Lucene search
K

5625 matches found

The Hacker News
The Hacker News
added 2024/04/08 11:29 a.m.52 views

Watch Out for 'Latrodectus' - This Malware Could Be In Your Inbox

Threat hunters have discovered a new malware called Latrodectus that has been distributed as part of email phishing campaigns since at least late November 2023. "Latrodectus is an up-and-coming downloader with various sandbox evasion functionality," researchers from Proofpoint and Team Cymru said...

7.5AI score
Exploits0
NVD
NVD
added 2024/04/02 7:15 a.m.17 views

CVE-2024-26678

In the Linux kernel, the following vulnerability has been resolved: x86/efistub: Use 1:1 file:memory mapping for PE/COFF .compat section The .compat section is a dummy PE section that contains the address of the 32-bit entrypoint of the 64-bit kernel image if it is bootable from 32-bit firmware...

5.5CVSS6.4AI score0.00225EPSS
Exploits0References4
Redos
Redos
added 2024/04/02 12:0 a.m.24 views

ROS-20240402-06

Vulnerability in the password protection mechanism of the Grub2 boot loader is related to the bypass of authentication by spoofing. Exploitation of the vulnerability could allow an attacker to bypass established access control...

6.8CVSS6.9AI score0.00542EPSS
Exploits0
The Hacker News
The Hacker News
added 2024/03/29 12:12 p.m.35 views

TheMoon Botnet Resurfaces, Exploiting EoL Devices to Power Criminal Proxy

A botnet previously considered to be rendered inert has been observed enslaving end-of-life EoL small home/small office SOHO routers and IoT devices to fuel a criminal proxy service called Faceless. "TheMoon, which emerged in 2014, has been operating quietly while growing to over 40,000 bots from...

7.5AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2024/03/28 6:35 p.m.33 views

Stories from the SOC Part 1: IDAT Loader to BruteRatel

Rapid7’s Managed Detection and Response MDR team continuously monitors our customers' environments, identifying emerging threats and developing new detections. In August 2023, Rapid7 identified a new malware loader named the IDAT Loader. Malware loaders are a type of malicious software designed t...

8.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/03/28 12:0 a.m.4 views

PT-2024-10928 · Allied Telesis · At-S115

Name of the Vulnerable Software and Affected Versions: Allied Telesis AT-S115 version 1.2.0 before 1.00.024 with Boot Loader 1.00.006 Description: The issue allows Directory Traversal, which can lead to partial access to data. Recommendations: For Allied Telesis AT-S115 version 1.2.0 before...

7.5CVSS7.1AI score0.00954EPSS
Exploits0References7
Malwarebytes
Malwarebytes
added 2024/03/22 7:23 p.m.31 views

New Go loader pushes Rhadamanthys stealer

Malware loaders also known as droppers or downloaders are a popular commodity in the criminal underground. Their primary function is to successfully compromise a machine and deploy one or multiple additional payloads. A good loader avoids detection and identifies victims as legitimate i.e. not...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/03/21 12:0 a.m.37 views

EulerOS Virtualization 2.11.1 : glibc (EulerOS-SA-2024-1398)

According to the versions of the glibc packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulti...

7.8CVSS7.3AI score0.81422EPSS
Exploits26References5
OpenVAS
OpenVAS
added 2024/03/21 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2024-1426)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.81422EPSS
Exploits26References4
Tenable Nessus
Tenable Nessus
added 2024/03/21 12:0 a.m.54 views

EulerOS Virtualization 2.11.0 : glibc (EulerOS-SA-2024-1426)

According to the versions of the glibc packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulti...

7.8CVSS7.3AI score0.81422EPSS
Exploits26References5
The Hacker News
The Hacker News
added 2024/03/20 9:43 a.m.34 views

New BunnyLoader Malware Variant Surfaces with Modular Attack Features

Cybersecurity researchers have discovered an updated variant of a stealer and malware loader called BunnyLoader that modularizes its various functions as well as allow it to evade detection. "BunnyLoader is dynamically developing malware with the capability to steal information, credentials and...

7.3AI score
Exploits0
OSV
OSV
added 2024/03/15 1:15 a.m.3 views

DEBIAN-CVE-2024-26540

A heap-based buffer overflow in Clmg before 3.3.3 can occur via a crafted file to cimglibrary::CImg::loadanalyze...

7.8CVSS7.3AI score0.00314EPSS
Exploits1References1
The Hacker News
The Hacker News
added 2024/03/14 7:17 a.m.33 views

Ande Loader Malware Targets Manufacturing Sector in North America

The threat actor known as Blind Eagle has been observed using a loader malware called Ande Loader to deliver remote access trojans RATs like Remcos RAT and NjRAT. The attacks, which take the form of phishing emails, targeted Spanish-speaking users in the manufacturing industry based in North...

7.4AI score
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.16 views

ROS-2-1503

2.1503 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user-entered data when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the...

10CVSS8.1AI score0.05984EPSS
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.15 views

ROS-2-1353

2.1353 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability...

9.8CVSS7.9AI score0.05984EPSS
Exploits0
Redos
Redos
added 2024/03/13 12:0 a.m.26 views

ROS-2-972

2.972 PyYAML parser vulnerability CVE-2020-14343 1. Vulnerability description: A vulnerability in the PyYAML parser, is related to insufficient validation of user input when processing unreliable YAML files using the fullload method or the FullLoader loader. Exploitation of the vulnerability coul...

9.8CVSS7.8AI score0.05984EPSS
Exploits0
Fedora
Fedora
added 2024/03/07 10:32 p.m.29 views

[SECURITY] Fedora 40 Update: bcel-6.8.1-3.fc40

The Byte Code Engineering Library formerly known as JavaClass is intended to give users a convenient possibility to analyze, create, and manipulate binary Java class files those ending with .class. Classes are represented by objects which contain all the symbolic information of the given class:...

8.8CVSS6.8AI score0.02557EPSS
Exploits3
OSV
OSV
added 2024/03/06 10:51 a.m.15 views

BIT-DRUPAL-2022-39261 Twig may load a template outside a configured directory when using the filesystem loader

Twig is a template language for PHP. Versions 1.x prior to 1.44.7, 2.x prior to 2.15.3, and 3.x prior to 3.4.3 encounter an issue when the filesystem loader loads templates for which the name is a user input. It is possible to use the source or include statement to read arbitrary files from outsi...

7.5CVSS7.5AI score0.01488EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2024/02/28 12:0 a.m.34 views

Fedora 38 : yarnpkg (2024-5ecc250449)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-5ecc250449 advisory. Update to 1.22.21, add fixes for CVE-2022-37599, CVE-2023-26136, CVE-2023-46234. Tenable has extracted the preceding description block directly from...

9.8CVSS6.7AI score0.02542EPSS
Exploits2References4
OSV
OSV
added 2024/02/26 4:27 p.m.5 views

CVE-2024-24714

Unrestricted Upload of File with Dangerous Type vulnerability in bPlugins LLC Icons Font Loader.This issue affects Icons Font Loader: from n/a through 1.1.4...

7.2CVSS7.3AI score0.00603EPSS
Exploits0References1
Rows per page
Query Builder