Lucene search
K

8752 matches found

Malwarebytes
Malwarebytes
added 2022/05/24 8:39 a.m.24 views

Unknown APT group has targeted Russia repeatedly since Ukraine invasion

An unknown Advanced Persistent Threat APT group has targeted Russian government entities with at least four separate spear phishing campaigns since late February, 2022. The campaigns, discovered by the Malwarebytes Threat Intelligence team, are designed to implant a Remote Access Trojan RAT that...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2022/05/24 12:0 a.m.9 views

SUSE: Security Advisory (SUSE-SU-2022:1803-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.01877EPSS
Exploits1References2
The Hacker News
The Hacker News
added 2022/05/23 3:2 p.m.54 views

Yes, Containers Are Terrific, But Watch the Security Risks

Containers revolutionized the development process, acting as a cornerstone for DevOps initiatives, but containers bring complex security risks that are not always obvious. Organizations that don't mitigate these risks are vulnerable to attack. In this article, we outline how containers contribute...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2022/05/23 12:0 a.m.10 views

SUSE: Security Advisory (SUSE-SU-2022:1771-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.4AI score0.69899EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2022/05/23 12:0 a.m.6 views

SUSE: Security Advisory (SUSE-SU-2022:1764-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2022/05/20 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2022:1758-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS7.1AI score0.02622EPSS
Exploits1References4
Imperva Blog
Imperva Blog
added 2022/05/19 2:56 p.m.22 views

3 Recommendations to Ensure Your API Security Solution can Drive Data Visibility and Quality

Today at least 90% of developers are using APIs in cloud-native web application development. According to new data collected by Forrester Research and presented in their report, Improve API Performance with a Sound API Security Strategy, 62 percent of IT decision makers believe the value they gai...

Exploits0
The Hacker News
The Hacker News
added 2022/05/18 9:7 a.m.24 views

U.S. Warns Against North Korean Hackers Posing as IT Freelancers

Highly skilled software and mobile app developers from the Democratic People's Republic of Korea DPRK are posing as "non-DPRK nationals" in hopes of landing freelance employment in an attempt to enable the regime's malicious cyber intrusions. That's according to a joint advisory from the U.S...

0.3AI score
Exploits0
OpenVAS
OpenVAS
added 2022/05/18 12:0 a.m.8 views

SUSE: Security Advisory (SUSE-SU-2022:1714-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
RedHat Linux
RedHat Linux
added 2022/05/17 11:42 p.m.90 views

Important: Red Hat Security Advisory: java-17-openjdk security update

An update for java-17-openjdk is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

7.5CVSS6.6AI score0.46677EPSS
Exploits6References7
Github Security Blog
Github Security Blog
added 2022/05/17 2:46 a.m.17 views

Yii Framework Reflected XSS

Reflected Cross-site scripting XSS vulnerability in Yii Framework before 2.0.11, when development mode is used, allows remote attackers to inject arbitrary web script or HTML via crafted request data that is mishandled on the debug-mode exception screen...

6.1CVSS6AI score0.01042EPSS
Exploits0References6Affected Software1
OpenVAS
OpenVAS
added 2022/05/17 12:0 a.m.14 views

SUSE: Security Advisory (SUSE-SU-2022:1670-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.4AI score0.69899EPSS
Exploits1References4
Trellix
Trellix
added 2022/05/17 12:0 a.m.7 views

Get to Know Steve Povolny

Meet Steve Povolny Head of Advanced Threat Research for Trellix Threat Labs By Michael Alicea · May 17, 2022 At Trellix, we celebrate and champion our people. This week, I sat down with Steve Povolny, Head of Advanced Threat Research for Trellix Threat Labs. As he is one of the leading...

6.8AI score
Exploits0
OpenVAS
OpenVAS
added 2022/05/17 12:0 a.m.15 views

SUSE: Security Advisory (SUSE-SU-2022:1695-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.01382EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2022/05/16 9:55 a.m.36 views

Researchers Warn of "Eternity Project" Malware Service Being Sold via Telegram

An unidentified threat actor has been linked to an actively in-development malware toolkit called the "Eternity Project" that lets professional and amateur cybercriminals buy stealers, clippers, worms, miners, ransomware, and a distributed denial-of-service DDoS bot. What makes this...

7AI score
Exploits0
Citrix
Citrix
added 2022/05/16 12:0 a.m.9 views

Microsoft Security Update Validation May 2022

Microsoft’s May 2022 security updates have passed Citrix testing the updates are listed below. The testing is not all-inclusive; all tests are executed against English-only environments and issues may still be found upon implementation. Follow best practices for testing and installing software...

7AI score
Exploits0
OpenVAS
OpenVAS
added 2022/05/14 12:0 a.m.24 views

CentOS: Security Advisory for java (CESA-2022:1487)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.4AI score0.03825EPSS
Exploits0References2
OSV
OSV
added 2022/05/13 1:36 a.m.6 views

GHSA-WF9G-RH76-6JVR Incorrect Permission Assignment for Critical Resource in Jenkins

In Jenkins before versions 2.44, 2.32.2 low privilege users were able to override JDK download credentials SECURITY-392, resulting in future builds possibly failing to download a JDK...

5.4CVSS7.2AI score0.01577EPSS
Exploits0References5
OSV
OSV
added 2022/05/12 8:15 p.m.3 views

CVE-2020-22985

Cross-Site Scripting XSS vulnerability in MicroStrategy Web SDK 10.11 and earlier, allows remote unauthenticated attackers to execute arbitrary code via the key parameter to the getESRIExtraConfig task...

6.1CVSS6.1AI score0.01479EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2022/05/10 8:34 p.m.3 views

CVE-2022-29117 .NET and Visual Studio Denial of Service Vulnerability

...

7.5CVSS7.1AI score0.04608EPSS
Exploits0References1
Rows per page
Query Builder