Lucene search
+L

162 matches found

Positive Technologies
Positive Technologies
added 2024/04/16 12:0 a.m.6 views

PT-2024-4878 · Oracle · Virtualbox

Name of the Vulnerable Software and Affected Versions: Oracle VM VirtualBox versions prior to 7.0.16 Description: The issue is related to insufficient input validation in the Core component of Oracle VM VirtualBox, allowing a high-privileged attacker with logon access to the infrastructure to...

6.8CVSS7.2AI score0.00414EPSS
Exploits0References16
hivepro
hivepro
added 2023/11/27 4:30 a.m.15 views

Dissemination of the Konni Campaign Through Malicious Documents

Summary: The Konni campaign has resurfaced in a new phishing attack employing a Russian-language Microsoft Word document to distribute malware. The malicious software aims to harvest sensitive information from compromised Windows hosts. Threat Level - Red | Attack Report For a detailed threat...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/11/23 2:46 p.m.65 views

Konni Group Using Russian-Language Malicious Word Docs in Latest Attacks

A new phishing attack has been observed leveraging a Russian-language Microsoft Word document to deliver malware capable of harvesting sensitive information from compromised Windows hosts. The activity has been attributed to a threat actor called Konni, which is assessed to share overlaps with a...

7.8CVSS7.2AI score0.97798EPSS
Exploits49
RustSec
RustSec
added 2023/11/20 12:0 p.m.19 views

`tauri-winrt-notifications` was removed from crates.io for malicious code

This crate was part of a typosquatting malware cluster published by the user gabielle55131 to run an arbitrary malware payload on Windows hosts. This advisory is to retrospectively document this attempted attack. The version information and download records of the malicious crate are no longer...

5.9AI score
Exploits0
RustSec
RustSec
added 2023/11/15 12:0 p.m.18 views

`lfest-main` was removed from crates.io for malicious code

This crate was part of a typosquatting malware cluster published by the user Kraded to run an arbitrary malware payload on Windows hosts. This advisory is to retrospectively document this attempted attack. The version information and download records of the malicious crate are no longer available...

5.9AI score
Exploits0
RustSec
RustSec
added 2023/11/15 12:0 p.m.10 views

`monero-rpc-rs` was removed from crates.io for malicious code

This crate was part of a typosquatting malware cluster published by the user Kraded to run an arbitrary malware payload on Windows hosts. This advisory is to retrospectively document this attempted attack. The version information and download records of the malicious crate are no longer available...

5.9AI score
Exploits0
OSV
OSV
added 2023/11/15 12:0 p.m.6 views

RUSTSEC-2023-0122 `winx-rs` was removed from crates.io for malicious code

This crate was part of a typosquatting malware cluster published by the user Kraded to run an arbitrary malware payload on Windows hosts. This advisory is to retrospectively document this attempted attack. The version information and download records of the malicious crate are no longer available...

5.9AI score
Exploits0References2
RustSec
RustSec
added 2023/11/15 12:0 p.m.14 views

`win-base64-rs` was removed from crates.io for malicious code

This crate was part of a typosquatting malware cluster published by the user Kraded to run an arbitrary malware payload on Windows hosts. This advisory is to retrospectively document this attempted attack. The version information and download records of the malicious crate are no longer available...

5.9AI score
Exploits0
OSV
OSV
added 2023/11/15 12:0 p.m.7 views

RUSTSEC-2023-0107 `lasso-rs` was removed from crates.io for malicious code

This crate was part of a typosquatting malware cluster published by the user Kraded to run an arbitrary malware payload on Windows hosts. This advisory is to retrospectively document this attempted attack. The version information and download records of the malicious crate are no longer available...

5.9AI score
Exploits0References2
OSV
OSV
added 2023/11/15 12:0 p.m.5 views

RUSTSEC-2023-0111 `monero-api` was removed from crates.io for malicious code

This crate was part of a typosquatting malware cluster published by the user Kraded to run an arbitrary malware payload on Windows hosts. This advisory is to retrospectively document this attempted attack. The version information and download records of the malicious crate are no longer available...

5.9AI score
Exploits0References2
OSV
OSV
added 2023/11/15 12:0 p.m.11 views

RUSTSEC-2023-0109 `win-crypto` was removed from crates.io for malicious code

This crate was part of a typosquatting malware cluster published by the user Kraded to run an arbitrary malware payload on Windows hosts. This advisory is to retrospectively document this attempted attack. The version information and download records of the malicious crate are no longer available...

5.9AI score
Exploits0References2
OSV
OSV
added 2023/11/15 12:0 p.m.6 views

RUSTSEC-2023-0106 `lfest-main` was removed from crates.io for malicious code

This crate was part of a typosquatting malware cluster published by the user Kraded to run an arbitrary malware payload on Windows hosts. This advisory is to retrospectively document this attempted attack. The version information and download records of the malicious crate are no longer available...

5.9AI score
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2023/11/13 12:0 a.m.3 views

VulnCheck KEV: CVE-2021-21402

Jellyfin is a Free Software Media System. In Jellyfin before version 10.7.1, with certain endpoints, well crafted requests will allow arbitrary file read from a Jellyfin server's file system. This issue is more prevalent when Windows is used as the host OS. Servers that are exposed to the...

7.7CVSS6.7AI score0.79855EPSS
Exploits4References1
OpenVAS
OpenVAS
added 2023/10/27 12:0 a.m.29 views

Tenable Nessus Network Monitor < 6.3.0 Multiple Vulnerabilities (TNS-2023-34)

Tenable Nessus Network Monitor is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.8CVSS7.4AI score0.75116EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2023/10/26 4:18 p.m.23 views

CVE-2023-5622 Privilege Escalation

Under certain conditions, Nessus Network Monitor could allow a low privileged user to escalate privileges to NT AUTHORITY\SYSTEM on Windows hosts by replacing a specially crafted file...

7.1CVSS7.2AI score0.00471EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/26 4:18 p.m.33 views

CVE-2023-5622 Privilege Escalation

Under certain conditions, Nessus Network Monitor could allow a low privileged user to escalate privileges to NT AUTHORITY\SYSTEM on Windows hosts by replacing a specially crafted file...

7.1CVSS8.8AI score0.00471EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/10/26 12:0 a.m.39 views

Nessus Network Monitor < 6.3.0 Multiple Vulnerabilities (TNS-2023-34)

According to its self-reported version, the Nessus Network Monitor running on the remote host is prior to 6.3.0. It is, therefore, affected by multiple vulnerabilities as referenced in the TNS-2023-34 advisory. - Nessus Network Monitor leverages third-party software to help provide underlying...

8.8CVSS7AI score0.75116EPSS
Exploits2References14
Tenable Nessus
Tenable Nessus
added 2023/09/14 12:0 a.m.57 views

Siemens JT2Go < 14.3.0.1 Multiple Vulnerabilities (SSA-278349)

The version of Siemens JT2Go installed on the remote Windows hosts is prior to 14.3.0.1. It is, therefore, affected by multiple vulnerabilities: - A stack-based buffer overflow vulnerability while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of...

7.8CVSS8.1AI score0.00313EPSS
Exploits0References8
Huntr
Huntr
added 2023/04/28 4:7 p.m.22 views

Multiple path traversals on Windows hosts

Description validatepathissafe function in file /mlflow/server/handlers.py, introduced in PR 7891 on Feb 24th, 2023 does not account for Windows absolute path format, and thus can be bypassed on MLFlow servers, running on Windows hosts, exposing them to a number of high-impact directory traversal...

7.5CVSS7AI score0.70736EPSS
Exploits1
Fedora
Fedora
added 2023/04/02 12:17 a.m.29 views

[SECURITY] Fedora 38 Update: amanda-3.5.3-1.fc38

AMANDA, the Advanced Maryland Automatic Network Disk Archiver, is a backup system that allows the administrator of a LAN to set up a single master backup server to back up multiple hosts to one or more tape drives or disk files. AMANDA uses native dump and/or GNU tar facilities and can back up a...

8.8CVSS6.1AI score0.01246EPSS
Exploits4
Rows per page
Query Builder