EUVD-2010-3381

Malware in sbrugna...

How Ransomware Operators Exploit Exposure, Not Just Vulnerabilities

Running short on time but still want to stay in the know? Well, we’ve got you covered! We’ve condensed all the key takeaways into a handy audio summary. Our AI-driven podcasts are fit for on the go. Click right here to hear it all on CAASM & CDMB Inefficiencies! In cybersecurity, we often treat...

CVE-2018-19365

creationtimestamp| type| source ---|---|--- 2024-12-23 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2024-12-23 2025-03-16 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-03-16 2025-03-28 00:00:00+00:00| seen| The Shadowserver...

CVE-2023-33246

creationtimestamp| type| source ---|---|--- 2023-05-30 15:17:54+00:00| published-proof-of-concept| https://t.me/dilagrafie/3071 2023-05-30 15:54:33+00:00| published-proof-of-concept| https://t.me/proxybar/1551 2023-06-01 02:21:39+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/4466...

CVE-2020-25180 Rockwell Automation ISaGRAF5 Runtime Use of Hard-coded Cryptographic Key

Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x includes the functionality of setting a password that is required to execute privileged commands. The password value passed to ISaGRAF Runtime is the result of encryption performed with a fixed key value using the tiny encryption algorithm...

New Campaign Sees LokiBot Delivered Via Multiple Methods

We recently detected an aggressive malware distribution campaign delivering LokiBot via multiple techniques, including the exploitation of older vulnerabilities...

UBUNTU-CVE-2020-26139

An issue was discovered in the kernel in NetBSD 7.1. An Access Point AP forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. This might be abused in projected Wi-Fi networks to launch denial-of-service attacks against connected clients an...

CVE-2019-16920

creationtimestamp| type| source ---|---|--- 2019-10-07 15:57:36+00:00| seen| https://t.me/SecLabNews/5928 2019-10-07 20:22:22+00:00| seen| https://t.me/cibsecurity/7252 2019-10-08 06:25:01+00:00| seen| https://t.me/informationsecuritychannel/31637 2019-10-11 09:08:27+00:00|...

Mozilla Firefox ESR Multiple Vulnerabilities-01 (Windows)

The host is installed with Mozilla firefox ESR and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillafirefoxesrmultvuln01oct12win.nasl 6115 2017-05-12 09:03:25Z teissa $ Mozilla Firefox ESR Multiple Vulnerabilities-01 Windows Authors: Arun Kallavi Copyright: Copyright...

my-Gesuad 0.9.14 Bypass / SQL Injection / XSS

|| || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ WEB: http://www.collector.ch/drupal5/index.php | |--DOWNLOAD: http://www.collector.ch/drupal5/?q=node/11 | |--DEMO: http://w...

OpenSSL accepts unsolicited client certificate messages

Overview OpenSSL accepts unsolicited client certificate messages. This could allow an attacker to exploit underlying vulnerabilities in client certificate handling. Description OpenSSL implements the Secure Sockets Layer SSL and Transport Layer Security TLS protocols and includes a general-purpos...