RedPacket Security - InfoSec News & Tutorials

Robustel R1510 command execution | CVE-2022-33329

July 2, 2022

NAME Robustel R1510 command execution Platforms Affected:Robustel R1510 3.3.0Risk Level:9.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Robustel R1510 could allow a remote authenticated attacker...

Node.js am-screen-recording-permissions module code execution |

July 2, 2022

NAME Node.js am-screen-recording-permissions module code execution Platforms Affected:Node.js am-screen-recording-permissionsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js am-screen-recording-permissions module could allow a remote attacker...

Emerson DeltaV security bypass | CVE-2022-29965

July 2, 2022

NAME Emerson DeltaV security bypass Platforms Affected:Emerson DeltaV M-series Emerson DeltaV S-series Emerson DeltaV P-series Emerson DeltaV CIOC/EIOC/WIOC IO cardsRisk...

Jenkins Deployment Dashboard Plugin cross-site scripting | CVE-2022-34795

July 2, 2022

NAME Jenkins Deployment Dashboard Plugin cross-site scripting Platforms Affected:Jenkins Deployment Dashboard Plugin 1.0.10Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Deployment Dashboard Plugin...

Robustel R1510 command execution | CVE-2022-33328

July 2, 2022

Jenkins eXtreme Feedback Panel Plugin cross-site scripting | CVE-2022-34790

July 2, 2022

NAME Jenkins eXtreme Feedback Panel Plugin cross-site scripting Platforms Affected:Jenkins eXtreme Feedback Panel Plugin 2.0.1Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins eXtreme...

Jenkins build-metrics Plugin cross-site scripting | CVE-2022-34784

July 2, 2022

NAME Jenkins build-metrics Plugin cross-site scripting Platforms Affected:Jenkins build-metrics Plugin 1.3Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins build-metrics Plugin is vulnerable to...

Robustel R1510 command execution | CVE-2022-33326

July 2, 2022

Node.js gd-employer-infosite module code execution |

July 2, 2022

NAME Node.js gd-employer-infosite module code execution Platforms Affected:Node.js gd-employer-infositeRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js gd-employer-infosite module could allow a remote attacker...

Jenkins Project Inheritance Plugin cross-site scripting | CVE-2022-34787

July 2, 2022

NAME Jenkins Project Inheritance Plugin cross-site scripting Platforms Affected:Jenkins Project Inheritance Plugin 21.04.03Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Project Inheritance Plugin...

Jenkins Rich Text Publisher Plugin cross-site scripting | CVE-2022-34786

July 2, 2022

NAME Jenkins Rich Text Publisher Plugin cross-site scripting Platforms Affected:Jenkins Rich Text Publisher Plugin 1.4Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Rich...

Jenkins Validating Email Parameter Plugin cross-site scripting | CVE-2022-34791

July 2, 2022

NAME Jenkins Validating Email Parameter Plugin cross-site scripting Platforms Affected:Jenkins Validating Email Parameter Plugin 1.10Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Validating...

Robustel R1510 command execution | CVE-2022-33325

July 2, 2022

Jenkins Plot Plugin cross-site scripting | CVE-2022-34783

July 2, 2022

NAME Jenkins Plot Plugin cross-site scripting Platforms Affected:Jenkins Plot Plugin 2.1.10Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Plot Plugin is vulnerable to...

Robustel R1510 file deletion | CVE-2022-28127

July 2, 2022

NAME Robustel R1510 file deletion Platforms Affected:Robustel R1510 3.3.0Risk Level:8.7Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION Robustel R1510 could allow a remote authenticated attacker...

Daily Vulnerability Trends: Sat Jul 02 2022

July 2, 2022

Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2021-21042Acrobat Reader DC versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188...

A ransomware attack forced publishing giant Macmillan to shuts down its systems

July 2, 2022

A cyber attack forced the American publishing giant Macmillan to shut down its IT systems. The publishing giant Macmillan has...

Dlinject – Inject A Shared Library (I.E. Arbitrary Code) Into A Live Linux Process, Without Ptrace

July 2, 2022

Usage .___.__ .__ __ __ __| _/| | |__| ____ |__| ____ _____/ |_ ______ ___.__. / __ | |...