Lucene search
+L

167 matches found

korelogic
korelogic
added 2024/09/10 12:0 a.m.80 views

VICIdial Authenticated Remote Code Execution

Vulnerability Details Affected Vendor: VICIdial Affected Product: VICIdial Affected Version: 2.14-917a Platform: GNU/Linux CWE Classification: CWE-78: Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' CVE ID: CVE-2024-8504 2. Vulnerability Description An...

9.8CVSS9.9AI score0.80023EPSS
Exploits12Affected Software1
ibm
ibm
added 2024/04/12 5:47 p.m.41 views

Security Bulletin: IBM Call Center is subject to vulnerability regarding an XML service, a remote attacker could exploit this vulnerability to consume available CPU resources.

Summary IBM Call Center removed parts of a legacy code that carried vulnerabilites. The code did contain CVE-2009-2625, CVE-2013-4002, CVE-2020-14338, CVE-2022-23437, CVE-2012-0881, however the specific code related to the vulnerability is not in use, therefore the risk is lower. This bulletin...

7.8CVSS7.2AI score0.3038EPSS
Exploits2Affected Software1
malwarebytes
malwarebytes
added 2024/01/03 4:29 p.m.31 views

Investment fraud a serious money maker for criminals

Europols’s spotlight report ‘Online fraud schemes: a web of deceit’, looks into online fraud schemes—a major crime threat in the EU and beyond—and one of the reports primary themes is investment fraud. But first I want to share some more remarkable conclusions from the report: Charity scams that...

7AI score
Exploits0
malwarebytes
malwarebytes
added 2023/11/13 10:8 p.m.21 views

State of Maine data breach impacts 1.3 million people

The US State of Maine says it has suffered a data breach impacting around 1.3 million people. According to the census from July 2022, thats more or less the the entire population of Maine. The State of Maine says it was compromised via a known vulnerability in secure transfer service MOVEit...

7.1AI score
Exploits0
cnnvd
cnnvd
added 2023/09/15 12:0 a.m.4 views

Saphira Connect SQL Injection Vulnerability

Saphira Connect is a telephone exchange and call center server mobile application from Saphira Connect, Inc. An SQL injection vulnerability exists in versions prior to Saphira Connect 9 that stems from incorrect neutralization of specific elements used by the system...

9.8CVSS7.8AI score0.00819EPSS
Exploits0References3
cnnvd
cnnvd
added 2023/09/15 12:0 a.m.7 views

Saphira Connect Security Vulnerability

Saphira Connect is a mobile application for telephone exchange and call center servers from Saphira Connect, Inc. Security vulnerabilities exist in versions prior to Saphira Connect 9 that could be exploited by an attacker to execute remote code...

9.8CVSS7AI score0.01197EPSS
Exploits0References3
thn
thn
added 2023/07/07 6:12 p.m.37 views

Vishing Goes High-Tech: New 'Letscall' Malware Employs Voice Traffic Routing

Researchers have issued a warning about an emerging and advanced form of voice phishing vishing known as "Letscall." This technique is currently targeting individuals in South Korea. The criminals behind "Letscall" employ a multi-step attack to deceive victims into downloading malicious apps from...

6.7AI score
Exploits0
thn
thn
added 2023/07/07 6:12 p.m.4 views

Vishing Goes High-Tech: New 'Letscall' Malware Employs Voice Traffic Routing

Researchers have issued a warning about an emerging and advanced form of voice phishing vishing known as "Letscall." This technique is currently targeting individuals in South Korea. The criminals behind "Letscall" employ a multi-step attack to deceive victims into downloading malicious apps from...

6.5AI score
Exploits0
thn
thn
added 2023/06/28 1:47 p.m.28 views

CryptosLabs Scam Ring Targets French-Speaking Investors, Rakes in €480 Million

Cybersecurity researchers have exposed the workings of a scam ring called CryptosLabs that's estimated to have made €480 million in illegal profits by targeting users in French-speaking individuals in France, Belgium, and Luxembourg since April 2018. The syndicate's massive fake investment scheme...

6.6AI score
Exploits0
thn
thn
added 2023/06/28 1:47 p.m.3 views

CryptosLabs Scam Ring Targets French-Speaking Investors, Rakes in €480 Million

Cybersecurity researchers have exposed the workings of a scam ring called CryptosLabs that's estimated to have made €480 million in illegal profits by targeting users in French-speaking individuals in France, Belgium, and Luxembourg since April 2018. The syndicate's massive fake investment scheme...

6.5AI score
Exploits0
cnvd
cnvd
added 2023/03/07 12:0 a.m.20 views

Cisco Finesse Denial of Service Vulnerability

Cisco Finesse is a set of call center management software from the U.S. company Cisco Cisco. Cisco Finesse suffers from a denial of service vulnerability that stems from incorrect IP address filtering by the reverse proxy, which can be exploited by an attacker to cause a denial of service DoS...

7.5CVSS6.7AI score0.00795EPSS
Exploits0References1
osv
osv
added 2023/01/10 2:15 p.m.3 views

CVE-2022-4422

Call Center System developed by Bulutses Information Technologies before version 3.0 has an unauthenticated Sql Injection vulnerability. This has been fixed in the version 3.0...

9.8CVSS5.7AI score0.0062EPSS
Exploits0References1
nvd
nvd
added 2023/01/10 2:15 p.m.16 views

CVE-2022-4422

Call Center System developed by Bulutses Information Technologies before version 3.0 has an unauthenticated Sql Injection vulnerability. This has been fixed in the version 3.0...

9.8CVSS9.7AI score0.0062EPSS
Exploits0References2
prion
prion
added 2023/01/10 2:15 p.m.13 views

Sql injection

Call Center System developed by Bulutses Information Technologies before version 3.0 has an unauthenticated Sql Injection vulnerability. This has been fixed in the version 3.0...

7.5CVSS9.6AI score0.0062EPSS
Exploits0References1Affected Software1
cve
cve
added 2023/01/10 12:0 a.m.58 views

CVE-2022-4422

The CVE-2022-4422 issue affects Bulutses Information Technologies’ Call Center System prior to version 3.0. It is an unauthenticated SQL Injection vulnerability in the application (component/feature not explicitly named in the documents) that could allow arbitrary SQL execution. The vulnerability...

9.8CVSS7.2AI score0.0062EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2023/01/10 12:0 a.m.4 views

CVE-2022-4422 SQLi in Bulutdesk Callcenter

Call Center System developed by Bulutses Information Technologies before version 3.0 has an unauthenticated Sql Injection vulnerability. This has been fixed in the version 3.0...

9.8CVSS7.2AI score0.0062EPSS
Exploits0References2
cvelist
cvelist
added 2023/01/10 12:0 a.m.25 views

CVE-2022-4422 SQLi in Bulutdesk Callcenter

Call Center System developed by Bulutses Information Technologies before version 3.0 has an unauthenticated Sql Injection vulnerability. This has been fixed in the version 3.0...

9.8CVSS9.8AI score0.0062EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2023/01/10 12:0 a.m.5 views

PT-2023-14436 · Bulutses Information Technologies · Bulutses Call Center System

Name of the Vulnerable Software and Affected Versions: Bulutses Information Technologies Call Center System versions prior to 3.0 Description: The issue is related to an unauthenticated Sql Injection vulnerability. This vulnerability has been fixed in version 3.0. Recommendations: For versions...

9.8CVSS9.4AI score0.0062EPSS
Exploits0References7
attackerkb
attackerkb
added 2022/12/19 11:0 a.m.5 views

CVE-2022-4422

Call Center System developed by Bulutses Information Technologies before version 3.0 has an unauthenticated Sql Injection vulnerability. This has been fixed in the version 3.0...

9.8CVSS7.2AI score0.0062EPSS
Exploits0References3
thn
thn
added 2022/11/25 4:58 a.m.32 views

Interpol Seized $130 Million from Cybercriminals in Global "HAECHI-III" Crackdown Operation

Interpol on Thursday announced the seizure of $130 million worth of virtual assets in connection with a global crackdown on cyber-enabled financial crimes and money laundering. The international police operation, dubbed HAECHI-III, transpired between June 28 and November 23, 2022, resulting in th...

1.2AI score
Exploits0
Rows per page
Query Builder