23 matches found
cisco-hypershield
Ansible Collection: stevefulme1.ciscohypershield Ansible Col...
EUVD-2019-9556
Malware in sbrugna...
CVE-2019-19968
PandoraFMS 742 suffers from multiple XSS vulnerabilities, affecting the Agent Management, Report Builder, and Graph Builder components. An authenticated user can inject dangerous content into a data store that is later read and included in dynamic content...
Announcing the Newest Game-Changing Upgrades of Qualys Cloud Agent
Qualys Cloud Agent Gets Powerful Enhancements for Boosting User Flexibility, Improved Control & Efficiency in VDI Environments, Seamless Updates, and More! We are excited to unveil a major upgrade to the Qualys Cloud Agent, marking a significant stride in cybersecurity management. The four update...
SUSE CVE-2017-2293
Versions of Puppet Enterprise prior to 2016.4.5 or 2017.2.1 shipped with an MCollective configuration that allowed the package plugin to install or remove arbitrary packages on all managed agents. This release adds default configuration to not allow these actions. Customers who rely on this...
AWS Graviton Processor Support on Insight Agent
By Marco Botros Marco is a Technical Product Manager for Platform at Rapid7. We are pleased to announce that the Insight Agent now supports the AWS Graviton processor. The Insight Agent supports various operating systems using the AWS Graviton processor, including Amazon Linux, Redhat, and Ubuntu...
Apple Silicon Support on Insight Agent
We are pleased to announce the general availability of native support of Apple Silicon chips for the Rapid7 Insight Agent! The Insight Agent has been fully validated and tested to run on the new Apple Silicon systems natively, and does not require Rosetta 2 to install or operate. This ensures...
Weak Password Vulnerability in Mixcall Seat Management Center of Shenzhen ShenHaiJie Technology Co.
SHEN ZHEN SINGHEAD TECH CO. LTD. is a high-tech enterprise focusing on the research, development, manufacturing and sales of contact center and converged communication products with communication as the core. SHENZHEN SINGHEAD TECH CO .,LTD. has a weak password vulnerability in the Mixcall agent...
Trend Micro OfficeScan XG 和 Trend Micro OfficeScan 信息泄露漏洞
Trend Micro OfficeScan XG and Trend Micro Worry-Free Business Security are both products of Trend Micro, Inc.Trend Micro OfficeScan XG is a distributed anti-virus software.Trend Micro Worry-Free Business Security is an enterprise-class information security solution. Worry-Free Business Security i...
Trend Micro Apex One 信息泄露漏洞
Trend Micro Apex One is an endpoint protection solution that offers the broadest range of protection capabilities, including high-accuracy machine learning and advanced ransomware protection. An improper access control vulnerability exists in Trend Micro Apex One. An attacker could exploit the...
DeimosC2 - A Golang Command And Control Framework For Post-Exploitation
DeimosC2 is a post-exploitation Command & Control C2 tool that leverages multiple communication methods in order to control machines that have been compromised. DeimosC2 server and agents works on, and has been tested on, Windows, Darwin, and Linux. It is entirely written in Golang with a front e...
Veeam Support for Azure Stack Hub
Overview Veeam Backup & Replication supports backup and restore of workloads running on Azure Stack Hub using Veeam Agent for Microsoft Windows and Veeam Agent for Linux. These can be centrally managed with Veeam Backup & Replication. Restore operations are performed using the Direct Restore to...
CVE-2019-19968
PandoraFMS 742 suffers from multiple XSS vulnerabilities, affecting the Agent Management, Report Builder, and Graph Builder components. An authenticated user can inject dangerous content into a data store that is later read and included in dynamic content...
Cross site scripting
PandoraFMS 742 suffers from multiple XSS vulnerabilities, affecting the Agent Management, Report Builder, and Graph Builder components. An authenticated user can inject dangerous content into a data store that is later read and included in dynamic content...
CVE-2019-19968
PandoraFMS 742 suffers from multiple XSS vulnerabilities, affecting the Agent Management, Report Builder, and Graph Builder components. An authenticated user can inject dangerous content into a data store that is later read and included in dynamic content...
CVE-2019-19968
PandoraFMS 742 is affected by multiple stored XSS vulnerabilities in the Agent Management, Report Builder, and Graph Builder components. The root cause, as described across sources, is inadequate validation/sanitation of client data stored by the web application, which is later read and echoed in...
POC-T
This is a Python-based penetration testing framework called POC-T. It is designed to facilitate concurrent testing of multiple targets and supports various features such as multi-threading, URL parsing, and user agent management. The framework includes a range of scripts for testing different...
Release Notes for Veeam Backup & Replication 9.5 Update 3
More Recent Version Available Please find the latest version of Veeam Backup & Replication here: Veeam Downloads - Latest Version Challenge Release Notes for Veeam Backup & Replication 9.5 Update 3 Cause Please confirm you are running version 9.5.0.580, 9.5.0.711, 9.5.0.802, 9.5.0.823, 9.5.0.1038...
Remote Command Execution Vulnerability in Mixcall Attendant Management Center files Parameter in Deephaven
Ltd. is a company that focuses on the research, development, manufacturing and sales of call centers and converged communication products. mixcall is one of the company's customer service systems. A remote command execution vulnerability exists in Deephaven's Mixcall agent management center. As t...
Arbitrary file upload vulnerability in the $_FILES ['ttsFile'] and $_POST['taskid'] parameters of the Mixcall agent management system.
Mixcall seat management system is based on B/S architecture, the management personnel can directly log into the Mixcall seat management center through the computer, and view the detailed situation related to the seat personnel's voice services. An arbitrary file upload vulnerability exists in the...