Lucene search
K

238 matches found

ATTACKERKB
ATTACKERKB
added 2025/12/18 8:32 p.m.4 views

CVE-2025-62001

BullWall Ransomware Containment supports configurable file and directory exclusions such as '$RECYCLE.BIN' to balance monitoring scope and performance. Certain exclusion patterns could allow an authenticated attacker to rename directories in a way that avoids monitoring. Fixed in 4.6.1.14 and...

8.8CVSS5.5AI score0.00326EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2025/12/18 8:32 p.m.11 views

CVE-2025-62001

Summary: CVE-2025-62001 affects BullWall Ransomware Containment. A flaw in configurable/exclusion handling could let an attacker with file write permissions bypass monitoring by renaming directories (e.g., $RECYCLE.BIN/$recycle.bin). Affected versions (per sources): 4.6.0.0, 4.6.0.6, 4.6.0.7, 4.6...

8.8CVSS6.1AI score0.00326EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/12/18 8:32 p.m.23 views

CVE-2025-62001 BullWall Ransomware Containment hard-coded folder exclusions

BullWall Ransomware Containment supports configurable file and directory exclusions such as '$RECYCLE.BIN' to balance monitoring scope and performance. Certain exclusion patterns could allow an authenticated attacker to rename directories in a way that avoids monitoring. Fixed in 4.6.1.14 and...

8.8CVSS0.00326EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/18 8:32 p.m.2 views

CVE-2025-62001 BullWall Ransomware Containment hard-coded folder exclusions

BullWall Ransomware Containment supports configurable file and directory exclusions such as '$RECYCLE.BIN' to balance monitoring scope and performance. Certain exclusion patterns could allow an authenticated attacker to rename directories in a way that avoids monitoring. Fixed in 4.6.1.14 and...

8.8CVSS6.1AI score0.00326EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/18 8:32 p.m.25 views

CVE-2025-62000 BullWall Ransomware Containment incomplete file inspection

BullWall Ransomware Containment may not always detect an encrypted file. This issue affects a specific file inspection method that evaluates file content based on header bytes. An authenticated attacker could encrypt files, preserving the first four bytes and preventing this particular method fro...

7.1CVSS0.00196EPSS
Exploits0References2
CVE
CVE
added 2025/12/18 8:32 p.m.12 views

CVE-2025-62000

BullWall Ransomware Containment has an incomplete file-inspection mechanism that relies on header-byte evaluation. An authenticated attacker could encrypt a file while leaving the first four bytes unchanged, bypassing this specific detection method. The issue is limited: BullWall also employs add...

7.1CVSS6.3AI score0.00196EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.3 views

BullWall Ransomware Containment 安全漏洞

BullWall Ransomware Containment is a ransomware protection software from BullWall Denmark. A security vulnerability exists in BullWall Ransomware Containment versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4 that stems from a dependency on the number of file modifications to trigger detection, whic...

8.1CVSS6.6AI score0.00259EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.5 views

PT-2025-52338

Name of the Vulnerable Software and Affected Versions BullWall Ransomware Containment versions 4.6.0.0 through 4.6.1.4 Description BullWall Ransomware Containment does not fully inspect files to identify ransomware. An attacker with valid credentials can bypass detection by encrypting a file whil...

7.1CVSS6.6AI score0.00196EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.5 views

PT-2025-52340

Name of the Vulnerable Software and Affected Versions BullWall Ransomware Containment versions 4.6.0.0 through 4.6.1.4 Description BullWall Ransomware Containment’s detection mechanism, which relies on the number of file modifications, can be bypassed by an authenticated attacker. An attacker cou...

8.1CVSS6.5AI score0.00259EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.5 views

PT-2025-52339

Name of the Vulnerable Software and Affected Versions BullWall Ransomware Containment versions 4.6.0.0 through 4.6.1.4 Description BullWall Ransomware Containment does not monitor certain file paths, such as $recycle.bin. An attacker with file write permissions could bypass detection by renaming ...

8.8CVSS6.6AI score0.00326EPSS
Exploits0References10
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.3 views

BullWall Ransomware Containment 安全漏洞

BullWall Ransomware Containment is a ransomware protection software from BullWall Denmark. A security vulnerability exists in BullWall Ransomware Containment versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4, which stems from an unmonitored exclusion file path that could lead to bypassing detection...

8.8CVSS6.6AI score0.00326EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.4 views

BullWall Ransomware Containment 安全漏洞

BullWall Ransomware Containment is a ransomware protection software from BullWall Denmark. A security vulnerability exists in BullWall Ransomware Containment versions 4.6.0.0, 4.6.0.6, 4.6.0.7, and 4.6.1.4, which stems from an incomplete file check and could lead to bypassing detection...

7.1CVSS6.6AI score0.00196EPSS
Exploits0References3
ICS
ICS
added 2025/12/18 12:0 a.m.6 views

BullWall Ransomware Containment and Server Intrusion Protection multiple vulnerabilities

RISK EVALUATION BullWall Ransomware Containment and Server Intrusion Protection are products used for ransomware containment. Multiple vulnerabilities were reported that when used individually or in conjunction could allow a remote attacker with valid credentials to log in to a system with...

8.8CVSS6.8AI score0.00326EPSS
Exploits0References1
Veracode
Veracode
added 2025/11/06 8:9 a.m.5 views

Improper Input Validation

github.com/siderolabs/omni is vulnerable to an improper input validation. The vulnerability is due to the lack of validation on the destination address in the WireGuard SideroLink interface configuration, which allows an attacker with access to a malicious workload to send arbitrary packets over...

5.4CVSS7.1AI score0.00182EPSS
Exploits0References4Affected Software1
Trend Micro Simply Security
Trend Micro Simply Security
added 2025/10/14 12:0 a.m.5 views

Trend Micro launches new integration with Zscaler to deliver real-time, Risk-Based Zero Trust Access

Discover how Trend Vision One™ integrates with Zscaler to unify detection and access enforcement, accelerate threat containment, reduce dwell time, and deliver seamless Zero Trust protection for modern enterprises...

7AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2025/09/30 1:44 p.m.3 views

Google’s Latest AI Ransomware Defense Only Goes So Far

Google has launched a new AI-based protection in Drive for desktop that can shut down an attack before it spreads—but its benefits have their limits...

6.9AI score
Exploits0
CISA
CISA
added 2025/09/22 12:0 p.m.5 views

SonicWall Releases Advisory for Customers after Security Incident

SonicWall released a security advisory to assist their customers with protecting systems impacted by the MySonicWall cloud backup file incident. SonicWall’s investigation found that a malicious actor performed a series of brute force techniques against their MySonicWall.com web portal to gain...

6.6AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/05 5:10 p.m.6 views

Malicious code in @zalastax/nolb-lion-i (npm)

The package @zalastax/nolb-lion-i was found to contain malicious code...

7AI score
Exploits0
GithubExploit
GithubExploit
added 2025/08/13 12:52 p.m.111 views

Exploit for Deserialization of Untrusted Data in Microsoft

ToolShell-CVE-2025-53770-SharePoint-Exploit-Lab-LetsDefend TL...

9.8CVSS10AI score0.99982EPSS
Exploits41
Packet Storm News
Packet Storm News
added 2025/06/05 12:0 a.m.6 views

Seven Security Challenges That Must Be Solved in Cross-Domain Multi-Agent LLM Systems

Large language models LLMs are rapidly evolving into autonomous agents that cooperate across organizational boundaries, enabling joint disaster response, supply-chain optimization, and other tasks that demand decentralized expertise without surrendering data ownership. Yet, cross-domain...

6.9AI score
Exploits0
Rows per page
Query Builder