Lucene search
K

253 matches found

Tenable Nessus
Tenable Nessus
added 2023/03/14 12:0 a.m.38 views

ABB SMU615 Improper Initialization (CVE-2021-22283)

Improper Initialization vulnerability in ABB Relion protection relays - 611 series, ABB Relion protection relays - 615 series IEC 4.0 FP1, ABB Relion protection relays - 615 series CN 4.0 FP1, ABB Relion protection relays - 615 series IEC 5.0, ABB Relion protection relays - 615 series IEC 5.0 FP1...

6.2CVSS5.8AI score0.00171EPSS
Exploits0References2
ICS
ICS
added 2023/01/26 12:0 p.m.44 views

Protecting Against Malicious Use of Remote Monitoring and Management Software

Summary The Cybersecurity and Infrastructure Security Agency CISA, National Security Agency NSA, and Multi-State Information Sharing and Analysis Center MS-ISAC hereafter referred to as the “authoring organizations” are releasing this joint Cybersecurity Advisory CSA to warn network defenders abo...

9.4AI score
Exploits0References43
The Hacker News
The Hacker News
added 2023/01/26 4:27 a.m.23 views

U.S. Federal Agencies Fall Victim to Cyber Attack Utilizing Legitimate RMM Software

At least two federal agencies in the U.S. fell victim to a "widespread cyber campaign" that involved the use of legitimate remote monitoring and management RMM software to perpetuate a phishing scam. "Specifically, cyber criminal actors sent phishing emails that led to the download of legitimate...

0.2AI score
Exploits0
The Hacker News
The Hacker News
added 2023/01/26 4:27 a.m.5 views

U.S. Federal Agencies Fall Victim to Cyber Attack Utilizing Legitimate RMM Software

At least two federal agencies in the U.S. fell victim to a "widespread cyber campaign" that involved the use of legitimate remote monitoring and management RMM software to perpetuate a phishing scam. "Specifically, cyber criminal actors sent phishing emails that led to the download of legitimate...

6.7AI score
Exploits0
CISA
CISA
added 2023/01/25 12:0 a.m.9 views

CISA, NSA, and MS-ISAC Release Advisory on the Malicious Use of RMM Software

Today, the Cybersecurity and Infrastructure Security Agency CISA, the National Security Agency NSA, and the Multi-State Information Sharing and Analysis Center MS-ISAC released joint Cybersecurity Advisory CSA Protecting Against Malicious Use of Remote Monitoring and Management Software. The...

1.1AI score
Exploits0References1
CNNVD
CNNVD
added 2022/12/12 12:0 a.m.4 views

Hewlett Packard Enterprise Integrated Lights-Out 跨站脚本漏洞

Hewlett Packard Enterprise Integrated Lights-Out is a remote control solution from Hewlett Packard Enterprise. The solution enables remote monitoring and operation of IT assets such as servers. A security vulnerability exists in Hewlett Packard Enterprise Integrated Lights-Out. An attacker could...

6.4CVSS6AI score0.00466EPSS
Exploits0References2
0day.today
0day.today
added 2022/11/04 12:0 a.m.473 views

Automated Tank Gauge (ATG) Remote Configuration Disclosure Exploit

In 2015, HD Moore, the creator of Metasploit, published an article disclosing over 5,800 gas station Automated Tank Gauges ATGs which were publicly accessible. Besides monitoring for leakage, these systems are also instrumental in gauging fluid levels, tank temperature, and can alert operators wh...

7.5AI score
Exploits0
Fedora
Fedora
added 2022/10/28 11:16 a.m.36 views

[SECURITY] Fedora 36 Update: glances-3.3.0.1-2.fc36

Glances is a cross-platform monitoring tool which aims to present a large amount of monitoring information through a curses or Web based interface. The information dynamically adapts depending on the size of the user interface It can also work in client/server mode. Remote monitoring could be don...

7.5CVSS6.2AI score0.04658EPSS
Exploits1
CNNVD
CNNVD
added 2022/09/20 12:0 a.m.4 views

Hewlett Packard Enterprise Integrated Lights-Out 5 安全漏洞

Hewlett Packard Enterprise Integrated Lights-Out 5 iLO 5 is a remote control solution from Hewlett Packard Enterprise. The solution enables remote monitoring and operation of IT assets such as servers. A security vulnerability exists in Hewlett Packard Enterprise Integrated Lights-Out 5 version...

8.8CVSS8.6AI score0.00508EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/07/11 12:0 a.m.4 views

Fishtank 路径遍历漏洞

Fishtank is a remote monitoring and control interface by Rentaro Matsukata, a personal developer in the U.S. A path traversal vulnerability exists in Fishtank 2015-06-24 and earlier versions, which stems from a failure of Flask's sendfile function to properly filter special elements in resource o...

9.3CVSS5.8AI score0.01242EPSS
Exploits1References2
OSV
OSV
added 2022/05/18 3:15 p.m.5 views

CVE-2022-29518

Screen Creator Advance2, HMI GC-A2 series, and Real time remote monitoring and control tool Screen Creator Advance2 versions prior to Ver.0.1.1.3 Build01, HMI GC-A2 seriesGC-A22W-CW, GC-A24W-CW, GC-A26W-CW, GC-A24, GC-A24-M, GC-A25, GC-A26, and GC-A26-J2, and Real time remote monitoring and contr...

7CVSS5.9AI score0.00209EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/05/18 3:15 p.m.6 views

CVE-2022-29518

Screen Creator Advance2, HMI GC-A2 series, and Real time remote monitoring and control tool Screen Creator Advance2 versions prior to Ver.0.1.1.3 Build01, HMI GC-A2 seriesGC-A22W-CW, GC-A24W-CW, GC-A26W-CW, GC-A24, GC-A24-M, GC-A25, GC-A26, and GC-A26-J2, and Real time remote monitoring and contr...

7CVSS6.5AI score0.00209EPSS
Exploits0References3
Prion
Prion
added 2022/05/18 3:15 p.m.12 views

Authentication flaw

Screen Creator Advance2, HMI GC-A2 series, and Real time remote monitoring and control tool Screen Creator Advance2 versions prior to Ver.0.1.1.3 Build01, HMI GC-A2 seriesGC-A22W-CW, GC-A24W-CW, GC-A26W-CW, GC-A24, GC-A24-M, GC-A25, GC-A26, and GC-A26-J2, and Real time remote monitoring and contr...

5.9CVSS7AI score0.00209EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/05/18 9:50 a.m.82 views

CVE-2022-29518

The CVE-2022-29518 issue affects Screen Creator Advance2 (versions before 0.1.1.3 Build01) and related HMI GC-A2 series (GC-A22W-CW, GC-A24W-C(W), GC-A26W-C(W), GC-A24, GC-A24-M, GC-A25, GC-A26, GC-A26-J2) and the Real time remote monitoring and control tool (Remote GC). It stems from an authenti...

7CVSS7AI score0.00209EPSS
Exploits0References2Affected Software2
Positive Technologies
Positive Technologies
added 2022/05/18 12:0 a.m.4 views

PT-2022-19674 · Unknown +1 · Hmi Gc-A2 Series +2

Name of the Vulnerable Software and Affected Versions: Screen Creator Advance2 versions prior to Ver.0.1.1.3 Build01 HMI GC-A2 series versions including GC-A22W-CW, GC-A24W-CW, GC-A26W-CW, GC-A24, GC-A24-M, GC-A25, GC-A26, and GC-A26-J2 Real time remote monitoring and control tool Remote GC...

7CVSS7AI score0.00209EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2022/04/21 7:15 p.m.7 views

CVE-2022-23711

A vulnerability in Kibana could expose sensitive information related to Elastic Stack monitoring in the Kibana page source. Elastic Stack monitoring features provide a way to keep a pulse on the health and performance of your Elasticsearch cluster. Authentication with a vulnerable Kibana instance...

5.3CVSS6.1AI score0.00888EPSS
Exploits0References2
CNVD
CNVD
added 2022/02/11 12:0 a.m.18 views

Sealevel Systems SeaConnect 370w out-of-bounds write vulnerability (CNVD-2022-10696)

Sealevel Systems SeaConnect 370W is an Industrial Internet of Things Iiot edge device from Sealevel Systems, Inc. used to remotely monitor and control the status of actual I/O processes. The Sealevel Systems SeaConnect 370w is vulnerable to an out-of-bounds write vulnerability that could be...

8.1CVSS3.9AI score0.0089EPSS
Exploits1References1
The Hacker News
The Hacker News
added 2022/01/05 11:0 a.m.172 views

New Zloader Banking Malware Campaign Exploiting Microsoft Signature Verification

An ongoing ZLoader malware campaign has been uncovered exploiting remote monitoring tools and a nine-year-old flaw concerning Microsoft's digital signature verification to siphon user credentials and sensitive information. Israeli cybersecurity company Check Point Research, which has been trackin...

8.8CVSS0.5AI score0.44647EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2021/12/17 12:0 a.m.7 views

The vulnerability of the software for remote monitoring and management of IT systems by Kaseya VSA, related to insufficient protection of registration data, allows a hacker to disclose sensitive information that should be protected.

The vulnerability of Kaseya VSA’s remote monitoring and management software lies in the insufficient protection of registration data. Exploiting this vulnerability allows a malicious actor to disclose the protected information...

10CVSS7.8AI score0.85619EPSS
Exploits1References8Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/11/10 12:0 a.m.6 views

The vulnerability of the Advantech WebAccess remote monitoring software arises from buffer overflows in the stack, allowing a hacker to execute arbitrary code.

The vulnerability of Advantech WebAccess remote monitoring software arises due to buffer overflow in the stack. Exploiting this vulnerability allows a malicious actor operating remotely to execute arbitrary code...

10CVSS8.5AI score0.11569EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder