Cobalt Stike Beacon Detected – 20[.]55[.]77[.]132:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Google Chrome V8 code execution | CVE-2023-0696
NAME__________Google Chrome V8 code executionPlatforms Affected:Google Chrome 110.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Google Chrome could allow a remote attacker to execute arbitrary...
Google Chrome DevTools code execution | CVE-2023-0703
NAME__________Google Chrome DevTools code executionPlatforms Affected:Google Chrome 110.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Google Chrome could allow a remote attacker to execute arbitrary...
TYPO3 cross-site scripting | CVE-2023-24814
NAME__________TYPO3 cross-site scriptingPlatforms Affected:TYPO3 TYPO3 12.1.3Risk Level:8.8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________TYPO3 is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
OpenSSL denial of service | CVE-2023-0286
NAME__________OpenSSL denial of servicePlatforms Affected:OpenSSL OpenSSL 1.0.2 OpenSSL OpenSSL 1.1.1 OpenSSL OpenSSL 3.0.0Risk Level:8.2Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________OpenSSL is vulnerable to...
Apache Kafka code execution | CVE-2023-25194
NAME__________Apache Kafka code executionPlatforms Affected:Apache Kafka 2.3.0 Apache Kafka 3.3.2Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Apache Kafka could allow a remote authenticated attacker...
Typo3 unspecified | CVE-2023-24814
NAME__________Typo3 unspecifiedPlatforms Affected:TYPO3 TYPO3 12.1.3Risk Level:8.2Exploitability:UnprovenConsequences:Other DESCRIPTION__________Typo3 has unspecified errors. By sending a specially crafted request, an attacker could exploit...
OneDev weak security | CVE-2023-24828
NAME__________OneDev weak securityPlatforms Affected:Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________OneDev could provide weaker than expected security, caused by the use of an insufficiently...
Google Chrome WebRTC code execution | CVE-2023-0698
NAME__________Google Chrome WebRTC code executionPlatforms Affected:Google Chrome 110.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Google Chrome could allow a remote attacker to execute arbitrary...
Google Chrome GPU code execution | CVE-2023-0699
NAME__________Google Chrome GPU code executionPlatforms Affected:Google Chrome 110.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Google Chrome could allow a remote attacker to execute arbitrary...
Google Chrome Core integer overflow | CVE-2023-0705
NAME__________Google Chrome Core integer overflowPlatforms Affected:Google Chrome 110.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Google Chrome could allow a remote attacker to execute arbitrary...
Synopsys Coverity Connect cross-site scripting | CVE-2023-23849
NAME__________Synopsys Coverity Connect cross-site scriptingPlatforms Affected:Risk Level:8.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Synopsys Coverity Connect is vulnerable to cross-site scripting, caused by improper validation...
B&R APROL code execution | CVE-2022-43764
NAME__________B&R APROL code executionPlatforms Affected:B&R Industrial Automation APROLRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________B&R APROL could allow a remote attacker to execute arbitrary...
Edimax Technology Wireless Router N300 command execution | CVE-2022-45768
NAME__________Edimax Technology Wireless Router N300 command executionPlatforms Affected:Edimax Technology Wireless Router N300 Firmware BR428nS v3Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Edimax Technology Wireless...
Western Digital My Cloud devices command execution | CVE-2021-36225
NAME__________Western Digital My Cloud devices command executionPlatforms Affected:Western Digital My CloudRisk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Western Digital My Cloud devices could allow...
B&R APROL security bypass | CVE-2022-43761
NAME__________B&R APROL security bypassPlatforms Affected:B&R Industrial Automation APROLRisk Level:9.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________B&R APROL could allow a remote attacker to bypass security...
Western Digital My Cloud devices default account | CVE-2021-36224
NAME__________Western Digital My Cloud devices default accountPlatforms Affected:Western Digital My CloudRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Western Digital My Cloud devices contains a...
0mk Shortener plugin for WordPress cross-site request forgery | CVE-2022-2933
NAME__________0mk Shortener plugin for WordPress cross-site request forgeryPlatforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________0mk Shortener plugin for WordPress is vulnerable to cross-site...
Contec SolarView Compact command execution | CVE-2023-23333
NAME__________Contec SolarView Compact command executionPlatforms Affected:Contec SolarView Compact 6.00Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Contec SolarView Compact could allow a remote attacker to...
Google Chrome WebUI buffer overflow | CVE-2023-0701
NAME__________Google Chrome WebUI buffer overflowPlatforms Affected:Google Chrome 110.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Google Chrome is vulnerable to a heap-based buffer overflow, caused...
Schlix Web Inc SCHLIX CMS file upload | CVE-2022-45544
NAME__________Schlix Web Inc SCHLIX CMS file uploadPlatforms Affected:Schlix SCHLIX CMS 2.2.7-2Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Schlix Web Inc SCHLIX CMS could allow...
Google Chrome Data Transfer code execution | CVE-2023-0702
NAME__________Google Chrome Data Transfer code executionPlatforms Affected:Google Chrome 110.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Google Chrome could allow a remote attacker to execute...
Dompdf file upload | CVE-2023-24813
NAME__________Dompdf file uploadPlatforms Affected:Risk Level:10Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Dompdf could allow a remote attacker to upload arbitrary files, caused by the unsafe...
Daily Vulnerability Trends: Thu Feb 09 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2019-5544OpenSLP as used in ESXi and the Horizon DaaS appliances has a...
