Lucene search
K

17 matches found

The Hacker News
The Hacker News
added 2025/07/08 5:8 a.m.23 views

CISA Adds Four Critical Vulnerabilities to KEV Catalog Due to Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Monday added four security flaws to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation in the wild. The list of flaws is as follows - CVE-2014-3931 CVSS score: 9.8 - A buffer overflow...

9.8CVSS8.9AI score0.9987EPSS
Exploits108
Positive Technologies
Positive Technologies
added 2025/06/26 12:0 a.m.4 views

PT-2025-27025 · Undefined · Undefined

A Historic First: BMC Vulnerability CVE-2024-054085 Joins CISA's Most Critical List https://t.co/WMMWeavYPb In June 2025, for the first time, CISA added a Baseboard Management Controller vulnerability to its Known Exploited Vulnerabilities catalog. While BMC vulnerabilities h…...

7.4AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/10 12:0 a.m.8 views

PT-2025-24634 · Undefined · Undefined

CISA has just added three new vulnerabilities to its Known Exploited Vulnerabilities KEV catalog: Erlang OTP CVE-2024-39992 OpenSSH CVE-2024-39993 Roundcube Webmail CVE-2024-39994 These vulnerabilities are actively being exploited in the wild and must be patched by June 25, 2025, as per Binding...

7.3AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/10 12:0 a.m.8 views

PT-2025-24632 · Undefined · Undefined

CISA has just added three new vulnerabilities to its Known Exploited Vulnerabilities KEV catalog: Erlang OTP CVE-2024-39992 OpenSSH CVE-2024-39993 Roundcube Webmail CVE-2024-39994 These vulnerabilities are actively being exploited in the wild and must be patched by June 25, 2025, as per Binding...

7.3AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/10 12:0 a.m.5 views

PT-2025-24633 · Undefined · Undefined

CISA has just added three new vulnerabilities to its Known Exploited Vulnerabilities KEV catalog: Erlang OTP CVE-2024-39992 OpenSSH CVE-2024-39993 Roundcube Webmail CVE-2024-39994 These vulnerabilities are actively being exploited in the wild and must be patched by June 25, 2025, as per Binding...

7.3AI score
Exploits0References1
Circl
Circl
added 2025/05/20 10:0 a.m.6 views

CVE-2025-4364

creationtimestamp| type| source ---|---|--- 2025-05-20 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-140-11...

8.7CVSS7AI score0.00386EPSS
Exploits0References1
Circl
Circl
added 2025/03/25 11:0 a.m.19 views

CVE-2025-24517

creationtimestamp| type| source ---|---|--- 2025-03-25 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-084-04 2025-03-31 05:31:23+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9592 2025-03-31 09:09:22+00:00| seen| https://t.me/cvedetector/21558 2025-08-10...

7.5CVSS8.7AI score0.00787EPSS
Exploits0References3
Schneier on Security
Schneier on Security
added 2025/03/05 12:0 p.m.5 views

CISA Identifies Five New Vulnerabilities Currently Being Exploited

Of the five, one is a Windows vulnerability, another is a Cisco vulnerability. We don't have any details about who is exploiting them, or how. News article. Slashdot thread...

7.3AI score
Exploits0
Circl
Circl
added 2024/10/10 12:0 p.m.9 views

CVE-2024-41981

creationtimestamp| type| source ---|---|--- 2024-10-10 12:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-24-284-02 2024-12-12 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-24-347-06...

7.8CVSS6.9AI score0.00221EPSS
Exploits0References2
Circl
Circl
added 2024/02/07 11:32 p.m.3 views

CVE-2024-24806

creationtimestamp| type| source ---|---|--- 2024-02-07 23:32:00+00:00| seen| https://t.me/ctinow/181034 2024-02-08 13:51:42+00:00| seen| https://t.me/ctinow/181374 2024-02-11 13:42:46+00:00| seen| https://t.me/arpsyndicate/3390 2024-02-15 08:17:10+00:00| seen| https://t.me/ctinow/185329 2024-04-1...

7.3CVSS6.9AI score0.02003EPSS
Exploits1References6
Qualys Blog
Qualys Blog
added 2024/01/24 3:51 p.m.25 views

Qualys WAS Unveils New Features in an Upgraded User Interface

Qualys Web Application Scanning WAS has been at the forefront of web application and API security innovation, and today, were excited to announce a significant leap - the launch of our New User Interface UI. From improved performance and reliability to cutting-edge technology adoption and enhance...

7.5AI score
Exploits0
CISA
CISA
added 2023/09/11 12:0 p.m.18 views

CISA Adds Two Known Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-41064 Apple iOS, iPadOS, and macOS ImageIO Buffer Overflow CVE-2023-41061 Apple iOS, iPadOS, and watchOS Wallet Code Execution Vulnerability These types of...

7.8CVSS7.3AI score0.15263EPSS
In wildExploits2References7
CISA
CISA
added 2023/08/22 12:0 p.m.15 views

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-38035 Ivanti Sentry Authentication Bypass Vulnerability CVE-2023-27532 Veeam Backup & Replication Cloud Connect Missing Authentication for Critical Function...

9.8CVSS7.3AI score0.99949EPSS
In wildExploits10References7
Circl
Circl
added 2022/11/19 3:36 p.m.21 views

CVE-2022-4378

creationtimestamp| type| source ---|---|--- 2022-11-19 15:36:37+00:00| seen| https://t.me/itsecnews/1806 2023-01-05 18:22:30+00:00| seen| https://t.me/cibsecurity/55982 2025-04-15 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-105-08...

7.8CVSS6.3AI score0.00428EPSS
Exploits0References3
Circl
Circl
added 2022/08/11 6:10 a.m.10 views

CVE-2022-2588

creationtimestamp| type| source ---|---|--- 2022-08-11 06:10:49+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/2911 2022-08-22 23:52:30+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/3001 2022-08-23 06:42:54+00:00| published-proof-of-concept|...

7.8CVSS6.9AI score0.06214EPSS
Exploits7References21
Malwarebytes
Malwarebytes
added 2022/03/21 11:41 a.m.18 views

A week in security (March 14 – 20)

Last week on Malwarebytes Labs: Beware of this bogus and phishy “Instagram Support” email Meet Exotic Lily, access broker for ransomware and other malware peddlers Double header: IsaacWiper and CaddyWiper How to protect RDP Online Safety Bill’s provisions for “legal but harmful” content described...

0.2AI score
Exploits0
Circl
Circl
added 2019/05/22 8:48 p.m.10 views

CVE-2018-7857

creationtimestamp| type| source ---|---|--- 2019-05-22 20:48:23+00:00| seen| https://t.me/cvemitreorg/162 2025-04-24 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-114-01...

7.5CVSS7.1AI score0.01582EPSS
Exploits1References2
Rows per page
Query Builder