CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Hacker News•added 2023/02/21 10:35 a.m.•4 views

Researchers Discover Numerous Samples of Information Stealer 'Stealc' in the Wild

A new information stealer called Stealc that's being advertised on the dark web could emerge as a worthy competitor to other malware of its ilk. "The threat actor presents Stealc as a fully featured and ready-to-use stealer, whose development relied on Vidar, Raccoon, Mars, and RedLine stealers,"...

6AI score

ATTACKERKB•added 2023/02/01 4:0 p.m.•3 views

CVE-2023-20068

A vulnerability in the web-based management interface of Cisco Prime Infrastructure Software could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting XSS attack against a user of the interface on an affected device. This vulnerability is due to insufficient...

6.1CVSS6.6AI score0.00173EPSS

Exploits0References2

Hive Pro Threat Advisories•added 2023/01/24 7:42 a.m.•13 views

Tracking the Stealthy Movements of Vidar Info-Stealer Malware

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Vidar is an info-stealer malware that was first spotted in the wild in late 2018. It is considered a distinct fork of the Arkei malware family and has a simple business model where customers pay between...

2.5AI score

The Hacker News•added 2023/01/10 12:54 p.m.•1 views

Italian Users Warned of Malware Attack Targeting Sensitive Information

A new malware campaign has been observed targeting Italy with phishing emails designed to deploy an information stealer on compromised Windows systems. "The info-stealer malware steals sensitive information like system info, crypto wallet and browser histories, cookies, and credentials of crypto...

6.4AI score

The Hacker News•added 2023/01/09 8:47 a.m.•2 views

Malicious PyPI Packages Using Cloudflare Tunnels to Sneak Through Firewalls

In yet another campaign targeting the Python Package Index PyPI repository, six malicious packages have been found deploying information stealers on developer systems. The now-removed packages, which were discovered by Phylum between December 22 and December 31, 2022, include pyrologin,...

7.2AI score

The Hacker News•added 2023/01/09 8:47 a.m.•43 views

Malicious PyPI Packages Using Cloudflare Tunnels to Sneak Through Firewalls

1.4AI score

OSV•added 2022/12/06 2:15 a.m.•2 views

CVE-2022-40603

A cross-site scripting XSS vulnerability in the CGI program of Zyxel ZyWALL/USG series firmware versions 4.30 through 4.72, VPN series firmware versions 4.30 through 5.31, USG FLEX series firmware versions 4.50 through 5.31, and ATP series firmware versions 4.32 through 5.31, which could allow an...

6.1CVSS5.7AI score0.00673EPSS

HackRead•added 2022/12/04 6:11 p.m.•15 views

North Korean APT37 Unleashes Dolphin Backdoor on South Korea

By Habiba Rashid The backdoor is equipped with a wide range of spying capabilities, including exfiltrating files, keylogging, and stealing browser data, etc. This is a post from HackRead.com Read the original post: North Korean APT37 Unleashes Dolphin Backdoor on South Korea...

1.6AI score

4.8CVSS6AI score0.00155EPSS

CVE-2022-20936

Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface of an affected device. These vulnerabilities are due t...

CVE-2022-20838

OSV•added 2022/11/15 9:15 p.m.•1 views

CVE-2022-20834

4.8CVSS6AI score

OSV•added 2022/11/15 9:15 p.m.•1 views

CVE-2022-20835

CVE-2022-20836

OSV•added 2022/11/15 9:15 p.m.•1 views

CVE-2022-20833

CVE-2022-20832

4.8CVSS6AI score

Positive Technologies•added 2022/11/09 12:0 a.m.•2 views

PT-2022-5696 · Cisco · Cisco Firepower Management Center

Name of the Vulnerable Software and Affected Versions: Cisco Firepower Management Center FMC Software affected versions not specified Description: The issue is related to insufficient validation of user-supplied input by the web-based management interface, allowing an authenticated, remote attack...

4.9CVSS6.1AI score0.00168EPSS

Exploits0References6

OSV•added 2022/11/04 6:15 p.m.•0 views

CVE-2022-20963

A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface of an affected device. This vulnerability is due to...

5.4CVSS6AI score