126 matches found
EUVD-2021-7170
Malicious code in bioql PyPI...
EUVD-2022-40588
Malicious code in bioql PyPI...
CVE-2020-1371
An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Event Logging Service Elevation of Privilege Vulnerability'. This CVE ID...
CVE-2020-1365
An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Event Logging Service Elevation of Privilege Vulnerability'. This CVE ID...
CVE-2019-19852
An XSS Injection vulnerability exists in Sangoma FreePBX and PBXact 13, 14, and 15 within the Call Event Logging report screen in the cel module at the admin/config.php?display=cel URI via date fields. This affects cel through 13.0.26.9, 14.x through 14.0.2.14, and 15.x through 15.0.15.4...
CVE-1999-0577
A Windows NT system's file audit policy does not log an event success or failure for non-critical files or directories...
CVE-1999-0578
A Windows NT system's registry audit policy does not log an event success or failure for security-critical registry keys...
DRUPAL-CONTRIB-2025-068
The Admin Audit Trail module tracks logs of specific events that you'd like to review. When the submodule Admin Audit Trail: User Authentication is enabled, it logs user authentication events login, logout, and password reset requests. The module does not sufficiently limit some large values befo...
CVE-2024-54004
creationtimestamp| type| source ---|---|--- 2024-11-27 17:08:41+00:00| seen| https://infosec.exchange/users/cve/statuses/113556017675511462 2024-11-27 18:41:56+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113556384343564769 2025-01-01 20:29:49+00:00| seen|...
5 Most Common Malware Techniques in 2024
Tactics, techniques, and procedures TTPs form the foundation of modern defense strategies. Unlike indicators of compromise IOCs, TTPs are more stable, making them a reliable way to identify specific cyber threats. Here are some of the most commonly used techniques, according to ANY.RUN's Q3 2024...
ASD’s ACSC, CISA, FBI, and NSA, with the support of International Partners Release Best Practices for Event Logging and Threat Detection
Today, the Australian Signals Directorate’s Australian Cyber Security Centre ASD’s ACSC, CISA, FBI, NSA, and international partners are releasing Best Practices for Event Logging and Threat Detectionlink is external. This guide will assist organizations in defining a baseline for event logging to...
Best Practices for Event Logging and Threat Detection
Executive Summary This publication defines a baseline for event logging best practices to mitigate cyber threats. It was developed by the Australian Signals Directorate’s Australian Cyber Security Centre ASD’s ACSC in cooperation with the following international partners: United States US...
The vulnerability of the Windows Event Logging service in operating systems allows a perpetrator to trigger a service failure.
The vulnerability of Windows Event Logging in operating systems is related to pointer assignment errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by using a specially crafted system call...
PT-2024-1737 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to the Windows Event Logging service and is caused by pointer dereference errors. It can be exploited by a remote attacker to cause a denial of service using a speciall...
Microsoft Windows PowerShell Code Execution / Event Log Bypass
Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/WINDOWSPOWERSHELLSINGLEQUOTECODEEXECEVENTLOGBYPASS.txt + twitter.com/hyp3rlinx + ISR: ApparitionSec Vendor www.microsoft.com Product Microsoft Windows PowerShell Built on the...
Default credentials
An issue was discovered by Elastic whereby Beats and Elastic Agent would log a raw event in its own logs at the WARN or ERROR level if ingesting that event to Elasticsearch failed with any 4xx HTTP status code except 409 or 429. Depending on the nature of the event that Beats or Elastic Agent...
CVE-2013-0631
creationtimestamp| type| source ---|---|--- 2023-06-14 21:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2023-12-04 16:42:35+00:00| exploited| https://t.me/arpsyndicate/1253 2024-12-24 20:28:16+00:00| seen| https://feedsin.space/feed/CISAKevBot/items/2971366 2025-02-06 02:43:26+00:0...
The vulnerability of Windows Event Logging, a service in the Windows operating system, allows a perpetrator to trigger a service failure.
The vulnerability of Windows Event Logging service is related to uncontrolled resource consumption. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...
Microsoft Windows Event Logging Service Denial of Service Vulnerability
A denial of service vulnerability exists in Microsoft Windows Event Logging Service, an operating system used by Microsoft for personal devices. The vulnerability stems from a failure to properly handle incoming error messages, and an attacker could exploit the vulnerability to cause a denial of...
CVE-2022-37981
Windows Event Logging Service Denial of Service Vulnerability...