The Gentlemen ransomware: Dissecting a self-propagating Go encryptor

In this article 1. Pre-encryption 2. File encryption 3. Post-encryption 4. Defending against The Gentlemen ransomware 5. Microsoft Defender detections and hunting guidance 6. Indicators of compromise Ransomware that combines robust encryption with rapid lateral movement significantly increases th...

The Gentlemen ransomware: Dissecting a self-propagating Go encryptor

In this article 1. Pre-encryption 2. File encryption 3. Post-encryption 4. Defending against The Gentlemen ransomware 5. Microsoft Defender detections and hunting guidance 6. Indicators of compromise Ransomware that combines robust encryption with rapid lateral movement significantly increases th...

CVE-2026-2697

creationtimestamp| type| source ---|---|--- 2026-02-19 14:20:25+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mf7s2qbcjk24...

MiracleLinux 3 : foomatic-3.0.2-47.3AX (AXSA:2011-294:01)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2011-294:01 advisory. Foomatic is a comprehensive, spooler-independent database of printers, printer drivers, and driver descriptions. It contains utilities to generate driver...

ECHO-4B2E-2697-F324

Bulletin has no description...

CVE-2025-2697

creationtimestamp| type| source ---|---|--- 2025-08-26 17:16:29+00:00| seen| Telegram/WFQM3A2FFKnLhyKTEd1RncflL0viUi29pzNjHpHaaVPQUIM...

CVE-2019-2697 vulnerabilities

Vulnerabilities for packages: openjdk-8-openj9, openjdk-11-openj9, openjdk-21-openj9, openjdk-25-openj9, openjdk-17-openj9, openjdk-26-openj9...

CVE-2024-2697

The socialdriver-framework WordPress plugin before 2024.0.0 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against...

CVE-2013-2697

Cross-site request forgery CSRF vulnerability in the WP-DownloadManager plugin before 1.61 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences...

Linux Distros Unpatched Vulnerability : CVE-2015-2697

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The buildprincipalva function in lib/krb5/krb/bldprinc.c in MIT Kerberos 5 aka krb5 before 1.14 allows remote authenticated users to cause a denial of service...

Huawei EulerOS: Security Advisory for wget (EulerOS-SA-2024-2697)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CGA-6968-R5R8-2697

Bulletin has no description...

CVE-2024-2697 Swift Framework < 2024.0.0 - Contributor+ Stored XSS via Shortcode

The socialdriver-framework WordPress plugin before 2024.0.0 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against...

CVE-2024-2697 Swift Framework < 2024.0.0 - Contributor+ Stored XSS via Shortcode

The socialdriver-framework WordPress plugin before 2024.0.0 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against...

WordPress Swift Framework Page Builder Plugin < 2024.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Swift Framework Page Builder Type Plugin Vulnerable versions 2024.0.0 Fixed in 2024.0.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2697 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 571298b5f634 Credits Bob...

SUSE SLES15 Security Update : kernel RT (Live Patch 3 for SLE 15 SP4) (SUSE-SU-2023:2697-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2697-1 advisory. - dotlsgetsockopt in net/tls/tlsmain.c in the Linux kernel through 6.2.6 lacks a locksock call, leading to a race condition with a resultant...

CVE-2023-2697

creationtimestamp| type| source ---|---|--- 2023-05-14 16:28:40+00:00| seen| https://t.me/cibsecurity/64075...

CVE-2023-2697

CVE-2023-2697 affects SourceCodester Online Exam System 1.0. The vulnerability resides in the POST Parameter Handler, specifically the /jurusan/data file and the argument columns[1][data], whose manipulation leads to SQL injection. It is exploitable remotely, and the exploit has been disclosed pu...

K000133077: Java SE vulnerability CVE-2019-2697

Security Advisory Description Vulnerability in the Java SE component of Oracle Java SE subcomponent: 2D. Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise...

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Cloud Transformation Advisor

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 8.0.5.25 used by IBM Cloud Transformation Advisor. IBM Cloud Transformation Advisor has addressed the applicable CVEs. These issues were disclosed as part of the IBM Java SDK updates in April 2019. Vulnerability...