Lucene search
K

116 matches found

Tenable Nessus
Tenable Nessus
added 2021/10/05 12:0 a.m.80 views

RHEL 7 : samba (RHSA-2021:3723)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:3723 advisory. Red Hat Gluster Storage is a software only scale-out storage solution that provides flexible and affordable unstructured data storage. It...

10CVSS7.7AI score0.99512EPSS
Exploits75References11
ThreatPost
ThreatPost
added 2021/07/16 9:7 p.m.527 views

Top CVEs Trending with Cybercriminals

Criminal small talk in underground forums offer critical clues about which known Common Vulnerabilities and Exposures CVEs threat actors are most focused on. This, in turn, offers defenders clues on what to watch out for. An analysis of such chatter, by Cognyte, examined 15 cybercrime forums...

10CVSS9.3AI score0.99999EPSS
Exploits491References15
Gitee
Gitee
added 2021/07/09 11:20 a.m.26 views

Exploit for Out-of-bounds Write in Qemu

This repository contains PoCs Proof of Concepts for two vulnerabilities: CVE-2020-14364 Qemu and CVE-2020-1472 Zerologon. CVE-2020-14364 Qemu The Qemu PoC is a C code that exploits a vulnerability in the Qemu emulator. The code includes two files: exp1irq.c and exp2configread.c. These files appea...

10CVSS7.5AI score0.99512EPSS
Exploits75
GithubExploit
GithubExploit
added 2021/06/23 12:23 p.m.28 views

Exploit for CVE-2020-1472

zeroscan Zeroscan is a Domain Controller vulnerability scanne...

10CVSS7.3AI score0.99512EPSS
Exploits132
GithubExploit
GithubExploit
added 2021/06/23 12:23 p.m.14 views

Exploit for CVE-2020-1472

zeroscan Zeroscan is a Domain Controller vulnerability scanne...

10CVSS8.1AI score0.99512EPSS
Exploits132
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2020:2722-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.8AI score0.99512EPSS
Exploits75References4
Malwarebytes
Malwarebytes
added 2021/06/01 7:9 p.m.54 views

Cobalt Strike, a penetration testing tool abused by criminals

If you were to compose a list of tools and software developed by security and privacy defenders that ended up being abused by the bad guys, then Cobalt Strike would unfortunately be near the top of the list. Maybe only Metasploit could give it a run for the first place ranking. Metasploit—probabl...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.67 views

CentOS 8 : samba (CESA-2021:1647)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:1647 advisory. - samba: Missing handle permissions check in SMB1/2/3 ChangeNotify CVE-2020-14318 - samba: Unprivileged user can crash winbind CVE-2020-14323 - samba:...

10CVSS7.5AI score0.99512EPSS
Exploits75References4
Rockylinux
Rockylinux
added 2021/05/18 5:44 a.m.59 views

samba security, bug fix, and enhancement update

An update is available for samba, openchange. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Samba is an open-source implementation of the Server Message Block...

10CVSS8.1AI score0.99512EPSS
Exploits75
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2020:2724-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7AI score0.99512EPSS
Exploits75References6
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.36 views

SUSE: Security Advisory (SUSE-SU-2020:2721-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7AI score0.99512EPSS
Exploits75References8
GithubExploit
GithubExploit
added 2021/03/01 4:21 a.m.166 views

Exploit for CVE-2020-1472

ZeroLogon - Exploit and Example Modified the test PoC from Se...

10CVSS8.4AI score0.99512EPSS
Exploits75
The Hacker News
The Hacker News
added 2021/02/11 7:43 a.m.53 views

Iranian Hackers Utilize ScreenConnect to Spy On UAE, Kuwait Government Agencies

UAE and Kuwait government agencies are targets of a new cyberespionage campaign potentially carried out by Iranian threat actors, according to new research. Attributing the operation to be the work of Static Kitten aka MERCURY or MuddyWater, Anomali said the "objective of this activity is to...

0.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/02/11 7:43 a.m.11 views

Iranian Hackers Utilize ScreenConnect to Spy On UAE, Kuwait Government Agencies

UAE and Kuwait government agencies are targets of a new cyberespionage campaign potentially carried out by Iranian threat actors, according to new research. Attributing the operation to be the work of Static Kitten aka MERCURY or MuddyWater, Anomali said the "objective of this activity is to...

6AI score
Exploits0
The Hacker News
The Hacker News
added 2021/02/10 4:44 a.m.216 views

Microsoft Issues Patches for In-the-Wild 0-day and 55 Others Windows Bugs

Microsoft on Tuesday issued fixes for 56 flaws, including a critical vulnerability that's known to be actively exploited in the wild. In all, 11 are listed as Critical, 43 are listed as Important, and two are listed as Moderate in severity — six of which are previously disclosed vulnerabilities...

10CVSS0.9AI score0.99512EPSS
Exploits105
Rapid7 Blog
Rapid7 Blog
added 2021/02/09 11:51 p.m.332 views

Patch Tuesday - February 2021

The second Patch Tuesday of 2021 is relatively light on the vulnerability count, with 64 CVEs being addressed across the majority of Microsoft’s product families. Despite that, there’s still plenty to discuss this month. Vulnerability Breakdown by Software Family Family | Vulnerability Count...

9.3CVSS0.3AI score0.99512EPSS
Exploits116
Krebs on Security
Krebs on Security
added 2021/02/09 10:37 p.m.149 views

Microsoft Patch Tuesday, February 2021 Edition

Microsoft today rolled out updates to plug at least 56 security holes in its Windows operating systems and other software. One of the bugs is already being actively exploited, and six of them were publicized prior to today, potentially giving attackers a head start in figuring out how to exploit...

9.3CVSS0.4AI score0.99512EPSS
Exploits96
Malwarebytes
Malwarebytes
added 2021/01/25 1:12 p.m.65 views

A week in security (January 18 – January 24)

Last week on Malwarebytes Labs, we looked at changes to WhatsApp’s privacy policy, we provided information about Malwarebytes being targeted by the same threat actor that was implicated in the SolarWinds breach, we told the story of ZeroLogon, looked at the pros and cons of Zoom watermarking,...

7.2AI score
Exploits0
GithubExploit
GithubExploit
added 2021/01/20 9:38 p.m.44 views

Exploit for CVE-2020-1472

CVE-2020-1472 aka Zerologon Exploit POC !cve-2020-1742https...

10CVSS7.1AI score0.99512EPSS
Exploits76
Malwarebytes
Malwarebytes
added 2021/01/19 6:37 p.m.232 views

The story of ZeroLogon

This is the story of a vulnerability that was brought about by the incorrect use of an encryption technique. After it was discovered by researchers, the vulnerability was patched and that should have been the end of the story. Unfortunately the patch caused problems of its own, which made it very...

9.3CVSS8.9AI score0.99512EPSS
Exploits75
Rows per page
Query Builder