Lucene search
K

10 matches found

Cvelist
Cvelist
added 2026/05/21 12:38 a.m.58 views

CVE-2026-48172

LiteSpeed User-End cPanel Plugin before 2.4.5 allows privilege escalation possibly to root, as exploited in the wild in May 2026. Detection is best done via a command line of grep -rE "cpaneljsonapifunc=redisAble" /var/cpanel/logs /usr/local/cpanel/logs/ 2/dev/null in Bash. If you get no output,...

10CVSS0.18914EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/30 2:12 p.m.4 views

EUVD-2025-37009

A critical severity vulnerability has been identified in the ALPR Manager role of Security Center that could allow attackers to gain administrative access to the Genetec Security Center system. The Genetec engineering team discovered this issue internally. There is currently no evidence that this...

9.8CVSS6.6AI score0.0033EPSS
Exploits0References3
NCSC
NCSC
added 2025/08/11 7:36 a.m.9 views

Vulnerability fixed in WinRAR

Rarlab has fixed a vulnerability in WinRAR. The vulnerability is in the Windows version of WinRAR and involves a path traversal. This flaw allows attackers to execute arbitrary code using malicious archive files. This can lead to unauthorized access and control of affected systems. Public sources...

8.8CVSS7.7AI score0.85778EPSS
Exploits35References1
The Hacker News
The Hacker News
added 2024/10/09 6:53 a.m.58 views

Microsoft Issues Security Update Fixing 118 Flaws, Two Actively Exploited in the Wild

Microsoft has released security updates to fix a total of 118 vulnerabilities across its software portfolio, two of which have come under active exploitation in the wild. Of the 118 flaws, three are rated Critical, 113 are rated Important, and two are rated Moderate in severity. The Patch Tuesday...

9.8CVSS8.6AI score0.84345EPSS
Exploits5
The Hacker News
The Hacker News
added 2024/02/29 11:19 a.m.62 views

Lazarus Hackers Exploited Windows Kernel Flaw as Zero-Day in Recent Attacks

The notorious Lazarus Group actors exploited a recently patched privilege escalation flaw in the Windows Kernel as a zero-day to obtain kernel-level access and disable security software on compromised hosts. The vulnerability in question is CVE-2024-21338 CVSS score: 7.8, which can permit an...

7.8CVSS9.3AI score0.51865EPSS
Exploits13
The Hacker News
The Hacker News
added 2024/02/15 5:19 a.m.152 views

Critical Exchange Server Flaw (CVE-2024-21410) Under Active Exploitation

Microsoft on Wednesday acknowledged that a newly disclosed critical security flaw in Exchange Server has been actively exploited in the wild, a day after it released fixes for the vulnerability as part of its Patch Tuesday updates. Tracked as CVE-2024-21410 CVSS score: 9.8, the issue has been...

9.8CVSS9.5AI score0.95443EPSS
Exploits24
Circl
Circl
added 2023/11/08 10:6 a.m.7 views

CVE-2023-23369

creationtimestamp| type| source ---|---|--- 2023-11-08 10:06:26+00:00| exploited| https://t.me/truesecator/5059 2023-11-12 05:03:11+00:00| seen| https://t.me/sysodmins/19998...

9.8CVSS7.5AI score0.14405EPSS
Exploits0References2
Qualys Blog
Qualys Blog
added 2022/07/12 8:9 p.m.332 views

July 2022 Patch Tuesday | Microsoft Releases 84 Vulnerabilities with 4 Critical, plus 2 Microsoft Edge (Chromium-Based); Adobe Releases 4 Advisories, 27 Vulnerabilities with 18 Critical.

Microsoft Patch Tuesday Summary Microsoft has fixed 84 vulnerabilities aka flaws in the July 2022 update, including four 4 vulnerabilities classified as Critical as they allow Remote Code Execution RCE. This months Patch Tuesday cumulative Windows update includes the fix for one 1 actively...

9.3CVSS0.5AI score0.99374EPSS
Exploits64
Qualys Blog
Qualys Blog
added 2022/06/14 8:0 p.m.252 views

June 2022 Patch Tuesday | Microsoft Releases 55 Vulnerabilities with 3 Critical; Adobe Releases 6 Advisories, 46 Vulnerabilities with 40 Critical.

Microsoft Patch Tuesday Summary Microsoft has fixed 55 vulnerabilities aka flaws in the June 2022 update, including three 3 vulnerabilities classified as Critical as they allow Remote Code Execution RCE. This months Patch Tuesday cumulative Windows update includes the fix for one 1 zero-day...

10CVSS0.7AI score0.99374EPSS
Exploits64
Information Security Automation
Information Security Automation
added 2020/08/30 10:13 p.m.228 views

Microsoft Patch Tuesday August 2020: vulnerabilities with Detected Exploitation, useful for phishing and others

This time I would like to review not only the vulnerabilities that were published in the last August Microsoft Patch Tuesday, but also the CVEs that were published on other, not Patch Tuesday, days. Of course, if there are any. But lets start with the vulnerabilities that were presented on MS Pat...

9.3CVSS0.1AI score0.99512EPSS
Exploits87
Rows per page
Query Builder