Lucene search
+L

43 matches found

attackerkb
attackerkb
added 2025/12/18 8:33 p.m.4 views

CVE-2025-62002

BullWall Ransomware Containment considers the number of files modified to trigger detection. An authenticated attacker could encrypt a single possibly large file without triggering detection if thresholds are configured to require multiple file changes. The number of files to trigger detection ca...

8.1CVSS5.5AI score0.00259EPSS
Exploits0References4Affected Software1
cvelist
cvelist
added 2025/12/18 8:33 p.m.27 views

CVE-2025-62002 BullWall Ransomware Containment file count detection bypass

BullWall Ransomware Containment considers the number of files modified to trigger detection. An authenticated attacker could encrypt a single possibly large file without triggering detection if thresholds are configured to require multiple file changes. The number of files to trigger detection ca...

5.3CVSS0.00259EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/12/18 8:33 p.m.4 views

CVE-2025-62002 BullWall Ransomware Containment file count detection bypass

BullWall Ransomware Containment considers the number of files modified to trigger detection. An authenticated attacker could encrypt a single possibly large file without triggering detection if thresholds are configured to require multiple file changes. The number of files to trigger detection ca...

5.3CVSS6.2AI score0.00259EPSS
Exploits0References2
cve
cve
added 2025/12/18 8:33 p.m.17 views

CVE-2025-62002

BullWall Ransomware Containment has a file-modification-based detection mechanism that can be bypassed. An authenticated attacker could encrypt a single large file without triggering alerts when thresholds are configured to require multiple file changes. Affected versions include 4.6.0.0, 4.6.0.6...

8.1CVSS6.2AI score0.00259EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2025/12/18 8:32 p.m.4 views

CVE-2025-62001

BullWall Ransomware Containment supports configurable file and directory exclusions such as '$RECYCLE.BIN' to balance monitoring scope and performance. Certain exclusion patterns could allow an authenticated attacker to rename directories in a way that avoids monitoring. Fixed in 4.6.1.14 and...

8.8CVSS5.5AI score0.00326EPSS
Exploits0References4Affected Software1
vulnrichment
vulnrichment
added 2025/12/18 8:32 p.m.2 views

CVE-2025-62001 BullWall Ransomware Containment hard-coded folder exclusions

BullWall Ransomware Containment supports configurable file and directory exclusions such as '$RECYCLE.BIN' to balance monitoring scope and performance. Certain exclusion patterns could allow an authenticated attacker to rename directories in a way that avoids monitoring. Fixed in 4.6.1.14 and...

8.8CVSS6.1AI score0.00326EPSS
Exploits0References2
cvelist
cvelist
added 2025/12/18 8:32 p.m.28 views

CVE-2025-62001 BullWall Ransomware Containment hard-coded folder exclusions

BullWall Ransomware Containment supports configurable file and directory exclusions such as '$RECYCLE.BIN' to balance monitoring scope and performance. Certain exclusion patterns could allow an authenticated attacker to rename directories in a way that avoids monitoring. Fixed in 4.6.1.14 and...

8.8CVSS0.00326EPSS
Exploits0References2
cve
cve
added 2025/12/18 8:32 p.m.15 views

CVE-2025-62001

Summary: CVE-2025-62001 affects BullWall Ransomware Containment. A flaw in configurable/exclusion handling could let an attacker with file write permissions bypass monitoring by renaming directories (e.g., $RECYCLE.BIN/$recycle.bin). Affected versions (per sources): 4.6.0.0, 4.6.0.6, 4.6.0.7, 4.6...

8.8CVSS6.1AI score0.00326EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2025/12/18 8:32 p.m.3 views

CVE-2025-62000

BullWall Ransomware Containment may not always detect an encrypted file. This issue affects a specific file inspection method that evaluates file content based on header bytes. An authenticated attacker could encrypt files, preserving the first four bytes and preventing this particular method fro...

7.1CVSS5.6AI score0.00196EPSS
Exploits0References4Affected Software1
cvelist
cvelist
added 2025/12/18 8:32 p.m.28 views

CVE-2025-62000 BullWall Ransomware Containment incomplete file inspection

BullWall Ransomware Containment may not always detect an encrypted file. This issue affects a specific file inspection method that evaluates file content based on header bytes. An authenticated attacker could encrypt files, preserving the first four bytes and preventing this particular method fro...

7.1CVSS0.00196EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/12/18 8:32 p.m.3 views

CVE-2025-62000 BullWall Ransomware Containment incomplete file inspection

BullWall Ransomware Containment may not always detect an encrypted file. This issue affects a specific file inspection method that evaluates file content based on header bytes. An authenticated attacker could encrypt files, preserving the first four bytes and preventing this particular method fro...

7.1CVSS6.3AI score0.00196EPSS
Exploits0References2
cve
cve
added 2025/12/18 8:32 p.m.14 views

CVE-2025-62000

BullWall Ransomware Containment has an incomplete file-inspection mechanism that relies on header-byte evaluation. An authenticated attacker could encrypt a file while leaving the first four bytes unchanged, bypassing this specific detection method. The issue is limited: BullWall also employs add...

7.1CVSS6.3AI score0.00196EPSS
Exploits0References2Affected Software1
cnnvd
cnnvd
added 2025/12/18 12:0 a.m.5 views

BullWall Ransomware Containment 安全漏洞

BullWall Ransomware Containment is a ransomware protection software from BullWall Denmark. A security vulnerability exists in BullWall Ransomware Containment versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4 that stems from a dependency on the number of file modifications to trigger detection, whic...

8.1CVSS6.6AI score0.00259EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2025/12/18 12:0 a.m.6 views

PT-2025-52340

Name of the Vulnerable Software and Affected Versions BullWall Ransomware Containment versions 4.6.0.0 through 4.6.1.4 Description BullWall Ransomware Containment’s detection mechanism, which relies on the number of file modifications, can be bypassed by an authenticated attacker. An attacker cou...

8.1CVSS6.5AI score0.00259EPSS
Exploits0References9
ptsecurity
ptsecurity
added 2025/12/18 12:0 a.m.5 views

PT-2025-52339

Name of the Vulnerable Software and Affected Versions BullWall Ransomware Containment versions 4.6.0.0 through 4.6.1.4 Description BullWall Ransomware Containment does not monitor certain file paths, such as $recycle.bin. An attacker with file write permissions could bypass detection by renaming ...

8.8CVSS6.6AI score0.00326EPSS
Exploits0References10
ptsecurity
ptsecurity
added 2025/12/18 12:0 a.m.6 views

PT-2025-52338

Name of the Vulnerable Software and Affected Versions BullWall Ransomware Containment versions 4.6.0.0 through 4.6.1.4 Description BullWall Ransomware Containment does not fully inspect files to identify ransomware. An attacker with valid credentials can bypass detection by encrypting a file whil...

7.1CVSS6.6AI score0.00196EPSS
Exploits0References7
cnnvd
cnnvd
added 2025/12/18 12:0 a.m.5 views

BullWall Server Intrusion Protection 安全漏洞

BullWall Server Intrusion Protection is a server security software from the Danish company BullWall. A security vulnerability exists in BullWall Server Intrusion Protection versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4, which stems from an improperly sequenced initialization of the service and...

7.7CVSS6.5AI score0.00281EPSS
Exploits0References3
cnnvd
cnnvd
added 2025/12/18 12:0 a.m.4 views

BullWall Ransomware Containment 安全漏洞

BullWall Ransomware Containment is a ransomware protection software from BullWall Denmark. A security vulnerability exists in BullWall Ransomware Containment versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4, which stems from an incomplete file check and could lead to bypassing detection...

7.1CVSS6.6AI score0.00196EPSS
Exploits0References3
cnnvd
cnnvd
added 2025/12/18 12:0 a.m.5 views

BullWall Server Intrusion Protection 安全漏洞

BullWall Server Intrusion Protection is a server security software from the Danish company BullWall. A security vulnerability exists in BullWall Server Intrusion Protection versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4, which stems from a delayed MFA check and could lead to a privileged attacke...

7.7CVSS6.5AI score0.00311EPSS
Exploits0References3
cnnvd
cnnvd
added 2025/12/18 12:0 a.m.5 views

BullWall Ransomware Containment 安全漏洞

BullWall Ransomware Containment is a ransomware protection software from BullWall Denmark. A security vulnerability exists in BullWall Ransomware Containment versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4, which stems from an unmonitored exclusion file path that could lead to bypassing detection...

8.8CVSS6.6AI score0.00326EPSS
Exploits0References3
Rows per page
Query Builder