Lucene search
+L

89 matches found

Cvelist
Cvelist
added 2024/03/19 12:9 p.m.20 views

CVE-2024-2635 Multiple vulnerabilities on Meta4 HR from Cegid

The configuration pages available are not intended to be placed on an Internet facing web server, as they expose file paths to the client, who can be an attacker. Instead of rewriting these pages to avoid this vulnerability, they will be dismissed from future releases of Cegid Meta4 HR, as they d...

7.3CVSS7.4AI score0.00427EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/19 12:9 p.m.11 views

CVE-2024-2635 Multiple vulnerabilities on Meta4 HR from Cegid

The configuration pages available are not intended to be placed on an Internet facing web server, as they expose file paths to the client, who can be an attacker. Instead of rewriting these pages to avoid this vulnerability, they will be dismissed from future releases of Cegid Meta4 HR, as they d...

7.3CVSS6.9AI score0.00427EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/19 12:0 a.m.5 views

Meta4 HR security breach

Cegid Meta4 HR is a human resource management software HRM platform from Cegid Corporation. A security vulnerability exists in Meta4 HR version 819.001.022 and prior versions, which stems from a configuration page being placed on an Internet-facing web server, resulting in a file path being expos...

7.3CVSS6.8AI score0.00427EPSS
Exploits0References2
ICS
ICS
added 2024/01/16 12:0 p.m.59 views

Known Indicators of Compromise Associated with Androxgh0st Malware

Actions to take today to mitigate malicious cyber activity: 1. Prioritize patching known exploited vulnerabilities in internet-facing systems. 2. Review and ensure only necessary servers and services are exposed to the internet. 3. Review platforms or services that have credentials listed in .env...

9.8CVSS9.4AI score0.99999EPSS
Exploits181References72
The Hacker News
The Hacker News
added 2024/01/12 1:23 p.m.57 views

Medusa Ransomware on the Rise: From Data Leaks to Multi-Extortion

The threat actors associated with the Medusa ransomware have ramped up their activities following the debut of a dedicated data leak site on the dark web in February 2023 to publish sensitive data of victims who are unwilling to agree to their demands. "As part of their multi-extortion strategy,...

9.1CVSS7AI score0.21583EPSS
Exploits0
Malwarebytes
Malwarebytes
added 2023/12/06 2:15 p.m.71 views

Adobe Coldfusion vulnerability used in attacks on government servers

The Cybersecurity and Infrastructure Security Agency CISA put out a Cybersecurity Advisory CSA to alert government agencies about cybercriminals using a vulnerability in Adobe Coldfusion to gain initial access to servers. Adobe ColdFusion is a platform for building and deploying web and mobile...

5CVSS8.2AI score0.97339EPSS
Exploits13
Talos Blog
Talos Blog
added 2023/09/19 12:0 p.m.30 views

New ShroudedSnooper actor targets telecommunications firms in the Middle East with novel Implants

Cisco Talos recently discovered a new malware family were calling "HTTPSnoop" being deployed against telecommunications providers in the Middle East. HTTPSnoop is a simple, yet effective, backdoor that consists of novel techniques to interface with Windows HTTP kernel drivers and devices to liste...

7.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/06/26 10:0 a.m.22 views

OpenSSH trojan campaign targets Linux systems and IoT devices

Poorly configured Linux and Internet of Things IoT devices are at risk of compromise from a cryptojacking campaign, according to researchers at Microsoft. The attacks, which involve brute forcing a way into a system, are designed to profit from mining in illicit fashion for cryptocurrency. Once t...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2023/06/08 1:56 p.m.62 views

Clop Ransomware Gang Likely Aware of MOVEit Transfer Vulnerability Since 2021

The U.S. Cybersecurity and Infrastructure Security Agency CISA and Federal Bureau of Investigation FBI have published a joint advisory regarding the active exploitation of a recently disclosed critical flaw in Progress Software's MOVEit Transfer application to drop ransomware. "The Cl0p Ransomwar...

10.5AI score0.99934EPSS
Exploits15
The Hacker News
The Hacker News
added 2023/05/25 1:39 p.m.100 views

New PowerExchange Backdoor Used in Iranian Cyber Attack on UAE Government

An unnamed government entity associated with the United Arab Emirates U.A.E. was targeted by a likely Iranian threat actor to breach the victim's Microsoft Exchange Server with a "simple yet effective" backdoor dubbed PowerExchange. According to a new report from Fortinet FortiGuard Labs, the...

7.6AI score
Exploits0
CISA
CISA
added 2023/04/25 12:0 p.m.9 views

Abuse of the Service Location Protocol May Lead to DoS Attacks

The Service Location Protocol SLP, RFC 2608link is external allows an unauthenticated remote attacker to register arbitrary services. This could allow an attacker to use spoofed UDP traffic to conduct a denial-of-service DoS attack with a significant amplification factor. Researchers from Bitsigh...

7.5CVSS7.6AI score0.65873EPSS
Exploits1References7
hivepro
hivepro
added 2023/03/27 7:25 a.m.45 views

A Financially Motivated Threat Group UNC961 Targeting North American Organizations

Threat Level Actor Report For a detailed threat advisory, download the pdf file here Summary UNC961 is a financially motivated cyber threat group that targets organizations in North America, with a focus on exploiting vulnerable Internet-facing servers during periods of vulnerability and exploit...

6.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/02/10 7:30 p.m.26 views

KillNet hits healthcare sector with DDoS attacks

At the end of January, the Health Sector Cybersecurity Coordination Center warned that the KillNet group is actively targeting the US healthcare sector with distributed denial-of-service DDoS attacks. The Cybersecurity and Infrastructure Security Agency CISA says it helped dozens of hospitals...

0.8AI score
Exploits0
The Hacker News
The Hacker News
added 2022/12/29 9:43 a.m.96 views

Thousands of Citrix Servers Still Unpatched for Critical Vulnerabilities

Thousands of Citrix Application Delivery Controller ADC and Gateway endpoints remain vulnerable to two critical security flaws disclosed by the company over the last few months. The issues in question are CVE-2022-27510 and CVE-2022-27518 CVSS scores: 9.8, which were addressed by the virtualizati...

9.8CVSS0.3AI score0.06931EPSS
Exploits1
The Hacker News
The Hacker News
added 2022/12/08 7:56 a.m.89 views

Iranian Hackers Strike Diamond Industry with Data-Wiping Malware in Supply-Chain Attack

An Iranian advanced persistent threat APT actor known as Agrius has been attributed as behind a set of data wiper attacks aimed at diamond industries in South Africa, Israel, and Hong Kong. The wiper, referred to as Fantasy by ESET, is believed to have been delivered via a supply-chain attack...

0.7AI score
Exploits0
0day.today
0day.today
added 2022/11/04 12:0 a.m.475 views

Automated Tank Gauge (ATG) Remote Configuration Disclosure Exploit

In 2015, HD Moore, the creator of Metasploit, published an article disclosing over 5,800 gas station Automated Tank Gauges ATGs which were publicly accessible. Besides monitoring for leakage, these systems are also instrumental in gauging fluid levels, tank temperature, and can alert operators wh...

7.5AI score
Exploits0
NVD
NVD
added 2022/11/02 9:15 p.m.40 views

CVE-2022-3181

An Improper Input Validation vulnerability exists in Trihedral VTScada version 12.0.38 and prior. A specifically malformed HTTP request could cause the affected VTScada to crash. Both local area network LAN-only and internet facing systems are affected...

7.5CVSS0.00663EPSS
Exploits0References1
Prion
Prion
added 2022/11/02 9:15 p.m.21 views

Input validation

An Improper Input Validation vulnerability exists in Trihedral VTScada version 12.0.38 and prior. A specifically malformed HTTP request could cause the affected VTScada to crash. Both local area network LAN-only and internet facing systems are affected...

5CVSS7.3AI score0.00663EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/11/02 8:11 p.m.78 views

CVE-2022-3181

Trihedral VTScada is affected by CVE-2022-3181 (CVE assignment tied to VTScada 12.0.38 and earlier). The vulnerability stems from improper input validation, where a specially malformed HTTP request could cause the VTScada server to crash, impacting both LAN-only and internet-facing deployments. T...

7.5CVSS7.3AI score0.00663EPSS
Exploits0References1Affected Software1
The Hacker News
The Hacker News
added 2022/10/24 5:45 a.m.56 views

Why Ransomware in Education on the Rise and What That Means for 2023

The breach of LA Unified School District LAUSD highlights the prevalence of password vulnerabilities, as criminal hackers continue to use breached credentials in increasingly frequent ransomware attacks on education. The Labor Day weekend breach of LAUSD brought significant districtwide disruptio...

0.5AI score
Exploits0
Rows per page
Query Builder