105 matches found
EUVD-2021-21692
Malware in sbrugna...
EUVD-2021-21693
Malware in sbrugna...
EUVD-2021-21695
Malware in sbrugna...
EUVD-2022-15990
Malicious code in bioql PyPI...
EUVD-2022-29281
Malicious code in bioql PyPI...
EUVD-2022-29283
Malicious code in bioql PyPI...
EUVD-2022-29285
Malicious code in bioql PyPI...
EUVD-2022-29284
Malicious code in bioql PyPI...
EUVD-2022-15623
Malicious code in bioql PyPI...
EUVD-2022-29286
Malicious code in bioql PyPI...
Exploit for Incorrect Default Permissions in Fidelissecurity Deception
Fidelis Network and Deception - CVE-2022-0486 - Insecure File...
Fidelis Network Deception Command Injection Vulnerability (CNVD-2022-59166)
Fidelis Network Deception is a security product from Fidelis USA, Inc. A command injection vulnerability exists in versions prior to Fidelis Network Deception 9.4.5, which stems from the filename parameter of CommandPost when using the updatecheckfile value. Command injection exists, and an...
Fidelis Network Deception has an unspecified vulnerability (CNVD-2022-59168)
Fidelis Network Deception is a security product from Fidelis USA, Inc. It is used to detect threats and prevent data loss, with features such as detecting malicious behavior, identifying traffic anomalies, and automatically responding to advanced threats.A security vulnerability exists in version...
Fidelis Network Deception SQL Injection Vulnerability
Fidelis Network Deception is a security product from Fidelis USA. It is used to detect threats and prevent data loss with features such as detecting malicious behavior, identifying traffic anomalies, and automatically responding to advanced threats. A SQL injection vulnerability exists in Fidelis...
Fidelis Network Deception Command Injection Vulnerability
Fidelis Network Deception is a security product from Fidelis USA. It is used to detect threats and prevent data loss with features such as detecting malicious behavior, identifying traffic anomalies, and automatically responding to advanced threats. A command injection vulnerability exists in...
Fidelis Network Deception Command Injection Vulnerability (CNVD-2022-59169)
Fidelis Network Deception is a security product from Fidelis USA, Inc. A security vulnerability exists in versions prior to Fidelis Network Deception 9.4.5, which stems from the CommandPost cplp parameter when using the checkverticaupgrade value. Command injection exists, and an attacker can use...
Fidelis Network Deception has an unspecified vulnerability (CNVD-2022-59167)
Fidelis Network Deception is a security product from Fidelis USA, Inc. It is used to detect threats and prevent data loss, with features such as detecting malicious behavior, identifying traffic anomalies, and automatically responding to advanced threats.A security vulnerability exists in version...
Fidelis Network Deception Command Injection Vulnerability (CNVD-2022-59170)
Fidelis Network Deception is a security product from Fidelis USA. A security vulnerability exists in versions prior to Fidelis Network Deception 9.4.5, which stems from a problem with date in rconfig. An attacker with CLI user-level access could exploit the vulnerability to inject root-level...
CVE-2022-0997
Improper file permissions in the CommandPost, Collector, and Sensor components of Fidelis Network and Deception enables an attacker with local, administrative access to the CLI to modify affected script files, which could result in arbitrary commands being run as root upon subsequent logon by a...
CVE-2022-24389
Vulnerability in rconfig “certutils” enables an attacker with user level access to the CLI to inject root level commands into Fidelis Network and Deception CommandPost, Collector, Sensor, and Sandbox components as well as neighboring Fidelis components. The vulnerability is present in Fidelis...