RedPacket Security - InfoSec News & Tutorials

Fortinet FortiWeb code execution | CVE-2022-40683

February 18, 2023

NAME__________Fortinet FortiWeb code executionPlatforms Affected:Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fortinet FortiWeb could allow a local authenticated attacker to execute arbitrary code on...

containerd security bypass | CVE-2023-25173

February 18, 2023

NAME__________containerd security bypassPlatforms Affected:containerd containerd 1.6.0 containerd containerd 1.5.17 containerd containerd 1.6.17Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________containerd could allow a local authenticated...

Palantir Magritte-ftp man-in-the-middle | CVE-2022-48307

February 18, 2023

NAME__________Palantir Magritte-ftp man-in-the-middlePlatforms Affected:Palantir Magritte-ftpRisk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Palantir Magritte-ftp is vulnerable to a man-in-the-middle attack, caused by improper validating hostnames...

Fortinet FortiNAC cross-site scripting | CVE-2022-38376

February 18, 2023

NAME__________Fortinet FortiNAC cross-site scriptingPlatforms Affected:Fortinet FortiNAC 9.4.0 Fortinet FortiNAC 8.8 Fortinet FortiNAC 8.7 Fortinet FortiNAC 8.6 Fortinet FortiNAC 9.4.1 Fortinet...

Fortinet FortiPortal information disclosure | CVE-2022-43954

February 18, 2023

NAME__________Fortinet FortiPortal information disclosurePlatforms Affected:Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Fortinet FortiPortal could allow a remote authenticated attacker to obtain sensitive information, caused...

Fortinet FortiExtender command execution | CVE-2022-27489

February 18, 2023

NAME__________Fortinet FortiExtender command executionPlatforms Affected:Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fortinet FortiExtender could allow a remote authenticated attacker to execute arbitrary commands on...

Fortinet FortiNAC man-in-the-middle | CVE-2022-40675

February 18, 2023

NAME__________Fortinet FortiNAC man-in-the-middlePlatforms Affected:Risk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fortinet FortiNAC is vulnerable to a man-in-the-middle attack, caused by cryptographic issues. A remote...

Eternal Terminal security bypass | CVE-2023-23558

February 18, 2023

NAME__________Eternal Terminal security bypassPlatforms Affected:Eternal Terminal Eternal Terminal 6.2.1Risk Level:7.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Eternal Terminal could allow a local authenticated attacker to...

TFTPD64-SE code execution | CVE-2023-0887

February 18, 2023

NAME__________TFTPD64-SE code executionPlatforms Affected:Tftpd64 Tftpd64 4.64Risk Level:7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________TFTPD64-SE could allow a local authenticated attacker to execute arbitrary code on...

Fortinet FortiWeb code execution | CVE-2023-23783

February 18, 2023

NAME__________Fortinet FortiWeb code executionPlatforms Affected:Risk Level:6.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fortinet FortiWeb could allow a local authenticated attacker to execute arbitrary code on...

Kron Tech Single Connect privilege escalation | CVE-2023-0882

February 18, 2023

NAME__________Kron Tech Single Connect privilege escalationPlatforms Affected:Krontech Single Connect 2.16Risk Level:7.1Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Kron Tech Single Connect could allow a remote...

Fortinet FortiSandbox brute force | CVE-2022-26115

February 18, 2023

NAME__________Fortinet FortiSandbox brute forcePlatforms Affected:Risk Level:5.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Fortinet FortiSandbox is vulnerable to a brute force attack, caused by the use...

Daily Vulnerability Trends: Sat Feb 18 2023

February 18, 2023

Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-23376Windows Common Log File System Driver Elevation of Privilege VulnerabilityCVE-2023-21715Microsoft Publisher Security...

LockBit 3.0 Ransomware Victim: piercetransit[.]org

February 18, 2023

LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...

Malware Analysis – djvu – 1f7e2e306be2879fc49306bf97e79d96

February 18, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, evasion, persistence, ransomware, spyware, stealer, trojan, vmprotectMD5: 1f7e2e306be2879fc49306bf97e79d96SHA1:...

Malware Analysis – djvu – 02ad4e481ba81e320a07d120dc43c665

February 18, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 02ad4e481ba81e320a07d120dc43c665SHA1: 1252e3b297b67d7144858f37762a35ceb146b2d5ANALYSIS DATE: 2023-02-18T04:15:23ZTTPS: T1222, T1005, T1081, T1012,...

Malware Analysis – djvu – 44cc35a02a83e46be644642d4a8cdec0

February 18, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:laplas, family:smokeloader, family:vidar, botnet:19, backdoor, clipper, discovery, evasion, persistence, ransomware, stealer, trojan, vmprotectMD5: 44cc35a02a83e46be644642d4a8cdec0SHA1: d411efa11f7cb67fc0172fd474b7f1f5de22e826ANALYSIS...

Malware Analysis – djvu – 5618340e22c1a5c7f93978b7e51ce8ac

February 18, 2023

Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:19, discovery, persistence, ransomware, spyware, stealerMD5: 5618340e22c1a5c7f93978b7e51ce8acSHA1: f409b9248c18574717582467bd865d327826ca19ANALYSIS DATE: 2023-02-18T04:42:46ZTTPS: T1005, T1081, T1012, T1082,...

Malware Analysis – djvu – a9b297b55af1abaeb36f9d339faa7b4e

February 18, 2023

Malware Analysis – banker – d35fa171e9336d8046728ee0ebb25dba

February 18, 2023

Score: 8 MALWARE FAMILY: bankerTAGS:banker, evasion, ransomwareMD5: d35fa171e9336d8046728ee0ebb25dbaSHA1: e10cefe31ceba08ee6a52c14575f8f49ab895a31ANALYSIS DATE: 2023-02-18T05:29:04ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...

Malware Analysis – discovery – e4716d67c20e94e020e3d221cd47221b

February 18, 2023

Score: 10 MALWARE FAMILY: discoveryTAGS:discovery, persistence, ransomwareMD5: e4716d67c20e94e020e3d221cd47221bSHA1: 9d0658a262787220c22a4a8b56670aab764f00d2ANALYSIS DATE: 2023-02-18T05:22:38ZTTPS: T1012, T1082, T1060 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...

Main Story

Editor’s Picks

Trending Story

Featured Story

You may have missed