Lucene search
K

97 matches found

OSV
OSV
added 2024/10/02 7:15 p.m.5 views

CVE-2024-20501

Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition in the AnyConnect service on an affected device. These vulnerabilities are due to insufficie...

7.5CVSS5.8AI score0.00508EPSS
Exploits0References1
Krebs on Security
Krebs on Security
added 2024/05/29 7:21 p.m.15 views

Is Your Computer Part of ‘The Largest Botnet Ever?’

The U.S. Department of Justice DOJ today said they arrested the alleged operator of 911 S5, a ten-year-old online anonymity service that was powered by what the director of the FBI called "likely the worlds largest botnet ever." The arrest coincided with the seizure of the 911 S5 website and...

7.4AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/10/21 12:0 a.m.13 views

The vulnerability of the Clario VPN service lies in the lack of protection for transmitted data, allowing a hacker to send arbitrary IP traffic as plain text beyond the VPN tunnel.

The vulnerability of the Clario VPN client relates to the lack of protection for transmitted data. Exploiting this vulnerability allows a hacker to send arbitrary IP traffic as plain text beyond the VPN tunnel...

6.3CVSS6.7AI score0.00311EPSS
Exploits1References4Affected Software1
HackRead
HackRead
added 2023/05/24 5:5 p.m.30 views

Free VPN Service SuperVPN Exposes 360 Million User Records

By Habiba Rashid SuperVPN is the same free VPN service provider that leaked customers' data back in May 2022. This is a post from HackRead.com Read the original post: Free VPN Service SuperVPN Exposes 360 Million User Records...

7AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/05/17 12:0 a.m.12 views

The vulnerability of the SSLVPN service on FortiOS operating systems and the proxy servers for protecting against Internet attacks by FortiProxy allows attackers to execute arbitrary commands.

The vulnerability of the SSLVPN service on FortiOS operating systems and FortiProxy proxy servers for protecting against Internet attacks is related to writing data beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands by sending special...

7.5CVSS8.2AI score0.0089EPSS
Exploits0References2Affected Software2
The Hacker News
The Hacker News
added 2023/02/20 10:11 a.m.52 views

Cyber Espionage Group Earth Kitsune Deploys WhiskerSpy Backdoor in Latest Attacks

The cyber espionage threat actor tracked as Earth Kitsune has been observed deploying a new backdoor called WhiskerSpy as part of a social engineering campaign. Earth Kitsune, active since at least 2019, is known to primarily target individuals interested in North Korea with self-developed malwar...

7.2AI score
Exploits0
CNNVD
CNNVD
added 2022/09/13 12:0 a.m.8 views

Microsoft Windows Remote Access Connection Manager 缓冲区错误漏洞

Microsoft Windows Remote Access Connection Manager is a Windows service from Microsoft that manages virtual private network VPN connections from your computer to the Internet. If you disable this service, the VPN client application If you disable this service, VPN client applications will not...

5.5CVSS7AI score0.00749EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2022/04/29 5:46 a.m.21 views

Indian Govt Orders Organizations to Report Security Breaches Within 6 Hours to CERT-In

India's computer and emergency response team, CERT-In, on Thursday published new guidelines that require service providers, intermediaries, data centers, and government entities to compulsorily report cybersecurity incidents, including data breaches, within six hours. "Any service provider,...

0.1AI score
Exploits0
CNNVD
CNNVD
added 2021/12/15 12:0 a.m.8 views

FatPipe 安全漏洞

FatPipe is a WAN redundancy technology from FatPipe USA that provides companies with automated and dynamic failover as a result of a WAN component or service failure resulting in a data line connection outage.A security vulnerability exists in FatPipe WARP, IPVPN and MPVPN, which stems from a lac...

5.3CVSS5.6AI score0.02703EPSS
Exploits1References3
Malwarebytes
Malwarebytes
added 2021/10/12 3:12 p.m.11 views

ExpressVPN made a choice, and so did I: Lock and Code S02E19

On September 14, the US Department of Justice announced that it had resolved an earlier investigation into an international cyber hacking campaign coming from the United Arab Emirates that has reportedly impacted hundreds of journalists, activists, and human rights defenders in Yemen, Iran, Turke...

0.5AI score
Exploits0
Kitploit
Kitploit
added 2021/07/24 9:30 p.m.89 views

Terraguard - Create And Destroy Your Own VPN Service Using WireGuard

This project's goal is to be simple to create and destroy your own VPN service using WireGuard. Prerequisites Terraform = 1.0.0 Ansible = 2.10.5 How to Deploy Terraform Run with sudo is necessary because we need permission on localhost to install packages, configure a network interface and start ...

7.4AI score
Exploits0References2
Malwarebytes
Malwarebytes
added 2021/06/30 6:53 p.m.39 views

Police seize DoubleVPN data, servers, and domain

A coordinated effort between global law enforcement agencies—led by the Dutch National Police—shut down a VPN service that was advertised on cybercrime forums. The VPN company promised users the ability to double- and triple-encrypt their web traffic to obscure their location and identity. The...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/06/30 12:56 p.m.33 views

Authorities Seize DoubleVPN Service Used by Cybercriminals

A coordinated international law enforcement operation resulted in the takedown of a VPN service called DoubleVPN for providing a safe haven for cybercriminals to cover their tracks. "On 29th of June 2021, law enforcement took down DoubleVPN," the agencies said in a seizure notice splashed on the...

0.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2021/04/23 11:13 a.m.58 views

How to choose the best VPN for you

If you’ve been shopping for a VPN service in 2021, you’ve probably noticed how many providers are available. Using a personal VPN has grown in popularity in recent years, and for good reason. You may no longer be asking, “Should I use one,” but rather, “Which one should I choose?” The answer migh...

7.1AI score
Exploits0
OSV
OSV
added 2021/04/21 10:15 p.m.14 views

CVE-2020-27569

Arbitrary File Write exists in Aviatrix VPN Client 2.8.2 and earlier. The VPN service writes logs to a location that is world writable and can be leveraged to gain write access to any file on the system...

7.5CVSS7AI score
Exploits0References1
AlpineLinux
AlpineLinux
added 2021/04/21 9:23 p.m.51 views

CVE-2020-27569

Arbitrary File Write exists in Aviatrix VPN Client 2.8.2 and earlier. The VPN service writes logs to a location that is world writable and can be leveraged to gain write access to any file on the system...

7.5CVSS7.9AI score0.009EPSS
Exploits0
HackRead
HackRead
added 2020/12/22 4:13 p.m.29 views

Feds seize VPN service used by hackers in cyber attacks

By Deeba Ahmed Cybercriminals’ Favorite VPN Service Rendered ‘Inaccessible’ in a Joint Operation Conducted by Europol and the FBI. This is a post from HackRead.com Read the original post: Feds seize VPN service used by hackers in cyber attacks...

2.9AI score
Exploits0
CNVD
CNVD
added 2020/11/17 12:0 a.m.2 views

Arbitrary File Download Vulnerability in Dieppe SSL VPN Service

Ltd. is an information security industry manufacturer integrating R&D, production and sales. An arbitrary file download vulnerability exists in DIPPER SSL VPN Service. An attacker can exploit the vulnerability to view or download arbitrary sensitive files...

6.8AI score
Exploits0
OSV
OSV
added 2020/10/12 11:15 a.m.5 views

CVE-2020-5139

A vulnerability in SonicOS SSLVPN service allows a remote unauthenticated attacker to cause Denial of Service DoS due to the release of Invalid pointer and leads to a firewall crash. This vulnerability affected SonicOS Gen 5 version 5.9.1.7, 5.9.1.13, Gen 6 version 6.5.4.7, 6.5.1.12, 6.0.5.3,...

7.5CVSS7.1AI score0.01742EPSS
Exploits0References1
NVD
NVD
added 2020/09/13 8:15 p.m.15 views

CVE-2020-25289

The VPN service in AVAST SecureLine before 5.6.4982.470 allows local users to write to arbitrary files via an Object Manager symbolic link from the log directory which has weak permissions...

5.5CVSS0.00449EPSS
Exploits1References1
Rows per page
Query Builder