Lucene search
K

5472 matches found

Malwarebytes
Malwarebytes
added 2019/08/15 3:26 p.m.144 views

The Hidden Bee infection chain, part 1: the stegano pack

About a year ago, we described the Hidden Bee miner delivered by the Underminer Exploit Kit. Hidden Bee has a complex and multi-layered internal structure that is unusual among cybercrime toolkits, making it an interesting phenomenon on the threat landscape. That's why we're dedicating a series o...

10CVSS9.5AI score0.93688EPSS
Exploits5
OSV
OSV
added 2019/08/14 5:15 p.m.14 views

CVE-2019-9506

The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks aka "KNOB" that can decrypt traffic and inject arbitrary...

8.1CVSS8.7AI score
Exploits0References30
OSV
OSV
added 2019/08/13 8:15 p.m.4 views

CVE-2019-12806

UniSign 2.0.4.0 and earlier version contains a stack-based buffer overflow vulnerability which can overwrite the stack with arbitrary data, due to a buffer overflow in a library. That leads remote attacker to execute arbitrary code via crafted https packets...

8.8CVSS8AI score0.04126EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.31 views

Amazon Linux 2 : 389-ds-base (ALAS-2019-1262)

It was found that encrypted connections did not honor the 'ioblocktimeout' parameter to end blocking requests. As a result, an unauthenticated attacker could repeatedly start a sufficient number of encrypted connections to block all workers, resulting in a denial of service. CVE-2019-3883 C Tenab...

7.5CVSS6.2AI score0.08426EPSS
Exploits0References2
Schneier on Security
Schneier on Security
added 2019/08/08 4:11 p.m.55 views

Supply-Chain Attack against the Electron Development Platform

Electron is a cross-platform development system for many popular communications apps, including Skype, Slack, and WhatsApp. Security vulnerabilities in the update system allows someone to silently inject malicious code into applications. From a news article: At the BSides LV security conference o...

6.7AI score
Exploits0
pentestit
pentestit
added 2019/08/08 5:7 a.m.81 views

UPDATE: SILENTTRINITY v0.3.0

PenTestIT RSS Feed Just yesterday, I wrote about this open source post-exploitation C2 framework and a new release is already available. The post was titled - List of Open Source C2 Post-Exploitation Frameworks. We now have SILENTTRINITY v0.3.0 amongst us, which was in the works for a long time!...

1.7AI score
Exploits0
Amazon
Amazon
added 2019/08/07 12:0 a.m.81 views

Medium: 389-ds-base

Issue Overview: 1693612: 389-ds-base: DoS via hanging secured connections It was found that encrypted connections did not honor the 'ioblocktimeout' parameter to end blocking requests. As a result, an unauthenticated attacker could repeatedly start a sufficient number of encrypted connections to...

7.5CVSS6.5AI score0.08426EPSS
Exploits0
Amazon
Amazon
added 2019/08/07 12:0 a.m.30 views

Medium: 389-ds-base

Issue Overview: It was found that encrypted connections did not honor the 'ioblocktimeout' parameter to end blocking requests. As a result, an unauthenticated attacker could repeatedly start a sufficient number of encrypted connections to block all workers, resulting in a denial of service...

7.5CVSS6.5AI score0.08426EPSS
Exploits0
OSV
OSV
added 2019/08/05 8:15 p.m.0 views

DEBIAN-CVE-2019-14664

In Enigmail below 2.1, an attacker in possession of PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted parts can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended...

6.5CVSS6.9AI score0.01037EPSS
Exploits1References1
CVE
CVE
added 2019/08/05 7:25 p.m.70 views

CVE-2019-14664

The CVE affects Enigmail before 2.1. An attacker with access to PGP-encrypted emails can wrap the ciphertext into sub-parts of a crafted multipart message. The attacker may hide encrypted parts using HTML/CSS or ASCII newlines and resubmit the message; when the recipient replies, plaintext of the...

6.5CVSS6.2AI score0.01037EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2019/07/31 1:15 p.m.25 views

CVE-2019-10363

Jenkins Configuration as Code Plugin 1.24 and earlier did not reliably identify sensitive values expected to be exported in their encrypted form...

4.9CVSS5.2AI score0.00608EPSS
Exploits0References2
Prion
Prion
added 2019/07/31 1:15 p.m.18 views

Design/Logic Flaw

Jenkins Configuration as Code Plugin 1.24 and earlier did not reliably identify sensitive values expected to be exported in their encrypted form...

4CVSS5.1AI score0.00608EPSS
Exploits0References2Affected Software1
Carbon Black Blog
Carbon Black Blog
added 2019/07/31 1:9 p.m.97 views

CB TAU Threat Intelligence Notification – MegaCortex Ransomware

MegaCortex is a unique form of ransomware that was initially discovered earlier this year. It proved to be a very complex form of malware that required additional steps of operation that were only recoverable during incident responses. Since then, MegaCortex has been updated to become more generi...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2019/07/31 12:45 p.m.34 views

CVE-2019-10363

Jenkins Configuration as Code Plugin 1.24 and earlier did not reliably identify sensitive values expected to be exported in their encrypted form...

5.1AI score0.00608EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2019/07/31 12:0 a.m.6 views

PT-2019-11759 · Jenkins · Jenkins Configuration As Code Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Configuration as Code Plugin versions 1.24 and earlier Description: The issue concerns the Jenkins Configuration as Code Plugin, which did not reliably identify sensitive values expected to be exported in their encrypted form...

4.9CVSS5AI score0.00608EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2019/07/29 3:37 p.m.4 views

389-ds-base: DoS via hanging secured connections

It was found that encrypted connections did not honor the 'ioblocktimeout' parameter to end blocking requests. As a result, an unauthenticated attacker could repeatedly start a sufficient number of encrypted connections to block all workers, resulting in a denial of service...

7.5CVSS5.7AI score0.08426EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2019/07/26 9:56 a.m.3 views

Ransomware Attack Caused Power Outages in the Biggest South African City

Yesterday, some residents of Johannesburg, the largest city in South Africa, were left without electricity after the city's power company got attacked by a ransomware virus. City Power, the company responsible for powering South Africa's financial capital Johannesburg, confirmed Thursday on Twitt...

7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2019/07/22 12:0 a.m.4 views

PT-2019-6349 · 3S Smart · Codesys Control Rte V3 +12

Name of the Vulnerable Software and Affected Versions: 3S-Smart CODESYS V3 products versions containing the CmpUserMgr component CODESYS Control for BeagleBone versions containing the CmpUserMgr component CODESYS Control for emPC-A/iMX6 versions containing the CmpUserMgr component CODESYS Control...

8.8CVSS8.5AI score0.00303EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2019/07/11 12:0 a.m.7 views

PT-2019-11747 · Jenkins · Jenkins Gogs Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Gogs Plugin affected versions not specified Description: The issue concerns the storage of credentials in an unencrypted form in job config.xml files on the Jenkins master or controller. These credentials can be accessed by users with...

8.8CVSS8.4AI score0.01668EPSS
Exploits0References8
OSV
OSV
added 2019/07/10 10:44 a.m.7 views

MGASA-2019-0207 Updated microcode package fixes security vulnerability

Secure Encrypted Virtualization SEV on Advanced Micro DevicesAMD Platform Security Processor PSP; aka AMD Secure Processor or AMD-SP 0.17 build 11 and earlier has an insecure cryptographic implementation. This update provides Amd SEV Firmware to 0.17 build 22 CVE-2019-9836. It also updates the...

5.3CVSS5.2AI score0.01609EPSS
Exploits1References2
Rows per page
Query Builder