Lucene search
+L

89974 matches found

talosblog
talosblog
added 4 hours ago3 views

Begun, the Patch Wars have

Welcome to this week's edition of the Threat Source newsletter. We all knew, to some degree or another, that this summer was going to a hot mess. I don't mean FIFA drama or record setting heat waves. I mean the slow but steady momentum that AI frontier models were accruing for vulnerability...

6.3AI score
Exploits0
thn
thn
added 7 hours ago3 views

ThreatsDay: Game Cheat Spyware, 24-Hour Ransomware, Chrome Sync Stalking + 12 More Stories

A lot of this week’s trouble starts with something that looks close enough. A familiar repo. A useful installer. A harmless sync setting. Then the handoff goes bad, the box starts talking to someone else, and the damage moves faster than the explanation. Old bugs are back, weak defaults are earni...

9.8CVSS7.3AI score0.00677EPSS
Exploits2
circl
circl
added 9 hours ago6 views

CVE-2026-20187

creationtimestamp| type| source ---|---|--- 2026-07-16 13:00:30+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mqrc566sg32e 2026-07-16 16:45:11+00:00| seen| https://www.acn.gov.it/portale/w/risolte-vulnerabilita-in-prodotti-cisco-28...

7.5CVSS6.1AI score
Exploits0References2
circl
circl
added 9 hours ago7 views

CVE-2026-20158

creationtimestamp| type| source ---|---|--- 2026-07-16 13:00:30+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mqrc566sg32e 2026-07-16 16:45:04+00:00| seen| https://www.acn.gov.it/portale/w/risolte-vulnerabilita-in-prodotti-cisco-28...

7.5CVSS6.1AI score
Exploits0References2
circl
circl
added 9 hours ago7 views

CVE-2026-20157

creationtimestamp| type| source ---|---|--- 2026-07-16 13:00:30+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mqrc566sg32e 2026-07-16 16:45:09+00:00| seen| https://www.acn.gov.it/portale/w/risolte-vulnerabilita-in-prodotti-cisco-28...

7.5CVSS6.1AI score
Exploits0References2
talosblog
talosblog
added 12 hours ago3 views

UAT-11795 deploys novel Starland RAT and bespoke WLDR C2 implant in financially motivated campaign

Cisco Talos is disclosing UAT-11795, a sophisticated, Russian-speaking, financially motivated adversary that has been conducting a malicious campaign targeting users in the U.S. and Europe since at least June 2025. Talos has discovered that the actor in this campaign delivers a Python-based remot...

6.4AI score
Exploits0
nuclei
nuclei
added 13 hours ago81 views

Cisco Unified IP Conference Station 7937G - Denial-of-Service

Cisco Unified IP Conference Station 7937G 1-4-4-0 through 1-4-5-7 allows attackers to restart the device remotely via specially crafted packets that can cause a denial-of-service condition. Note: We cannot prove this vulnerability exists. Out of an abundance of caution, this CVE is being assigned...

7.8CVSS7AI score0.7977EPSS
Exploits5References5
nuclei
nuclei
added 13 hours ago85 views

Cisco VPN Routers - Unauthenticated Arbitrary File Upload

A vulnerability in the web-based management interface of Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an unauthenticated, remote attacker to upload arbitrary files to an affected device. This vulnerability is due to insufficient authorization enforcement...

9.8CVSS6.8AI score0.88874EPSS
Exploits0References5
nuclei
nuclei
added 13 hours ago18 views

Cisco Secure Firewall Management Center - Authentication Bypass

Cisco Secure Firewall Management Center Software contains an authentication bypass caused by improper system process creation at boot, letting unauthenticated remote attackers execute scripts and gain root access, exploit requires crafted HTTP requests. id: CVE-2026-20079 info: name: Cisco Secure...

10CVSS7.2AI score0.387EPSS
Exploits2References2
nuclei
nuclei
added 13 hours ago169 views

Cisco IOS XE WLC - Arbitrary File Upload

A vulnerability in the Out-of-Band Access Point AP Image Download feature of Cisco IOS XE Software for Wireless LAN Controllers WLCs could allow an unauthenticated, remote attacker to upload arbitrary files to an affected system.This vulnerability is due to the presence of a hard-coded JSON Web...

10CVSS7.1AI score0.17894EPSS
Exploits1References2
nuclei
nuclei
added 13 hours ago17 views

IBM Data Risk Manager - Authentication Bypass via SAML

IBM Data Risk Manager versions 2.0.1 through 2.0.6 are vulnerable to authentication bypass when configured with SAML authentication. A remote attacker can bypass security restrictions by sending a specially crafted HTTP request to the SAML idpSelection endpoint, allowing them to bypass the...

9.8CVSS7.1AI score0.70031EPSS
Exploits8References4
nuclei
nuclei
added 13 hours ago55 views

Hardcoded Admin Credentials For Cisco Smart Licensing Utility API

A vulnerability in Cisco Smart Licensing Utility could allow an unauthenticated, remote attacker to log in to an affected system by using a static administrative credential.This vulnerability is due to an undocumented static user credential for an administrative account. An attacker could exploit...

9.8CVSS7.1AI score0.91911EPSS
Exploits0References2
nuclei
nuclei
added 13 hours ago82 views

Cisco Smart Licensing Utility UnAuthenticated Logs Exposure Leaking Plaintext Credentials

A vulnerability in Cisco Smart Licensing Utility could allow an unauthenticated, remote attacker to access sensitive information.This vulnerability is due to excessive verbosity in a debug log file. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected...

7.5CVSS7.1AI score0.51466EPSS
Exploits0References1
nuclei
nuclei
added 13 hours ago15 views

Cisco Finesse - Server-Side Request Forgery (SSRF)

Cisco Finesse contains an SSRF caused by insufficient validation of user-supplied input in HTTP requests, letting unauthenticated remote attackers access limited sensitive information, exploit requires sending crafted HTTP requests. id: CVE-2024-20404 info: name: Cisco Finesse - Server-Side Reque...

7.2CVSS7AI score0.21738EPSS
Exploits1References2
nuclei
nuclei
added 13 hours ago66 views

Cisco Linksys WVC54GCA 1.00R22/1.00R24 - Local File Inclusion

Cisco Linksys WVC54GCA 1.00R22/1.00R24 is susceptible to local file inclusion in adm/file.cgi because it allows remote attackers to read arbitrary files via a %2e. encoded dot dot or an absolute pathname in the nextfile parameter. id: CVE-2009-1558 info: name: Cisco Linksys WVC54GCA 1.00R22/1.00R...

7.8CVSS6.2AI score0.28806EPSS
Exploits1References5
nuclei
nuclei
added 13 hours ago155 views

Cisco IOS HTTP Configuration - Authentication Bypass

HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute arbitrary commands, when local authorization is being used, by specifying a high access level in the URL. id: CVE-2001-0537 info: name: Cisco IOS HTTP Configuration - Authentication Bypass author:...

9.3CVSS6.3AI score0.6845EPSS
Exploits8References5
nuclei
nuclei
added 13 hours ago75 views

Cisco Unified Communications Manager 7/8/9 - Directory Traversal

A directory traversal vulnerability in the Tomcat administrative web interface in Cisco Unified Communications Manager allows remote authenticated users to read arbitrary files via directory traversal sequences in an unspecified input string, aka Bug ID CSCui78815 id: CVE-2013-5528 info: name:...

8.1CVSS7.1AI score0.88559EPSS
Exploits22References4
nuclei
nuclei
added 13 hours ago47 views

Cisco CUCM, UCCX, and Unified IP-IVR- Directory Traversal

A directory traversal vulnerability in Cisco Unified Communications Manager CUCM 5.x and 6.x before 6.15SU2, 7.x before 7.15bSU2, and 8.x before 8.03, and Cisco Unified Contact Center Express aka Unified CCX or UCCX and Cisco Unified IP Interactive Voice Response Unified IP-IVR before 6.01SR1ES8,...

7.8CVSS6.2AI score0.26393EPSS
Exploits0References4
nuclei
nuclei
added 13 hours ago74 views

Akkadian Provisioning Manager - Information Disclosure

Akkadian Provisioning Manager is susceptible to information disclosure. The restricted shell provided can be escaped by abusing the Edit MySQL Configuration command. This command launches a standard VI editor interface which can then be escaped. id: CVE-2021-31581 info: name: Akkadian Provisionin...

7.9CVSS6.1AI score0.01217EPSS
Exploits1References5
nuclei
nuclei
added 13 hours ago64 views

Cisco HyperFlex HX Data Platform - Arbitrary File Upload

Cisco HyperFlex HX Data Platform contains an arbitrary file upload vulnerability in the web-based management interface. An attacker can send a specific HTTP request to an affected device, thus enabling upload of files to the affected device with the permissions of the tomcat8 user. id:...

5.3CVSS6.3AI score0.80426EPSS
Exploits5References5
Rows per page
Query Builder