Lucene search
+L

11 matches found

The Hacker News
The Hacker News
added 2026/02/09 2:42 p.m.13 views

SolarWinds Web Help Desk Exploited for RCE in Multi-Stage Attacks on Exposed Servers

Microsoft has revealed that it observed a multi‑stage intrusion that involved the threat actors exploiting internet‑exposed SolarWinds Web Help Desk WHD instances to obtain initial access and move laterally across the organization's network to other high-value assets. That said, the Microsoft...

9.8CVSS8.2AI score0.8833EPSS
Exploits7
The Hacker News
The Hacker News
added 2026/01/13 7:15 a.m.9 views

CISA Warns of Active Exploitation of Gogs Vulnerability Enabling Code Execution

The U.S. Cybersecurity and Infrastructure Security Agency CISA has warned of active exploitation of a high-severity security flaw impacting Gogs by adding it to its Known Exploited Vulnerabilities KEV catalog. The vulnerability, tracked as CVE-2025-8110 CVSS score: 8.7, relates to a case of path...

8.8CVSS8.2AI score0.7654EPSS
Exploits21
Rapid7 Blog
Rapid7 Blog
added 2024/07/26 1:5 p.m.7 views

CVE-2024-6922: Automation Anywhere Automation 360 Server-Side Request Forgery

Automation 360 Robotic Process Automation suite v21-v32 is vulnerable to unauthenticated Server-Side Request Forgery SSRF. SSRF occurs when the server can be induced to perform arbitrary requests on behalf of an attacker. An attacker with unauthenticated access to the Automation 360 Control Room...

6.9CVSS8AI score0.30172EPSS
Exploits0
VulnCheck KEV
VulnCheck KEV
added 2023/12/05 12:0 a.m.5 views

VulnCheck KEV: CVE-2018-1335

From Apache Tika versions 1.7 to 1.17, clients could send carefully crafted headers to tika-server that could be used to inject commands into the command line of the server running tika-server. This vulnerability only affects those running tika-server on a server that is open to untrusted...

9.3CVSS7.3AI score0.93972EPSS
Exploits10References1
The Hacker News
The Hacker News
added 2023/05/15 7:16 a.m.3 views

CLR SqlShell Malware Targets MS SQL Servers for Crypto Mining and Ransomware

Poorly managed Microsoft SQL MS SQL servers are the target of a new campaign that's designed to propagate a category of malware called CLR SqlShell that ultimately facilitates the deployment of cryptocurrency miners and ransomware. "Similar to web shell, which can be installed on web servers,...

8AI score
Exploits0
The Hacker News
The Hacker News
added 2023/02/02 6:47 a.m.23 views

New Threat: Stealthy HeadCrab Malware Compromised Over 1,200 Redis Servers

At least 1,200 Redis database servers worldwide have been corralled into a botnet using an "elusive and severe threat" dubbed HeadCrab since early September 2021. "This advanced threat actor utilizes a state-of-the-art, custom-made malware that is undetectable by agentless and traditional...

10CVSS8.8AI score0.9967EPSS
Exploits10
The Hacker News
The Hacker News
added 2023/01/09 2:3 p.m.3 views

Kinsing Crypto Malware Hits Kubernetes Clusters via Misconfigured PostgreSQL

The threat actors behind the Kinsing cryptojacking operation have been spotted exploiting misconfigured and exposed PostgreSQL servers to obtain initial access to Kubernetes environments. A second initial access vector technique entails the use of vulnerable images, Sunders Bruskin, security...

8.5AI score
Exploits0
hivepro
hivepro
added 2022/11/16 1:15 p.m.13 views

The DTrack Backdoor campaigns aimed European organizations

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary DTrack, a malware developed by the Lazarus group is a flexible backdoor that unloads malware in stages. It is dispersed with filenames that are routinely used in legitimate executables. The backdoor is...

4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2021/06/29 4:10 p.m.7 views

ruby: Regular expression denial of service vulnerability of WEBrick's Digest authentication

WEBrick::HTTPAuth::DigestAuth in Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 has a regular expression Denial of Service cause by looping/backtracking. A victim must expose a WEBrick server that uses DigestAuth to the Internet or a untrusted network...

7.8CVSS7.2AI score0.05128EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2020/01/20 2:24 p.m.5 views

Citrix Releases Patches for Critical ADC Vulnerability Under Active Attack

Citrix has finally started rolling out security patches for a critical vulnerability in ADC and Gateway software that attackers started exploiting in the wild earlier this month after the company announced the existence of the issue without releasing any permanent fix. I wish I could say, "better...

9.8CVSS7.9AI score0.99999EPSS
Exploits48
ThreatPost
ThreatPost
added 2016/09/01 1:8 p.m.26 views

Insecure Redis Instances at Core of Attacks Against Linux Servers

A recent run of attacks against Linux servers called Fairware has been traced to insecure internet-facing Redis installations that hackers have abused to delete web folders and, in some cases, install malicious code. Redis is an open source tool used by web application developers for the purpose ...

Exploits0References5
Rows per page
Query Builder