NAME__________Microsoft Office Visio information disclosurePlatforms Affected:Microsoft VisioRisk Level:3.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Microsoft Office Visio could allow a remote attacker to obtain sensitive...
NAME__________Tenda IP Camera CP3 information disclosurePlatforms Affected:Tenda IP Camera CP3 11.10.00.2211041355Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Tenda IP Camera CP3 could allow a...
NAME__________Palo Alto Networks PAN-OS information disclosurePlatforms Affected:Palo Alto Networks PAN-OS 9.0.0 Palo Alto Networks PAN-OS 8.1 Palo Alto Networks PAN-OS...
NAME__________OpenStack Cinder, Glance_store, Nova and Os-brick information disclosurePlatforms Affected:OpenStack Nova 26.0.0 OpenStack Nova 27.0.0 OpenStack Cinder 21.0.0 OpenStack Cinder 22.0.0...
NAME__________Intel IPP Cryptography software information disclosurePlatforms Affected:Intel IPP Cryptography software 2021.6Risk Level:4.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Intel IPP Cryptography software could allow a...
NAME__________MicroEngine Mailform file uploadPlatforms Affected:MicroEngine Mailform 1.1.8Risk Level:3.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________MicroEngine Mailform could allow a remote authenticated attacker to upload arbitrary...
NAME__________Chamilo LMS cross-site scriptingPlatforms Affected:Chamilo Chamilo LMS 1.11.13Risk Level:5Exploitability:HighConsequences:Gain Access DESCRIPTION__________Chamilo LMS is vulnerable to cross-site scripting, caused by improper...
NAME__________Tenda IP Camera CP3 security bypassPlatforms Affected:Tenda IP Camera CP3 11.10.00.2211041355Risk Level:6.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Tenda IP Camera CP3 could allow a...
NAME__________Weston Embedded uC-FTPs security bypassPlatforms Affected:Weston Embedded uC-FTPs 1.98.00Risk Level:7.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Weston Embedded uC-FTPs could allow a remote attacker to...
GitHub has announced the general availability of a new security feature called push protection, which aims to prevent developers from...
A nascent botnet called Andoryu has been found to exploit a now-patched critical security flaw in the Ruckus Wireless Admin...
Twitter is officially beginning to roll out support for encrypted direct messages (DMs) on the platform, more than six months...
Why more transparency around cyber attacks is a good thing for everyone At the NCSC and ICO, we deal with...
Joseph James O'Connor, aka 'PlugwalkJoke,' has pleaded guilty to multiple cybercrime offenses, including SIM swapping attacks, cyberstalking, computer hacking, and...
The Phishing-as-a-Service (PhaaS) platform named 'Greatness' has seen a spike in activity as it targets organizations using Microsoft 365 in...
One of the biggest security threats is password cracking. Are you an IT system administrator concerned about the security of...
New samples of the RapperBot botnet malware have added cryptojacking capabilites to mine for cryptocurrency on compromised Intel x64 machines....
A new 'White Phoenix' ransomware decryptor allows victims to partially recover files encrypted by ransomware strains that use intermittent encryption....
The Korean National Police Agency (KNPA) warned that North Korean hackers had breached the network of one of the country's...
Industrial cybersecurity company Dragos today disclosed what it describes as a "cybersecurity event" after a known cybercrime gang attempted to...
A recently spotted malvertising campaign tricked users with an in-browser Windows update simulation to deliver the Aurora information stealing malware....
HIBP In April 2023, the Indian rental service RentoMojo suffered a data breach. The breach exposed over 2M unique email...
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA Requests for Comment on Secure Software Self-Attestation Form CISA has issued requests for comment on the Secure Software Self-Attestation...
