Lucene search
K

238 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 6:20 p.m.5 views

Malicious code in @jerusalem/fetlife-assets (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 91ea01a2f72a0291d2f0f283034dc11654a4505a3741a3e21328c920455a42f0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Prion
Prion
added 2022/03/17 11:15 p.m.11 views

Privilege escalation

Rapid7 Insight Agent versions 3.1.2.38 and earlier suffer from a privilege escalation vulnerability, whereby an attacker can hijack the flow of execution due to an unquoted argument to the runas.exe command used by the iragent.exe component, resulting in elevated rights and persistent access to t...

7.2CVSS7.8AI score0.00453EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2022/03/17 12:0 a.m.4 views

Rapid7 Insight Agent 代码问题漏洞

Rapid7 Insight Agent is a lightweight software from Rapid7, Inc. The software is capable of collecting data from IT assets.A security vulnerability exists in Rapid7 Insight Agent version 3.1.2.38 and prior versions, which stems from the fact that Rapid7 Insight Agent version 3.1.2.38 and prior...

7.8CVSS5.6AI score0.00453EPSS
Exploits1References3
OSV
OSV
added 2022/02/25 4:15 a.m.4 views

CVE-2022-23835

The Visual Voice Mail VVM application through 2022-02-24 for Android allows persistent access if an attacker temporarily controls an application that has the READSMS permission, and reads an IMAP credentialing message that is by design not displayed to the victim within the AOSP SMS/MMS messaging...

8.1CVSS7.3AI score0.01406EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/02/25 3:31 a.m.29 views

CVE-2022-23835

The Visual Voice Mail VVM application through 2022-02-24 for Android allows persistent access if an attacker temporarily controls an application that has the READSMS permission, and reads an IMAP credentialing message that is by design not displayed to the victim within the AOSP SMS/MMS messaging...

8.1AI score0.01406EPSS
Exploits1References2
CVE
CVE
added 2022/02/25 3:31 a.m.80 views

CVE-2022-23835

The CVE-2022-23835 issue affects Visual Voice Mail (VVM) for Android (up to 2022-02-24). A local attacker who temporarily controls an app with the READ_SMS permission can read an IMAP credentialing message that the AOSP SMS/MMS app does not display to the user, allowing persistent access to VVM d...

8.1CVSS7.8AI score0.01406EPSS
Exploits1References2Affected Software1
The Hacker News
The Hacker News
added 2022/02/04 5:45 a.m.32 views

Hackers Exploited 0-Day Vulnerability in Zimbra Email Platform to Spy on Users

A threat actor, likely Chinese in origin, is actively attempting to exploit a zero-day vulnerability in the Zimbra open-source email platform as part of spear-phishing campaigns that commenced in December 2021. The espionage operation — codenamed "EmailThief" — was detailed by cybersecurity compa...

1AI score
Exploits0
The Hacker News
The Hacker News
added 2022/02/02 12:9 p.m.26 views

New Malware Used by SolarWinds Attackers Went Undetected for Years

The threat actor behind the supply chain compromise of SolarWinds has continued to expand its malware arsenal with new tools and techniques that were deployed in attacks as early as 2019, once indicative of the elusive nature of the campaigns and the adversary's ability to maintain persistent...

1.3AI score
Exploits0
NVD
NVD
added 2021/10/05 1:15 p.m.16 views

CVE-2021-39866

A business logic error in the project deletion process in GitLab 13.6 and later allows persistent access via project access tokens...

5.5CVSS0.00951EPSS
Exploits0References3
OSV
OSV
added 2021/10/05 1:15 p.m.12 views

CVE-2021-39866

A business logic error in the project deletion process in GitLab 13.6 and later allows persistent access via project access tokens...

5.4CVSS6.4AI score0.00951EPSS
Exploits0References3
OSV
OSV
added 2021/10/05 1:15 p.m.2 views

UBUNTU-CVE-2021-39866

A business logic error in the project deletion process in GitLab 13.6 and later allows persistent access via project access tokens...

5.4CVSS5.8AI score0.00951EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2021/10/05 1:15 p.m.21 views

CVE-2021-39866

A business logic error in the project deletion process in GitLab 13.6 and later allows persistent access via project access tokens...

5.5CVSS6.1AI score0.00951EPSS
Exploits0References4
Cvelist
Cvelist
added 2021/10/05 12:35 p.m.19 views

CVE-2021-39866

A business logic error in the project deletion process in GitLab 13.6 and later allows persistent access via project access tokens...

5.4CVSS5.9AI score0.00951EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2021/10/05 12:35 p.m.17 views

CVE-2021-39866

Removed by vendor...

5.5CVSS6AI score0.00951EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2021/10/05 12:0 a.m.2 views

PT-2021-22713 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions 13.6 and later Description: A business logic error in the project deletion process allows persistent access via project access tokens. Recommendations: For GitLab versions 13.6 and later, update to a version that includes a fi...

5.5CVSS5.1AI score0.00951EPSS
Exploits0References12
CNNVD
CNNVD
added 2021/10/01 12:0 a.m.3 views

GitLab 安全漏洞

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to view a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab that stems from a...

5.5CVSS5.7AI score0.00951EPSS
Exploits0References6
Krebs on Security
Krebs on Security
added 2021/05/05 12:27 p.m.43 views

Malicious Office 365 Apps Are the Ultimate Insiders

Phishers targeting Microsoft Office 365 users increasingly are turning to specialized links that take users to their organizations own email login page. After a user logs in, the link prompts them to install a malicious but innocuously-named app that gives the attacker persistent, password-free...

6.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2020/12/17 8:18 p.m.27 views

More on the SolarWinds Breach

The New York Times has more details. About 18,000 private and government users downloaded a Russian tainted software update -­ a Trojan horse of sorts ­- that gave its hackers a foothold into victims systems, according to SolarWinds, the company whose software was compromised. Among those who use...

0.3AI score
Exploits0
OSV
OSV
added 2020/10/23 7:15 p.m.17 views

CVE-2020-24848

FruityWifi through 2.4 has an unsafe Sudo configuration ALL : ALL NOPASSWD: ALL. This allows an attacker to perform a system-level root local privilege escalation, allowing an attacker to gain complete persistent access to the local system...

7.8CVSS7AI score
Exploits0References2
RedhatCVE
RedhatCVE
added 2020/04/09 10:33 a.m.18 views

CVE-2019-1003003

An improper authorization vulnerability exists in Jenkins 2.158 and earlier, LTS 2.150.1 and earlier in core/src/main/java/hudson/security/TokenBasedRememberMeServices2.java that allows attackers with Overall/RunScripts permission to craft Remember Me cookies that would never expire, allowing e.g...

7.2CVSS6AI score0.01545EPSS
Exploits0References4
Rows per page
Query Builder