38 matches found
EUVD-2023-44848
Malicious code in bioql PyPI...
EUVD-2024-21282
Malicious code in bioql PyPI...
EUVD-2023-44851
Malicious code in bioql PyPI...
EUVD-2023-44850
Malicious code in bioql PyPI...
EUVD-2023-44849
Malicious code in bioql PyPI...
CVE-2024-23843
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Genians Genian NAC V5.0, Genians Genian NAC LTS V5.0.This issue affects Genian NAC V5.0: from V5.0.0 through V5.0.60; Genian NAC LTS V5.0: from 5.0.0 LTS through 5.0.55 LTSRevision 125558, from 5.0...
CVE-2024-23843
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Genians Genian NAC V5.0, Genians Genian NAC LTS V5.0.This issue affects Genian NAC V5.0: from V5.0.0 through V5.0.60; Genian NAC LTS V5.0: from 5.0.0 LTS through 5.0.55 LTSRevision 125558, from 5.0...
CVE-2024-23843
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Genians Genian NAC V5.0, Genians Genian NAC LTS V5.0.This issue affects Genian NAC V5.0: from V5.0.0 through V5.0.60; Genian NAC LTS V5.0: from 5.0.0 LTS through 5.0.55 LTSRevision 125558, from 5.0...
CVE-2024-23843
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Genians Genian NAC V5.0, Genians Genian NAC LTS V5.0.This issue affects Genian NAC V5.0: from V5.0.0 through V5.0.60; Genian NAC LTS V5.0: from 5.0.0 LTS through 5.0.55 LTSRevision 125558, from 5.0...
CVE-2024-23843
CVE-2024-23843 describes an SQL Injection in Genians Genian NAC V5.0 and Genian NAC LTS V5.0, caused by improper neutralization of special elements in SQL commands. Affected: Genian NAC V5.0 5.0.0–5.0.60; Genian NAC LTS V5.0 5.0.0 LTS–5.0.56 LTS (Revision 125560). Impact is an SQL injection vulne...
Genians Genian NAC 安全漏洞
Genians Genian NAC is a network security and access control software from Genians Korea. It helps organizations identify IP-enabled devices, manage vulnerabilities and check device configurations to protect network access environments. A security vulnerability exists in Genians Genian NAC, which...
New Attack Technique Exploits Microsoft Management Console Files
Threat actors are exploiting a novel attack technique in the wild that leverages specially crafted management saved console MSC files to gain full code execution using Microsoft Management Console MMC and evade security defenses. Elastic Security Labs has codenamed the approach GrimResource after...
North Korean Hackers Exploit Facebook Messenger in Targeted Malware Campaign
The North Korea-linked Kimsuky hacking group has been attributed to a new social engineering attack that employs fictitious Facebook accounts to targets via Messenger and ultimately delivers malware. "The threat actor created a Facebook account with a fake identity disguised as a public official...
CVE-2023-40252
Improper Control of Generation of Code 'Code Injection' vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Replace Trusted Executable.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from...
CVE-2023-40251
Missing Encryption of Sensitive Data vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Man in the Middle Attack.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from V5.0.0 through V5.0.42...
Code injection
Improper Control of Generation of Code 'Code Injection' vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Replace Trusted Executable.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from...
Design/Logic Flaw
Missing Encryption of Sensitive Data vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Man in the Middle Attack.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from V5.0.0 through V5.0.42...
CVE-2023-40251
Missing Encryption of Sensitive Data vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Man in the Middle Attack.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from V5.0.0 through V5.0.42...
CVE-2023-40251
CVE-2023-40251 affects Genian NAC and related Genian products, with a root cause described as Missing Encryption of Sensitive Data. Affected: Genian NAC V4.0 (V4.0.0–V4.0.155), Genian NAC V5.0 (V5.0.0–V5.0.42, Revision 117460), Genian NAC Suite V5.0 (V5.0.0–V5.0.54), and Genian ZTNA (V6.0.0–V6.0....
CVE-2023-40251
Missing Encryption of Sensitive Data vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Man in the Middle Attack.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from V5.0.0 through V5.0.42...