CVE Alert: CVE-2025-23411
Vulnerability Summary: CVE-2025-23411 mySCADA myPRO Manager is vulnerable to cross-site request forgery (CSRF), which could allow an attacker to obtain...
OSINT
CVE Alert: CVE-2025-25067
Vulnerability Summary: CVE-2025-25067 mySCADA myPRO Manager is vulnerable to an OS command injection which could allow a remote attacker to...
CVE Alert: CVE-2025-22896
Vulnerability Summary: CVE-2025-22896 mySCADA myPRO Manager stores credentials in cleartext, which could allow an attacker to obtain sensitive information. Affected...
CVE Alert: CVE-2025-20615
Vulnerability Summary: CVE-2025-20615 The Qardio Arm iOS application exposes sensitive data such as usernames and passwords in a plist file....
CVE Alert: CVE-2025-1283
Vulnerability Summary: CVE-2025-1283 The Dingtian DT-R0 Series is vulnerable to an exploit that allows attackers to bypass login requirements by...
[RHYSIDA] – Ransomware Victim: The Agency
Ransomware Group: RHYSIDA VICTIM NAME: The Agency NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2025-23421
Vulnerability Summary: CVE-2025-23421 An attacker could obtain firmware files and reverse engineer their intended use leading to loss of confidentiality...
CVE Alert: CVE-2025-24861
Vulnerability Summary: CVE-2025-24861 An attacker may inject commands via specially-crafted post requests. Affected Endpoints: No affected endpoints listed. Published Date:...
CVE Alert: CVE-2025-24836
Vulnerability Summary: CVE-2025-24836 With a specially crafted Python script, an attacker could send continuous startMeasurement commands over an unencrypted Bluetooth...
CVE Alert: CVE-2025-24865
Vulnerability Summary: CVE-2025-24865 The administrative web interface of mySCADA myPRO Manager can be accessed without authentication which could allow an...
CVE Alert: CVE-2025-26473
Vulnerability Summary: CVE-2025-26473 The Mojave Inverter uses the GET method for sensitive information. Affected Endpoints: GET method Published Date: 2/13/2025,...
CVE Alert: CVE-2025-25281
Vulnerability Summary: CVE-2025-25281 An attacker may modify the URL to discover sensitive information about the target network. Affected Endpoints: No...
CVE Alert: CVE-2024-12054
Vulnerability Summary: CVE-2024-12054 ZF Roll Stability Support Plus (RSSPlus) is vulnerable to an authentication bypass vulnerability targeting deterministic RSSPlus SecurityAccess...
CVE Alert: CVE-2025-25195
Vulnerability Summary: CVE-2025-25195 Zulip is an open source team chat application. A weekly cron job (added in 50256f48314250978f521ef439cafa704e056539) demotes channels...
CVE Alert: CVE-2024-37600
Vulnerability Summary: CVE-2024-37600 An issue was discovered in Mercedes Benz NTG (New Telematics Generation) 6 through 2021. A possible stack...
CVE Alert: CVE-2024-37602
Vulnerability Summary: CVE-2024-37602 An issue was discovered in Mercedes Benz NTG (New Telematics Generation) 6 through 2021. A possible NULL...
Doxbin (TOoDA) – 136,461 breached accounts
HIBP In February 2025, the "doxing" website Doxbin was compromised by a group calling themselves "TOoDA" and the data dumped...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA and Partners Release Call to Action to Close the National Software Understanding Gap
CISA and Partners Release Call to Action to Close the National Software Understanding Gap Today, CISA—in partnership with the Defense Advanced...
CISA: CISA Releases Microsoft Expanded Cloud Logs Implementation Playbook
CISA Releases Microsoft Expanded Cloud Logs Implementation Playbook Today, CISA released the Microsoft Expanded Cloud Logs Implementation Playbook to help...
CISA: Microsoft Releases January 2025 Security Updates
Microsoft Releases January 2025 Security Updates Microsoft released security updates to address vulnerabilities in multiple Microsoft products. A cyber threat...
CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on...
CISA: CISA Releases Six Industrial Control Systems Advisories
CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on January 23, 2025. These...
CISA: CISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications
CISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications CISA, in partnership with...
