Lucene search
K

67 matches found

Malwarebytes
Malwarebytes
added 2026/04/13 7:2 a.m.7 views

A week in security (April 6 – April 12)

Last week on Malwarebytes Labs: Fake Claude site installs malware that gives attackers access to your computer ClickFix finds a new way to infect Macs Scammers pose as Amazon support to steal your account NSFW app leak exposes 70,000 prompts linked to individual users 30,000 private Facebook imag...

5.7AI score
Exploits0
HackRead
HackRead
added 2026/04/08 11:33 a.m.8 views

Russian Forest Blizzard Hackers Hijack Home Routers for Global Spying

Microsoft Threat Intelligence reveals how Russian hacking group Forest Blizzard uses home routers for DNS hijacking and spying...

5.9AI score
Exploits0
HackRead
HackRead
added 2026/02/05 12:43 p.m.6 views

Sanctioned Bulletproof Host Linked to Hijacking of Old Home Routers

Compromised home routers in 30+ countries had DNS traffic redirected, sending users to malicious sites while normal browsing appeared unaffected...

5.3AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/12/20 12:13 a.m.10 views

CVE-2025-50681

igmpproxy 0.4 before commit 2b30c36 allows remote attackers to cause a denial of service application crash via a crafted IGMPv3 membership report packet with a malicious source address. Due to insufficient validation in the recvigmp function in src/igmpproxy.c, an invalid group record type can...

7.5CVSS6.7AI score0.0044EPSS
Exploits1References1
NVD
NVD
added 2025/12/19 3:15 p.m.11 views

CVE-2025-50681

igmpproxy 0.4 before commit 2b30c36 allows remote attackers to cause a denial of service application crash via a crafted IGMPv3 membership report packet with a malicious source address. Due to insufficient validation in the recvigmp function in src/igmpproxy.c, an invalid group record type can...

7.5CVSS0.0044EPSS
Exploits1References3
OSV
OSV
added 2025/12/19 3:15 p.m.3 views

UBUNTU-CVE-2025-50681

igmpproxy 0.4 before commit 2b30c36 allows remote attackers to cause a denial of service application crash via a crafted IGMPv3 membership report packet with a malicious source address. Due to insufficient validation in the recvigmp function in src/igmpproxy.c, an invalid group record type can...

7.5CVSS5.8AI score0.0044EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/12/19 12:0 a.m.7 views

PT-2025-52453

igmpproxy 0.4 before commit 2b30c36 allows remote attackers to cause a denial of service application crash via a crafted IGMPv3 membership report packet with a malicious source address. Due to insufficient validation in the recv igmp function in src/igmpproxy.c, an invalid group record type can...

7.5CVSS6.7AI score0.0044EPSS
Exploits1References4
CVE
CVE
added 2025/12/19 12:0 a.m.18 views

CVE-2025-50681

Summary: CVE-2025-50681 affects igmpproxy 0.4 before commit 2b30c36, allowing remote attackers to cause a denial of service (application crash) by sending crafted IGMPv3 membership reports with a malicious source address. The root cause is insufficient validation in recv_igmp() in src/igmpproxy.c...

7.5CVSS6.3AI score0.0044EPSS
Exploits1References3Affected Software1
HackRead
HackRead
added 2025/01/21 1:22 p.m.8 views

Tunneling Flaws Put VPNs, CDNs and Routers at Risk Globally

Millions of devices, including home routers, VPN servers, and CDNs are vulnerable to exploitation due to critical flaws…...

7.4AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/01/15 12:0 a.m.6 views

PT-2025-1235 · Gre +1 · Gre +1

Name of the Vulnerable Software and Affected Versions: GRE and GRE6 protocols RFC2784 affected versions not specified Description: The GRE and GRE6 protocols do not validate or verify the source of a network packet, allowing an attacker to spoof and route arbitrary traffic via an exposed network...

6.6CVSS7AI score0.01552EPSS
Exploits0References14
CNVD
CNVD
added 2024/12/30 12:0 a.m.3 views

Huawei connection hijacking vulnerability in some home routers

The Huawei WS8700, among others, is a router from the Chinese company Huawei Huawei. Some of Huawei's home routers are vulnerable to connection hijacking, which can be exploited by attackers to cause a DoS or information disclosure...

8.1CVSS6.6AI score0.0015EPSS
Exploits0References1
OSV
OSV
added 2024/12/28 8:15 a.m.3 views

CVE-2023-52718

A connection hijacking vulnerability exists in some Huawei home routers. Successful exploitation of this vulnerability may cause DoS or information leakage.Vulnerability ID:HWPSIRT-2023-34408 This vulnerability has been assigned a CVEID:CVE-2023-52718...

8.1CVSS5.7AI score0.0015EPSS
Exploits0References1
NVD
NVD
added 2024/12/28 8:15 a.m.26 views

CVE-2023-52718

A connection hijacking vulnerability exists in some Huawei home routers. Successful exploitation of this vulnerability may cause DoS or information leakage.Vulnerability ID:HWPSIRT-2023-34408 This vulnerability has been assigned a CVEID:CVE-2023-52718...

8.1CVSS0.0015EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/28 7:16 a.m.10 views

CVE-2023-52718

A connection hijacking vulnerability exists in some Huawei home routers. Successful exploitation of this vulnerability may cause DoS or information leakage.Vulnerability ID:HWPSIRT-2023-34408 This vulnerability has been assigned a CVEID:CVE-2023-52718...

6.4CVSS6.6AI score0.0015EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/28 7:16 a.m.29 views

CVE-2023-52718

A connection hijacking vulnerability exists in some Huawei home routers. Successful exploitation of this vulnerability may cause DoS or information leakage.Vulnerability ID:HWPSIRT-2023-34408 This vulnerability has been assigned a CVEID:CVE-2023-52718...

6.4CVSS0.0015EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/28 7:0 a.m.31 views

CVE-2023-7266

Some Huawei home routers have a connection hijacking vulnerability. Successful exploitation of this vulnerability may cause DoS or information leakage.Vulnerability ID:HWPSIRT-2023-76605 This vulnerability has been assigned a CVEID:CVE-2023-7266...

7.5CVSS7.5AI score0.00269EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/28 12:0 a.m.4 views

Huawei多款产品 安全漏洞

The Huawei WS8700, among others, is a router from the Chinese company Huawei Huawei. Some of Huawei's home routers are vulnerable to connection hijacking, which can be exploited by attackers to cause a DoS or information disclosure...

8.1CVSS6.5AI score0.0015EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2024/09/01 12:0 a.m.190 views

Linksys E1500 Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Linksys E1500 Directory Traversal Vulnerability', 'Description' = %q This module exploits a directory traversal vulnerability which is present in...

7.4AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/06/19 12:0 a.m.4 views

PT-2024-4675 · Huawei · Huawei Ws7206-10 +3

Name of the Vulnerable Software and Affected Versions: Huawei home routers affected versions not specified Huawei TC7001-10, WS7200-10, and WS7206-10 affected versions not specified Description: The issue is related to a connection hijacking vulnerability in some Huawei home routers. This...

8.1CVSS7.1AI score0.00269EPSS
Exploits0References8
Huawei
Huawei
added 2024/06/19 12:0 a.m.84 views

Security Advisory - Connection Hijacking Vulnerability in Some Huawei Home Routers

Some Huawei home routers have a connection hijacking vulnerability. Successful exploitation of this vulnerability may cause DoS or information leakage.Vulnerability ID:HWPSIRT-2023-76605 This vulnerability has been assigned a CVEID:CVE-2023-7266...

8.1CVSS6.5AI score0.00269EPSS
Exploits0Affected Software3
Rows per page
Query Builder