Cobalt Stike Beacon Detected – 1[.]15[.]225[.]244:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]55[.]78[.]215:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 194[.]135[.]24[.]243:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 44[.]204[.]181[.]111:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 42[.]192[.]77[.]229:7777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]15[.]146[.]164:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]94[.]200[.]195:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Iran-linked DEV-0270 group abuses BitLocker to encrypt victims’ devices
Iran-linked APT group DEV-0270 (aka Nemesis Kitten) is abusing the BitLocker Windows feature to encrypt victims’ devices. Microsoft Security Threat...
Rust OSDev linked-list-allocator code execution | CVE-2022-36086
NAME Rust OSDev linked-list-allocator code execution Platforms Affected:Rust OSDev linked-list-allocator 0.10.1Risk Level:8.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Rust OSDev linked-list-allocator could allow a...
ActivityWatch security bypass | CVE-2022-31149
NAME ActivityWatch security bypass Platforms Affected:ActivityWatch ActivityWatch 0.12.0b1Risk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION ActivityWatch could allow a remote attacker to bypass security...
Vim code execution | CVE-2022-3134
NAME Vim code execution Platforms Affected:Vim Vim 9.0.0388Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim could allow a remote attacker to...
Tenda G3 buffer overflow | CVE-2022-36584
NAME Tenda G3 buffer overflow Platforms Affected:Tenda G3 US_G3V3.0br_V15.11.0.6(7663)_EN_TDERisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Tenda G3 is vulnerable to a buffer overflow,...
OpenRemote code execution | CVE-2022-31860
NAME OpenRemote code execution Platforms Affected:OpenRemote OpenRemote 1.0.4Risk Level:8.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION OpenRemote could allow a remote authenticated attacker...
NETGEAR R6200v2 and NETGEAR R6300v2 command execution | CVE-2022-30078
NAME NETGEAR R6200v2 and NETGEAR R6300v2 command execution Platforms Affected:NETGEAR R6200v2 1.0.3.12_10.1.11 NETGEAR R6300v2 1.0.4.52_10.0.93Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION...
KubeVela information disclosure | CVE-2022-36089
NAME KubeVela information disclosure Platforms Affected:KubeVela KubeVela 1.4.0 KubeVela KubeVela 1.4.10 KubeVela KubeVela 1.5.0 KubeVela KubeVela 1.5.2Risk Level:8.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION...
MZ Automation libIEC61850 denial of service | CVE-2022-2971
NAME MZ Automation libIEC61850 denial of service Platforms Affected:MZ Automation LibIEC61850 1.5.0 MZ Automation libIEC61850 1.4Risk Level:8.6Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION...
MZ Automation libIEC61850 denial of service | CVE-2022-2973
NAME MZ Automation libIEC61850 denial of service Platforms Affected:MZ Automation LibIEC61850 1.5.0 MZ Automation libIEC61850 1.4Risk Level:8.6Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION...
MZ Automation libIEC61850 buffer overflow | CVE-2022-2972
NAME MZ Automation libIEC61850 buffer overflow Platforms Affected:MZ Automation LibIEC61850 1.5.0 MZ Automation libIEC61850 1.4Risk Level:10Exploitability:UnprovenConsequences:Gain Access DESCRIPTION MZ Automation...
MZ Automation libIEC61850 buffer overflow | CVE-2022-2970
NAME MZ Automation libIEC61850 buffer overflow Platforms Affected:MZ Automation LibIEC61850 1.5.0 MZ Automation libIEC61850 1.4Risk Level:10Exploitability:UnprovenConsequences:Gain Access DESCRIPTION MZ Automation...
XWiki Platform privilege escalation | CVE-2022-31166
NAME XWiki Platform privilege escalation Platforms Affected:XWiki XWiki Platform 11.3.7 XWiki XWiki Platform 12.0RC1 XWiki XWiki Platform 11.10.3Risk Level:8.1Exploitability:UnprovenConsequences:Gain Privileges...
Daily Vulnerability Trends: Fri Sep 09 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-28219Cewolf in Zoho ManageEngine ADAudit Plus before 7060 is vulnerable to an...
Threat landscape for industrial automation systems for H1 2022
H1 2022 in numbers Geography In H1 2022, malicious objects were blocked at least once on 31.8% of ICS computers...
BugCrowd Bug Bounty Disclosure: – Reflected XSS – By Faique
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Open Redirect On login Page – By RizwanSiDdiqu1
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
