Lucene search
K

694 matches found

CVE
CVE
added 2024/05/13 7:32 p.m.70 views

CVE-2024-29513

CVE-2024-29513 impacts BlueRiSC WindowsSCOPE Cyber Forensics prior to version 3.3, via briscKernelDriver.sys. The root cause is an improper DACL on the device the driver creates, enabling a local attacker to execute arbitrary code within the driver and cause a local denial-of-service condition. T...

7.8CVSS7.5AI score0.00409EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/13 7:32 p.m.12 views

CVE-2024-29513

An issue in briscKernelDriver.sys in BlueRiSC WindowsSCOPE Cyber Forensics before 3.3 allows a local attacker to execute arbitrary code within the driver and create a local denial-of-service condition due to an improper DACL being applied to the device the driver creates...

7.3AI score0.00409EPSS
Exploits0References1
Kitploit
Kitploit
added 2024/05/03 12:30 p.m.55 views

MasterParser - Powerful DFIR Tool Designed For Analyzing And Parsing Linux Logs

What is MasterParser ? MasterParser stands as a robust Digital Forensics and Incident Response tool meticulously crafted for the analysis of Linux logs within the var/log directory. Specifically designed to expedite the investigative process for security incidents on Linux systems, MasterParser...

7.4AI score
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:15 a.m.7 views

CVE-2023-42128

Magnet Forensics AXIOM Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Magnet Forensics AXIOM. User interaction is required to exploit this vulnerability in that the target must...

8CVSS6.2AI score0.00757EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/05/03 3:15 a.m.22 views

CVE-2023-42128

Magnet Forensics AXIOM Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Magnet Forensics AXIOM. User interaction is required to exploit this vulnerability in that the target must...

8CVSS8.1AI score0.00757EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/03 2:13 a.m.19 views

CVE-2023-42128 Magnet Forensics AXIOM Command Injection Remote Code Execution Vulnerability

Magnet Forensics AXIOM Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Magnet Forensics AXIOM. User interaction is required to exploit this vulnerability in that the target must...

8CVSS7.7AI score0.00757EPSS
Exploits0References1
CVE
CVE
added 2024/05/03 2:13 a.m.50 views

CVE-2023-42128

CVE-2023-42128 : The vulnerability affects Magnet Forensics AXIOM, specifically in the Android device image acquisition functionality. It stems from insufficient validation of a user-supplied string before it is used in a system call, allowing a network-adjacent attacker to execute arbitrary code...

8CVSS8.1AI score0.00757EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.5 views

Magnet Forensics AXIOM 命令注入漏洞

Magnet Forensics AXIOM is a complete digital investigation platform from Magnet Forensics, Inc. allowing examiners to seamlessly access and analyze forensic data. A security vulnerability exists in Magnet Forensics AXIOM versions prior to 7.6 that stems from the presence of a command injection...

8CVSS8.2AI score0.00757EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/04/08 12:0 a.m.4 views

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which stems from a lack of forensics in the Iaware module...

7.5CVSS6.7AI score0.00395EPSS
Exploits0References3
Kitploit
Kitploit
added 2024/04/02 11:30 a.m.39 views

VolWeb - A Centralized And Enhanced Memory Analysis Platform

VolWeb is a digital forensic memory analysis platform that leverages the power of the Volatility 3 framework. It is dedicated to aiding in investigations and incident responses. Objective The goal of VolWeb is to enhance the efficiency of memory collection and forensic analysis by providing a...

7AI score
Exploits0References2
Krebs on Security
Krebs on Security
added 2024/02/22 1:27 p.m.23 views

New Leak Shows Business Side of China’s APT Menace

A new data leak that appears to have come from one of Chinas top private cybersecurity firms provides a rare glimpse into the commercial side of Chinas many state-sponsored hacking groups. Experts say the leak illustrates how Chinese government agencies increasingly are contracting out foreign...

7.1AI score
Exploits0
Securelist
Securelist
added 2024/01/16 10:0 a.m.15 views

A lightweight method to detect potential iOS malware

Introduction In the ever-evolving landscape of mobile security, hunting for malware in the iOS ecosystem is akin to navigating a labyrinth with invisible walls. Imagine having a digital compass that not only guides you through this maze, but also reveals the hidden mechanisms of iOS malware...

6.7AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2023/12/07 12:0 a.m.14 views

Integrated DFIR Tool Can Simplify and Accelerate Cyber Forensics

Explore real use cases demonstrating the transformative impact of Trend Vision One™ – Forensics, an integrated Digital Forensics and Incident Response DFIR tool...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2023/11/29 6:18 a.m.30 views

Okta Discloses Broader Impact Linked to October 2023 Support System Breach

Identity services provider Okta has disclosed that it detected "additional threat actor activity" in connection with the October 2023 breach of its support case management system. "The threat actor downloaded the names and email addresses of all Okta customer support system users," the company sa...

7.1AI score
Exploits0
Ubuntu
Ubuntu
added 2023/11/28 4:24 p.m.38 views

USN-6518-1: AFFLIB vulnerability

Luis Rocha discovered that AFFLIB incorrectly handled certain input files. If a user or automated system were tricked into processing a specially crafted AFF image file, a remote attacker could possibly use this issue to cause a denial of service via application crash. CVE-2018-8050...

6.5CVSS6.5AI score0.01607EPSS
Exploits0
Kitploit
Kitploit
added 2023/11/23 11:30 a.m.31 views

ICS-Forensics-Tools - Microsoft ICS Forensics Framework

Microsoft ICS Forensics Tools is an open source forensic framework for analyzing Industrial PLC metadata and project files. it enables investigators to identify suspicious artifacts on ICS environment for detection of compromised devices during incident response or manual check. open source...

7.2AI score
Exploits0References2
Securelist
Securelist
added 2023/11/09 8:0 a.m.36 views

Modern Asian APT groups’ tactics, techniques and procedures (TTPs)

Almost every quarter, someone publishes major research focusing on campaigns or incidents that involve Asian APT groups. These campaigns and incidents target various organizations from a multitude of industries. Likewise, the geographic location of victims is not limited to just one region. This...

7AI score
Exploits0
Gitee
Gitee
added 2023/11/05 11:41 a.m.5 views

黑客工具测试

This is an offensive tool for a comprehensive hacking toolkit. The primary vulnerability class targeted is RCE Remote Code Execution, with various tools and modules available for different attack vectors, including SQL injection, phishing, web attacks, post-exploitation, and more. The tool is...

7.9AI score
Exploits0
Securelist
Securelist
added 2023/10/26 10:30 a.m.30 views

How to catch a wild triangle

In the beginning of 2023, thanks to our Kaspersky Unified Monitoring and Analysis Platform KUMA SIEM system, we noticed suspicious network activity that turned out to be an ongoing attack targeting the iPhones and iPads of our colleagues. The moment we understood that there was a clear pattern in...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/10/20 12:0 a.m.25 views

Ubuntu 16.04 ESM : The Sleuth Kit vulnerabilities (USN-4765-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4765-1 advisory. It was discovered that The Sleuth Kit did not properly handle certain entires in FAT file systems. An attacker could use this vulnerability to mislead an...

5.5CVSS6.8AI score0.00744EPSS
Exploits1References3
Rows per page
Query Builder