Lucene search
K

8752 matches found

Tenable Nessus
Tenable Nessus
added 2022/11/05 12:0 a.m.10 views

Debian dla-3178 : ffmpeg - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3178 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3178-1 [email protected] https://www.debian.org/lts/security/...

6.2AI score
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/11/03 12:0 a.m.4 views

CVE-2022-39382 NODE_ENV in Keystone defaults to development with esbuild

Keystone is a headless CMS for Node.js — built with GraphQL and React.@keystone-6/[email protected] || 3.0.1 users that use NODEENV to trigger security-sensitive functionality in their production builds are vulnerable to NODEENV being inlined to "development" for user code, irrespective of what your...

9.8CVSS7.4AI score0.01486EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/11/02 12:0 a.m.7 views

PT-2022-6321 · Silicon +1 · Gecko Sdk +1

Name of the Vulnerable Software and Affected Versions: Micrium uC-HTTP version 3.01.01 Silicon Labs Gecko SDK affected versions not specified Description: The issue is related to a heap-based buffer overflow in the HTTP server functionality. This can be exploited by sending a specially crafted HT...

10CVSS9.7AI score0.01862EPSS
Exploits1References9
Fedora
Fedora
added 2022/11/01 3:57 p.m.48 views

[SECURITY] Fedora 35 Update: php-8.0.25-1.fc35

PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is...

9.8CVSS8.8AI score0.05193EPSS
Exploits4
GithubExploit
GithubExploit
added 2022/11/01 1:6 p.m.34 views

Exploit for Out-of-bounds Write in Microsoft

CVE-2021-1732 CVE-­2021­-1732 Microsoft Windows 10 本地提权漏 研究及Po...

7.8CVSS8.1AI score0.78376EPSS
Exploits21
CNVD
CNVD
added 2022/10/31 12:0 a.m.10 views

Denial of Service Vulnerability in Configuration King (CNVD-2022-83556)

Configuration King is an industrial automation configuration software produced by Beijing Asian Control Technology Development Co. A denial of service vulnerability exists in Configuration King, which can be exploited by an attacker to cause a process crash...

6.9AI score
Exploits0
CNVD
CNVD
added 2022/10/28 12:0 a.m.13 views

Denial of Service Vulnerability in Configuration King (CNVD-2022-78794)

Configuration King is an industrial automation configuration software produced by Beijing Asian Control Technology Development Co. A denial of service vulnerability exists in Configuration King, which can be exploited by an attacker to cause a process crash...

6.9AI score
Exploits0
OpenVAS
OpenVAS
added 2022/10/28 12:0 a.m.15 views

SUSE: Security Advisory (SUSE-SU-2022:3791-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.02088EPSS
Exploits0References5
Kitploit
Kitploit
added 2022/10/26 11:30 a.m.41 views

ProtectMyTooling - Multi-Packer Wrapper Letting Us Daisy-Chain Various Packers, Obfuscators And Other Red Team Oriented Weaponry

Script that wraps around multitude of packers, protectors, obfuscators, shellcode loaders, encoders, generators to produce complex protected Red Team implants. Your perfect companion in Malware Development CI/CD pipeline, helping watermark your artifacts, collect IOCs, backdoor and more...

7.4AI score
Exploits0References29
CNVD
CNVD
added 2022/10/26 12:0 a.m.16 views

Logical flaws in the electronic document security management system of Beijing Yisaitong Technology Development Co.

Electronic Document Security Management System is an electronic document security encryption software. There is a logic flaw vulnerability in the Electronic Document Security Management System of Beijing Yisetong Technology Development Co., Ltd. that can be exploited by attackers to obtain...

6.8AI score
Exploits0
OpenVAS
OpenVAS
added 2022/10/26 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2022:3718-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.2AI score0.02473EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2022/10/26 12:0 a.m.38 views

SUSE: Security Advisory (SUSE-SU-2022:3728-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7AI score0.00375EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2022/10/25 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2022:3707-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.00658EPSS
Exploits5References6
CNVD
CNVD
added 2022/10/21 12:0 a.m.1 views

XSS Vulnerability in Faculty Integration System of Hunan Qiangzhi Technology Development Co.

Hunan Qiangzhi Technology Development Co., Ltd. is an education informatization service provider. An XSS vulnerability exists in the Teaching Services Integration System of Hunan Qiangzhi Technology Development Co. Ltd, which can be exploited by attackers to obtain sensitive information such as...

5.8AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2022/10/21 12:0 a.m.15 views

Infographic: How CNAPP Consolidate Cybersecurity Tools

A cloud-native application protection platform CNAPP consolidates your security tools, helping development, DevOps, cloud, and security teams sort each piece and see the big picture...

1.4AI score
Exploits0
OpenVAS
OpenVAS
added 2022/10/21 12:0 a.m.12 views

SUSE: Security Advisory (SUSE-SU-2022:3672-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01275EPSS
Exploits1References4
The Hacker News
The Hacker News
added 2022/10/20 4:31 p.m.117 views

OldGremlin Ransomware Targeted Over a Dozen Russian Entities in Multi-Million Scheme

A Russian-speaking ransomware group dubbed OldGremlin has been attributed to 16 malicious campaigns aimed at entities operating in the transcontinental Eurasian nation over the course of two and a half years. "The group's victims include companies in sectors such as logistics, industry, insurance...

7.8CVSS0.2AI score0.28307EPSS
Exploits16
RedHat Linux
RedHat Linux
added 2022/10/20 8:8 a.m.71 views

Moderate: Red Hat Security Advisory: java-11-openjdk security and bug fix update

An update for java-11-openjdk is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

5.5CVSS6.6AI score0.02376EPSS
Exploits1References8
Pen Test Partners Blog
Pen Test Partners Blog
added 2022/10/20 5:3 a.m.22 views

Social Engineering dos and don’ts

Another day, another success at sneaking into a building and pretending to be staff. I do so love drinking other peoples expensive office coffee. No fruit bowls though. Close, but no banana. It got me thinking, again, about what makes for good social engineering SE, and what advice would I give m...

6.8AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2022/10/20 12:0 a.m.19 views

Solve the Cloud-Native App Security Puzzle with CNAPP

Explore the value of integrating cloud-native application protection into security and development...

2.3AI score
Exploits0
Rows per page
Query Builder