Lucene search
K

28 matches found

Packet Storm News
Packet Storm News
added 2026/04/07 12:0 a.m.5 views

LanG -- a Governance-Aware Agentic AI Platform for Unified Security Operations

Modern Security Operations Centers struggle with alert fatigue, fragmented tooling, and limited cross-source event correlation. Challenges that current Security Information Event Management and Extended Detection and Response systems only partially address through fragmented tools. This paper...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/26 12:0 a.m.2 views

Unicornscan 0.4.52

Unicornscan is an information gathering and correlation engine built for and by members of the security research and testing communities. It was designed to provide an engine that is Scalable, Accurate, Flexible, and Efficient. It is released for the community to use under the terms of the GPL...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/01/28 12:0 a.m.9 views

Unicornscan 0.4.51

Unicornscan is an information gathering and correlation engine built for and by members of the security research and testing communities. It was designed to provide an engine that is Scalable, Accurate, Flexible, and Efficient. It is released for the community to use under the terms of the GPL...

5.9AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-10072

Malware in sbrugna...

5.4CVSS6.7AI score0.00696EPSS
Exploits0References2
Trellix
Trellix
added 2025/07/17 12:0 a.m.5 views

Detecting and Visualizing Lateral Movement Attacks with Trellix Helix Connect

Detecting and Visualizing Lateral Movement Attacks with Trellix Helix Connect By Maulik Maheta and Adithya Chandra · July 17, 2025 Executive summary This blog marks the third installment in our series on detecting and visualizing lateral movement attacks with Trellix Helix Connect. A lateral...

6.2AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2024/10/25 1:0 p.m.9 views

Building a Custom Risk Prioritization and Risk Scoring Methodology with Surface Command

Over the 15 years I spent as a practitioner and consultant prior to joining Rapid7, a metric that I found to be ever elusive was a true custom prioritization score. You could get close- with enough time, energy, spreadsheets, and logs. But even then it wasn’t without fault. There were still...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/06/02 12:0 a.m.333 views

Tenable Log Correlation Engine (LCE) < 6.0.9 (TNS-2021-10)

The version of Tenable Log Correlation Engine LCE installed on the remote host is prior to 6.0.9. It is, therefore, affected by multiple vulnerabilities: - Multiple denial of service vulnerabilities in the included OpenSSL component. CVE-2019-1551, CVE-2020-1967, CVE-2020-1971, CVE-2021-3449,...

7.5CVSS6.7AI score0.99019EPSS
Exploits19References8
Tenable Product Security Advisories
Tenable Product Security Advisories
added 2021/06/01 4:48 p.m.21 views

[R1] LCE 6.0.9 Fixes Multiple Third-party Vulnerabilities

Tenable Log Correlation Engine leverages third-party software to help provide underlying functionality. Two separate third-party components OpenSSL, jQuery were found to contain vulnerabilities, and updated versions have been made available by the providers. Out of caution and in line with good...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/10/26 12:0 a.m.40 views

Tenable Log Correlation Engine (LCE) < 5.1.1 (TNS-2018-13)

The version of Tenable Log Correlation Engine LCE installed on the remote host is a version prior to 5.1.1. It is, therefore, affected by multiple vulnerabilities: - A flaw exists in the bundled third-party component OpenSSL library's key handling during a TLS handshake that causes a denial of...

7.5CVSS6.3AI score0.49268EPSS
Exploits0References4
Tenable Product Security Advisories
Tenable Product Security Advisories
added 2018/10/23 7:51 p.m.20 views

[R1] LCE 5.1.1 Fixes Multiple Third-party Vulnerabilities

Log Correlation Engine leverages third-party software to help provide underlying functionality. One third-party component OpenSSL was found to contain vulnerabilities, and updated versions have been made available by the providers. Out of caution and in line with good practice, Tenable opted to...

7.1AI score
Exploits0
Tenable Product Security Advisories
Tenable Product Security Advisories
added 2018/10/23 7:51 p.m.573 views

[R1] LCE 5.1.1 Fixes Multiple Third-party Vulnerabilities

Log Correlation Engine leverages third-party software to help provide underlying functionality. One third-party component OpenSSL was found to contain vulnerabilities, and updated versions have been made available by the providers. Out of caution and in line with good practice, Tenable opted to...

2.9AI score
Exploits0
Tenable Product Security Advisories
Tenable Product Security Advisories
added 2017/03/22 7:13 p.m.493 views

[R1] LCE 5.0.1 Fixes Two Third-party Library Vulnerabilities

Log Correlation Engine LCE 5.0.0 is impacted by multiple vulnerabilities reported in a third-party library and an encryption algorithm. LCE was errantly using 3DES on TCP port 1243. The following vulnerabilities have been resolved with the updated libraries...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/03/22 12:0 a.m.117 views

Tenable Log Correlation Engine (LCE) < 4.8.1 Multiple Vulnerabilities

The version of Tenable Log Correlation Engine LCE installed on the remote host is prior to 4.8.1. It is, therefore, affected by the following vulnerabilities : - Multiple cross-site scripting XSS vulnerabilities exist in the Handlebars library in the lib/handlebars/utils.js script due to a failur...

10CVSS8.2AI score0.89058EPSS
Exploits21References30
CNVD
CNVD
added 2017/03/01 12:0 a.m.4 views

Tenable Log Correlation Engine Cross-Site Scripting Vulnerability

Tenable Log Correlation Engine a.k.a. LCE is a log correlation engine that provides log analysis and event monitoring from Tenable Network Security. A cross-site scripting vulnerability exists in versions of Tenable LCE prior to 4.8.1. A remote attacker can exploit this vulnerability to execute...

5.4CVSS6.4AI score0.00696EPSS
Exploits0References1
OSV
OSV
added 2017/02/28 6:59 p.m.3 views

CVE-2016-9261

Cross-site scripting XSS vulnerability in Tenable Log Correlation Engine aka LCE before 4.8.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

5.4CVSS5.9AI score0.00696EPSS
Exploits0References1
Prion
Prion
added 2017/02/28 6:59 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in Tenable Log Correlation Engine aka LCE before 4.8.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.6AI score0.00696EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2017/02/28 6:59 p.m.17 views

CVE-2016-9261

Cross-site scripting XSS vulnerability in Tenable Log Correlation Engine aka LCE before 4.8.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

5.4CVSS5.1AI score0.00696EPSS
Exploits0References1
CVE
CVE
added 2017/02/28 6:0 p.m.42 views

CVE-2016-9261

Tenable Log Correlation Engine (LCE) is affected in versions prior to 4.8.1 by cross-site scripting (XSS) vulnerabilities. The Nessus plugin aggregates multiple CVEs affecting LCE, including CVE-2016-9261, describing a vulnerability where an authenticated, remote attacker can inject arbitrary web...

5.4CVSS5.5AI score0.00696EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2017/02/28 6:0 p.m.23 views

CVE-2016-9261

Cross-site scripting XSS vulnerability in Tenable Log Correlation Engine aka LCE before 4.8.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

5.3AI score0.00696EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/04/25 12:0 a.m.54 views

Tenable Log Correlation Engine (LCE) < 4.8.0 Libxml2 DoS

The version of Tenable Log Correlation Engine LCE installed on the remote host is a version prior to 4.8.0. It is, therefore, affected by a denial of service vulnerability in the bundled version of Libxml2 due to an infinite loop condition in the xzdecomp function. An unauthenticated, remote...

2.6CVSS6.9AI score0.03199EPSS
Exploits1References3
Rows per page
Query Builder