Lucene search
K

210 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:56 a.m.1 views

SUSE CVE-2010-3873

The X.25 implementation in the Linux kernel before 2.6.36.2 does not properly parse facilities, which allows remote attackers to cause a denial of service heap memory corruption and panic or possibly have unspecified other impact via malformed 1 X25FACCALLINGAE or 2 X25FACCALLEDAE data, related t...

5CVSS7.5AI score0.03739EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2023/02/15 5:56 a.m.2 views

SUSE CVE-2010-4164

Multiple integer underflows in the x25parsefacilities function in net/x25/x25facilities.c in the Linux kernel before 2.6.36.2 allow remote attackers to cause a denial of service system crash via malformed X.25 1 X25FACCLASSA, 2 X25FACCLASSB, 3 X25FACCLASSC, or 4 X25FACCLASSD facility data, a...

7.8CVSS6.8AI score0.04308EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2023/02/15 5:2 a.m.3 views

SUSE CVE-2016-4580

The x25negotiatefacilities function in net/x25/x25facilities.c in the Linux kernel before 4.5.5 does not properly initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory via an X.25 Call Request...

7.5CVSS7.6AI score0.04178EPSS
Exploits0References12
Malwarebytes
Malwarebytes
added 2023/02/15 1:0 a.m.27 views

TrickBot gang members sanctioned after pandemic ransomware attacks

In a collaborative partnership, officials in the United States and the United Kingdom unmasked and imposed financial sanctions against seven members of the notorious Russian gang TrickBot alias "TrickLoader", a mainstream banking Trojan turned malware-as-a-service MaaS platform for other criminal...

1.2AI score
Exploits0
NVD
NVD
added 2023/02/10 7:15 p.m.23 views

CVE-2022-45766

Hardcoded credentials in Global Facilities Management Software GFMS Version 3 software distributed by Key Systems Management permits remote attackers to impact availability, confidentiality, accessibility and dependability of electronic key boxes...

9.1CVSS9.3AI score0.00822EPSS
Exploits0References1
Prion
Prion
added 2023/02/10 7:15 p.m.16 views

Hardcoded credentials

Hardcoded credentials in Global Facilities Management Software GFMS Version 3 software distributed by Key Systems Management permits remote attackers to impact availability, confidentiality, accessibility and dependability of electronic key boxes...

6.4CVSS9.1AI score0.00822EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/02/10 12:0 a.m.28 views

CVE-2022-45766

Hardcoded credentials in Global Facilities Management Software GFMS Version 3 software distributed by Key Systems Management permits remote attackers to impact availability, confidentiality, accessibility and dependability of electronic key boxes...

9.4AI score0.00822EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/02/10 12:0 a.m.2 views

Key-Systems Global Facilities Management Software 信任管理问题漏洞

Key-Systems Global Facilities Management Software Key-Systems GFMS is a global facilities management software from Key-Systems. A security vulnerability exists in Key Systems Management Global Facilities Management Software GFMS version 3 that stems from the use of hard-coded credentials, resulti...

9.1CVSS8.2AI score0.00822EPSS
Exploits0References2
CVE
CVE
added 2023/02/10 12:0 a.m.54 views

CVE-2022-45766

The CVE-2022-45766 entry concerns Key Systems Management’s GFMS software, version 3. It states that hardcoded credentials exist in GFMS v3, which could allow remote attackers to impact the availability, confidentiality, accessibility and dependability of electronic key boxes. The provided referen...

9.1CVSS9.1AI score0.00822EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/10 12:0 a.m.14 views

CVE-2022-45766

Hardcoded credentials in Global Facilities Management Software GFMS Version 3 software distributed by Key Systems Management permits remote attackers to impact availability, confidentiality, accessibility and dependability of electronic key boxes...

7.3AI score0.00822EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2023/01/26 4:20 p.m.26 views

Hive Ransomware Infrastructure Seized in Joint International Law Enforcement Effort

In what's a case of hacking the hackers, the darknet infrastructure associated with the Hive ransomware-as-a-service RaaS operation has been seized as part of a coordinated law enforcement effort involving 13 countries. "Law enforcement identified the decryption keys and shared them with many of...

0.7AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2022/11/03 4:0 p.m.28 views

Stopping C2 communications in human-operated ransomware through network protection

Command-and-control C2 servers are an essential part of ransomware, commodity, and nation-state attacks. They are used to control infected devices and perform malicious activities like downloading and launching payloads, controlling botnets, or commanding post-exploitation penetration frameworks ...

0.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/10/13 9:30 p.m.15 views

Introducing Malwarebytes Managed Detection and Response (MDR)

With our Managed Detection and Response MDR service now generally available for businesses and MSPs, you may be wondering: What is MDR, how does Malwarebytes MDR work, and do I need it? Underpinned by our award-winning EDR technology, Malwarebytes MDR offers powerful and affordable threat...

0.2AI score
Exploits0
CNVD
CNVD
added 2022/09/24 12:0 a.m.15 views

IBM Maximo Asset Management Authentication Error Vulnerability

IBM Maximo Asset Management is a comprehensive asset lifecycle and maintenance management solution from International Business Machines IBM. The solution enables the management of all types of assets, such as facilities, transportation, etc., on a single platform with a single point of control ov...

8.1CVSS2.3AI score0.00479EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2022/08/14 12:15 p.m.10 views

accreditedfacilitiesconsultingandmanagement.com Cross Site Scripting vulnerability OBB-2845828

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/08/12 5:7 p.m.17 views

westernfacilities.com.au Cross Site Scripting vulnerability OBB-2839925

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/07/14 4:5 p.m.41 views

Predatory Sparrow massively disrupts steel factories while keeping workers safe

Stuxnets attack on Irans uranium enrichment facilities manifested fears of cyberattacks leaking into the real world. What once was theory is now upon us. Two weeks ago, multiple Iranian steel facilities experienced a cyberattack that might have been pulled off by what many cybersecurity experts i...

1.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/07/04 11:20 a.m.15 views

“Free UK visa” offers on WhatsApp are fakes

A student friend recently shared a WhatsApp message, unsure if it was scam. The message claims to offer an easy to route to free visas, housing, accommodation, and medicine access. Heres how we know it was a scam, and where it lead. It read as follows: UK GOVERNMENT JOB RECRUITMENT 2022: This is...

0.1AI score
Exploits0
CNVD
CNVD
added 2022/05/16 12:0 a.m.23 views

Online Sports Complex Booking System SQL注入漏洞(CNVD-2022-58669)

Online Sports Complex Booking System is an online stadium booking system by Carlo Montero, a personal developer. page=facilities/managefacility&id= lacks validation of external input SQL statements, which can be exploited to execute illegal SQL commands to steal sensitive database data...

9.8CVSS5.2AI score0.01091EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/05/12 3:15 p.m.3 views

CVE-2022-29994

Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/admin/?page=facilities/managefacility&id=...

9.8CVSS7.3AI score0.01091EPSS
Exploits1References2
Rows per page
Query Builder