtain sensitive information, caused by...

containerd denial of service | CVE-2023-25153

February 18, 2023

NAME__________containerd denial of servicePlatforms Affected:containerd containerd 1.6.0 containerd containerd 1.5.17 containerd containerd 1.6.17Risk Level:6.2Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________containerd is vulnerable to...

Fortinet FortiWeb buffer overflow | CVE-2023-23782

February 18, 2023

NAME__________Fortinet FortiWeb buffer overflowPlatforms Affected:Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fortinet FortiWeb is vulnerable to a heap-based buffer overflow, caused by improper bounds...

Fortinet FortiNAC XML external entity injection | CVE-2022-39954

February 18, 2023

NAME__________Fortinet FortiNAC XML external entity injectionPlatforms Affected:Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fortinet FortiNAC is vulnerable to an XML external entity injection (XXE)...

Fortinet FortiWeb directory traversal | CVE-2023-23778

February 18, 2023

NAME__________Fortinet FortiWeb directory traversalPlatforms Affected:Risk Level:4.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Fortinet FortiWeb could allow a remote authenticated attacker to traverse directories on the...

Siemens SiPass integrated AC5102, ACC-G2 and ACC-AP devices privilege escalation | CVE-2022-31808

February 18, 2023

NAME__________Siemens SiPass integrated AC5102, ACC-G2 and ACC-AP devices privilege escalationPlatforms Affected:Siemens SiPass integrated AC5100 Siemens SiPass integrated AC5102 Siemens SiPass...

Fortinet FortiWeb directory traversal | CVE-2023-23784

February 18, 2023

NAME__________Fortinet FortiWeb directory traversalPlatforms Affected:Risk Level:5.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Fortinet FortiWeb could allow a remote authenticated attacker within the local network to...

HashiCorp Nomad and Nomad Enterprise denial of service | CVE-2023-0821

February 18, 2023

NAME__________HashiCorp Nomad and Nomad Enterprise denial of servicePlatforms Affected:HashiCorp Nomad 1.2.15 HashiCorp Nomad 1.3.8 HashiCorp Nomad 1.4.3 HashiCorp Nomad Enterprise...

Online Pizza Ordering System SQL injection | CVE-2023-0883

February 18, 2023

NAME__________Online Pizza Ordering System SQL injectionPlatforms Affected:Online Pizza Ordering System Online Pizza Ordering System 1.0Risk Level:6.5Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Online Pizza Ordering...

Kliqqi-CMS admin/admin_update_module_widgets.php SQL injection | CVE-2020-21119

February 18, 2023

NAME__________Kliqqi-CMS admin/admin_update_module_widgets.php SQL injectionPlatforms Affected:Kliqqi-CMS Kliqqi-CMS 2.0.2Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Kliqqi-CMS is vulnerable to SQL injection. A remote authenticated attacker could...

Fortinet FortiProxy and FortiOS response splitting | CVE-2022-42472

February 18, 2023

NAME__________Fortinet FortiProxy and FortiOS response splittingPlatforms Affected:Risk Level:4.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fortinet FortiProxy and FortiOS are vulnerable to HTTP response splitting attacks,...

Fortinet FortiWeb directory traversal | CVE-2022-30299

February 18, 2023

NAME__________Fortinet FortiWeb directory traversalPlatforms Affected:Fortinet FortiWeb 6.3.15 Fortinet FortiWeb 6.4.1 Fortinet FortiWeb 7.0.0Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Fortinet FortiWeb could allow a...

Palantir AtlasDB man-in-the-middle | CVE-2022-27890

February 18, 2023

NAME__________Palantir AtlasDB man-in-the-middlePlatforms Affected:Palantir AtlasDBRisk Level:6.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Palantir AtlasDB is vulnerable to a man-in-the-middle attack, caused by a misuse of...

Dell Secure Connect Gateway information disclosure | CVE-2023-23695

February 18, 2023

NAME__________Dell Secure Connect Gateway information disclosurePlatforms Affected:Risk Level:5.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Dell Secure Connect Gateway could allow a remote attacker to obtain...

GitHub Enterprise Server directory traversal | CVE-2023-22380

February 18, 2023

NAME__________GitHub Enterprise Server directory traversalPlatforms Affected:GitHub GitHub Enterprise Server 3.7.5Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________GitHub Enterprise Server could allow a remote authenticated...

Main Story

Editor’s Picks

Trending Story

Featured Story

You may have missed