[CICADA3301] – Ransomware Victim: Conductive Containers, Inc
Ransomware Group: CICADA3301 VICTIM NAME: Conductive Containers, Inc NOTE: No files or stolen information are by RedPacket Security. Any legal...
threatintel
CVE Alert: CVE-2024-41592
Vulnerability Summary: CVE-2024-41592 DrayTek Vigor3910 devices through 4.3.2.6 have a stack-based overflow when processing query string parameters because GetCGI mishandles...
CVE Alert: CVE-2024-41586
Vulnerability Summary: CVE-2024-41586 A stack-based Buffer Overflow vulnerability in DrayTek Vigor310 devices through 4.3.2.6 allows a remote attacker to execute...
CVE Alert: CVE-2024-41583
Vulnerability Summary: CVE-2024-41583 DrayTek Vigor3910 devices through 4.3.2.6 are vulnerable to stored Cross Site Scripting (XSS) by authenticated users due...
CVE Alert: CVE-2024-41589
Vulnerability Summary: CVE-2024-41589 DrayTek Vigor310 devices through 4.3.2.6 use unencrypted HTTP for authentication requests. Affected Endpoints: No affected endpoints listed....
CVE Alert: CVE-2024-41584
Vulnerability Summary: CVE-2024-41584 DrayTek Vigor3910 devices through 4.3.2.6 are vulnerable to reflected XSS by authenticated users, caused by missing validation...
CVE Alert: CVE-2024-9266
Vulnerability Summary: CVE-2024-9266 URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Express. This vulnerability affects the use of the...
CVE Alert: CVE-2024-41925
Vulnerability Summary: CVE-2024-41925 The web service for ONS-S8 - Spectra Aggregation Switch includes functions which do not properly validate user...
CVE Alert: CVE-2024-45367
Vulnerability Summary: CVE-2024-45367 The web server for ONS-S8 - Spectra Aggregation Switch includes an incomplete authentication process, which can lead...
CVE Alert: CVE-2024-43699
Vulnerability Summary: CVE-2024-43699 Delta Electronics DIAEnergie is vulnerable to an SQL injection in the script AM_RegReport.aspx. An unauthenticated attacker may...
CVE Alert: CVE-2024-42417
Vulnerability Summary: CVE-2024-42417 Delta Electronics DIAEnergie is vulnerable to an SQL injection in the script Handler_CFG.ashx. An authenticated attacker may...
[KILLSEC] – Ransomware Victim: bbgc[.]gov[.]bd
Ransomware Group: KILLSEC VICTIM NAME: bbgcgovbd NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[HUNTERS] – Ransomware Victim: CobelPlast
Ransomware Group: HUNTERS VICTIM NAME: CobelPlast NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Cobalt Strike Beacon Detected – 116[.]62[.]70[.]252:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]115[.]74[.]19:10001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2024-33210
Vulnerability Summary: CVE-2024-33210 A cross-site scripting (XSS) vulnerability has been identified in Flatpress 1.3. This vulnerability allows an attacker to...
CVE Alert: CVE-2024-47806
Vulnerability Summary: CVE-2024-47806 Jenkins OpenId Connect Authentication Plugin 4.354.v321ce67a_1de8 and earlier does not check the `aud` (Audience) claim of an...
CVE Alert: CVE-2024-47807
Vulnerability Summary: CVE-2024-47807 Jenkins OpenId Connect Authentication Plugin 4.354.v321ce67a_1de8 and earlier does not check the `iss` (Issuer) claim of an...
CVE Alert: CVE-2024-47612
Vulnerability Summary: CVE-2024-47612 DataDump is a MediaWiki extension that provides dumps of wikis. Several interface messages are unescaped (more specifically,...
CVE Alert: CVE-2024-47611
Vulnerability Summary: CVE-2024-47611 XZ Utils provide a general-purpose data-compression library plus command-line tools. When built for native Windows (MinGW-w64 or...
CVE Alert: CVE-2024-20441
Vulnerability Summary: CVE-2024-20441 A vulnerability in a specific REST API endpoint of Cisco NDFC could allow an authenticated, low-privileged, remote...
CVE Alert: CVE-2024-20432
Vulnerability Summary: CVE-2024-20432 A vulnerability in the REST API and web UI of Cisco Nexus Dashboard Fabric Controller (NDFC) could...
CVE Alert: CVE-2024-20438
Vulnerability Summary: CVE-2024-20438 A vulnerability in the REST API endpoints of Cisco NDFC could allow an authenticated, low-privileged, remote attacker...
CVE Alert: CVE-2024-20365
Vulnerability Summary: CVE-2024-20365 A vulnerability in the Redfish API of Cisco UCS B-Series, Cisco UCS Managed C-Series, and Cisco UCS...
