14 matches found
EUVD-2020-25262
Malware in sbrugna...
EUVD-2023-38159
Malicious code in bioql PyPI...
CVE-2023-34037
VMware Horizon Server contains a HTTP request smuggling vulnerability. A malicious actor with network access may be able to perform HTTP smuggle requests...
CVE-2020-3997
VMware Horizon Server 7.x prior to 7.10.3 or 7.13.0 contains a Cross Site Scripting XSS vulnerability. Successful exploitation of this issue may allow an attacker to inject malicious script which will be executed...
The vulnerability of the VMware Horizon Server virtualization server allows a intruder to gain unauthorized access to confidential information.
The vulnerability of the VMware Horizon Server virtualization server lies in the insufficient protection of operational data. Exploiting this vulnerability allows an attacker, operating remotely, to gain unauthorized access to confidential information...
The vulnerability of the VMware Horizon Server virtualization server, related to improper checking of HTTP requests, allows an attacker to compromise the integrity of protected information.
The vulnerability of the VMware Horizon Server virtualization server lies in improper handling of HTTP requests. Exploiting this vulnerability allows a malicious actor to compromise the integrity of the protected information from a remote location...
CVE-2023-34038
VMware Horizon Server contains an information disclosure vulnerability. A malicious actor with network access may be able to access information relating to the internal network configuration...
CVE-2023-34038
VMware Horizon Server contains an information disclosure vulnerability. A malicious actor with network access may be able to access information relating to the internal network configuration...
CVE-2023-34037
VMware Horizon Server contains a HTTP request smuggling vulnerability. A malicious actor with network access may be able to perform HTTP smuggle requests...
PT-2023-4281 · Vmware · Vmware Horizon Server
Name of the Vulnerable Software and Affected Versions: VMware Horizon Server affected versions not specified Description: The issue is related to insufficient protection of service data, which may allow a remote attacker to gain unauthorized access to confidential information. A malicious actor...
PT-2023-4288 · Vmware · Vmware Horizon Server
Name of the Vulnerable Software and Affected Versions: VMware Horizon Server affected versions not specified Description: The issue is related to a HTTP request smuggling vulnerability in VMware Horizon Server. A malicious actor with network access may be able to perform HTTP smuggle requests,...
Iranian Hackers Compromised a U.S. Federal Agency's Network Using Log4Shell Exploit
Iranian government-sponsored threat actors have been blamed for compromising a U.S. federal agency by taking advantage of the Log4Shell vulnerability in an unpatched VMware Horizon server. The details, which were shared by the U.S. Cybersecurity and Infrastructure Security Agency CISA, come in...
LockBit Ransomware Abuses Windows Defender to Deploy Cobalt Strike Payload
A threat actor associated with the LockBit 3.0 ransomware-as-a-service RaaS operation has been observed abusing the Windows Defender command-line tool to decrypt and load Cobalt Strike payloads. According to a report published by SentinelOne last week, the incident occurred after obtaining initia...
CVE-2020-3997
VMware Horizon Server 7.x prior to 7.10.3 or 7.13.0 contains a Cross Site Scripting XSS vulnerability. Successful exploitation of this issue may allow an attacker to inject malicious script which will be executed...