Azure RTOS USBX buffer overflow | CVE-2022-29246
NAME Azure RTOS USBX buffer overflow Platforms Affected:Azure RTOS USBX 6.1.10Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Azure RTOS USBX is vulnerable to...
Google Chrome UI Foundations code execution | CVE-2022-1860
NAME Google Chrome UI Foundations code execution Platforms Affected:Google Chrome 102.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
Google Chrome Tablet Mode code execution | CVE-2022-1866
NAME Google Chrome Tablet Mode code execution Platforms Affected:Google Chrome 102.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
Google Chrome App Service code execution | CVE-2022-1870
NAME Google Chrome App Service code execution Platforms Affected:Google Chrome 102.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
Google Chrome Bookmarks code execution | CVE-2022-1865
NAME Google Chrome Bookmarks code execution Platforms Affected:Google Chrome 102.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Node.js @roku-web-core/ajax module code execution |
NAME Node.js @roku-web-core/ajax module code execution Platforms Affected:Node.js @roku-web-core/ajaxRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @roku-web-core/ajax module could allow a remote attacker...
Google Chrome WebApp Installs code execution | CVE-2022-1864
NAME Google Chrome WebApp Installs code execution Platforms Affected:Google Chrome 102.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
D-Link DSL-G2452DG security bypass | CVE-2022-28932
NAME D-Link DSL-G2452DG security bypass Platforms Affected:D-Link DSL-G2452DG HW:T1\\tFW:ME_2.00Risk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION D-Link DSL-G2452DG could allow a remote attacker to...
Google Chrome ANGLE code execution | CVE-2022-1854
NAME Google Chrome ANGLE code execution Platforms Affected:Google Chrome 102.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Google Chrome Performance Manager code execution | CVE-2022-1859
NAME Google Chrome Performance Manager code execution Platforms Affected:Google Chrome 102.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
Google Chrome User Education code execution | CVE-2022-1856
NAME Google Chrome User Education code execution Platforms Affected:Google Chrome 102.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
Google Chrome File System API security bypass | CVE-2022-1857
NAME Google Chrome File System API security bypass Platforms Affected:Google Chrome 102.0Risk Level:8.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Google Chrome could allow a...
Mozilla Firefox, Firefox ESR, Firefox for Android and Thunderbird code execution | CVE-2022-1802
NAME Mozilla Firefox, Firefox ESR, Firefox for Android and Thunderbird code execution Platforms Affected:Mozilla Firefox 100 Mozilla Firefox ESR 91.9...
Home Clean Service System file upload | CVE-2022-1837
NAME Home Clean Service System file upload Platforms Affected:Sourcecodester Home Clean Service System 1.0Risk Level:8.8Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION Home Clean Service...
Mozilla Firefox, Firefox ESR, Firefox for Android and Thunderbird code execution | CVE-2022-1529
NAME Mozilla Firefox, Firefox ESR, Firefox for Android and Thunderbird code execution Platforms Affected:Mozilla Firefox 100 Mozilla Firefox ESR 91.9...
Daily Vulnerability Trends: Thu May 26 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-22787The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows)...
The Verizon 2022 DBIR
The Verizon 2022 Data Breach Investigations Report is out. We are proud to collaborate as a supporting contributor to this...
What’s wrong with automotive mobile apps?
Introduction The recent story about the 19-year-old hacker who took control of several dozen Tesla cars has become something of a...
Unknown APT group is targeting Russian government entities
An unknown APT group is targeting Russian government entities since the beginning of the Russian invasion of Ukraine. Researchers from...
Cobalt Stike Beacon Detected – 123[.]1[.]189[.]190:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 174[.]138[.]13[.]126:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]68[.]219[.]206:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]91[.]200[.]157:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 54[.]227[.]123[.]150:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
