PT-2026-48154

The utility functions used by Malwarebytes EDR 1.0.11 on Linux for calculating a cryptographic hash of data bytes truncate the hashed data if it exceeds 4GB. This leads to an integer wrap-around if the data is larger than the maximum unsigned integer value 32-bit. Attackers could create a collidi...

Converge Connect: Unlock Lower Premiums with Proven Qualys Security

Key Takeaways Qualys, in collaboration with Converge, has launched an offering that ties your security posture to your cyber insurance costs. The Qualys Converge Connect Insurance Report CCIR supplements manual insurance questionnaires with objective, platform-generated, real-time security data...

How Hive Pro Brings Comprehensive Security to  CrowdStrike and SentinelOne

& How HivePro Vulnerability Exposure Management VEM extends and amplifies the value of your existing endpoint security/EDR investments - turning detection strength into enterprise-wide vulnerability and exposure intelligence. The Challenge Your EDR is world-class. Your exposure visibility isn't...

IBM Security QRadar EDR 加密问题漏洞

IBM Security QRadar EDR is a terminal detection and response software developed by the American multinational company IBM. There are vulnerabilities related to encryption in versions 3.12 to 3.12.23 of IBM Security QRadar EDR. These vulnerabilities stem from the use of encryption algorithms that...

EUVD-2020-4895

Malware in sbrugna...

EUVD-2019-9165

Malware in sbrugna...

Crypto24 Ransomware Group Blends Legitimate Tools with Custom Malware for Stealth Attacks

Crypto24 is a ransomware group that stealthily blends legitimate tools with custom malware, using advanced evasion techniques to bypass security and EDR technologies...

CVE-2025-34041

An OS command injection vulnerability exists in the Chinese versions of Sangfor Endpoint Detection and Response EDR management platform versions 3.2.16, 3.2.17, and 3.2.19. The vulnerability allows unauthenticated attackers to construct and send malicious HTTP requests to the EDR Manager interfac...

PT-2025-26672

Name of the Vulnerable Software and Affected Versions: Sangfor Endpoint Detection and Response EDR management platform versions 3.2.16, 3.2.17, and 3.2.19 Description: The issue is an OS command injection vulnerability that allows unauthenticated attackers to send malicious HTTP requests to the E...

IBM Security ReaQta EDR 信任管理问题漏洞

IBM Security ReaQta EDR is an Endpoint Detection and Response EDR solution from International Business Machines IBM that detects, investigates and responds to endpoint threats in real time through behavioral analytics and AI technologies, providing automated threat hunting and incident response...

PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit

BYOSI - Bring-Your-Own-Script-Interpreter - Leveraging the abuse of trusted applications, one is able to deliver a compatible script interpreter for a Windows, Mac, or Linux system as well as malicious source code in the form of the specific script interpreter of choice. Once both the malicious...

[Whitepaper] XDR vs. NDR/NTA – What do Organizations Truly Need to Stay Safe?

Security teams whose organizations are outside the Fortune 500 are faced with a dilemma. Most teams will have to choose between deploying either a network traffic analysis NTA or network detection and response NDR tool or an endpoint detection and response EDR tool to supplement their existing...

Information disclosure

Symantec Endpoint Detection & Response, prior to 4.5, may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to data...

CVE-2020-12593

CVE-2020-12593 affects Symantec Endpoint Detection & Response (SEDR) on-premises prior to version 4.5, with an information disclosure vulnerability (unauthorized data access). The issue is documented in multiple feeds; CVSS suggests MEDIUM to HIGH impact (NVD: CVSS v3.1 base 7.5). A remediation i...

DeepService Endpoint Monitoring Response Platform (EDR) Remote Command Execution Vulnerability

DeepTrust terminal detection and response platform EDR can help users quickly dispose of terminal security problems through cloud-network-terminal linkage and collaboration, threat intelligence sharing, and multi-level response mechanism, and build a next-generation terminal security system that ...

Xiamen Service Cloud Information Technology Co., Ltd. cloud eye SQL injection vulnerabilities exist

CloudEye is a new generation cloud host intrusion monitoring and security management system built using a combination of advanced Endpoint Detection and Response EDR technology model and the conceptual idea of adaptive security architecture to solve security and management problems encountered in...