CVE-2020-12750

An issue was discovered on Samsung mobile devices with Q10.0 software. Attackers can bypass Factory Reset Protection FRP via SPEN. The Samsung ID is SVE-2020-17019 May 2020...

EUVD-2020-5038

Malware in sbrugna...

EUVD-2020-5042

Malware in sbrugna...

New WinTapix.sys Malware Engages in Multi-Stage Attack Across Middle East

An unknown threat actor has been observed leveraging a malicious Windows kernel driver in attacks likely targeting the Middle East since at least May 2020. Fortinet Fortiguard Labs, which dubbed the artifact WINTAPIX WinTapix.sys, attributed the malware with low confidence to an Iranian threat...

DOJ Detected SolarWinds Breach Months Before Public Disclosure

In May 2020, the US Department of Justice noticed Russian hackers in its network but did not realize the significance of what it had found for six months...

Security update for Virtualbox (moderate)

openSUSE Security Update: Security update for Virtualbox Announcement ID: openSUSE-SU-2020:0925-1 Rating: moderate References: 1169628 Cross-References: CVE-2020-2741 CVE-2020-2742 CVE-2020-2743 CVE-2020-2748 CVE-2020-2758 CVE-2020-2894 CVE-2020-2902 CVE-2020-2905 CVE-2020-2907 CVE-2020-2908...

carethy.net Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1178504 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

meteorete.net Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1175796 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

sangokumuso.lib.net Open Redirect vulnerability

Open Bug Bounty ID: OBB-1175205 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

fsb.bank Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1173437 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

Apache Tomcat RCE Vulnerability (May 2020) - Linux

Apache Tomcat is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

moptt.cl Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1170036 Security Researcher g0bl1nsec Helped patch 3768 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting moptt.cl website and its...

CVE-2020-8488

creationtimestamp| type| source ---|---|--- 2020-05-20 14:27:36+00:00| seen| https://t.me/icscert/282 2020-05-20 14:27:39+00:00| seen| https://t.me/icscert/326...

CVE-2020-8487

creationtimestamp| type| source ---|---|--- 2020-05-20 14:27:36+00:00| seen| https://t.me/icscert/282 2020-05-20 14:27:39+00:00| seen| https://t.me/icscert/326...

Microsoft Patch Tuesday — May 2020: Vulnerability disclosures and Snort coverage

By Jon Munshaw. Microsoft released its monthly security update today, disclosing vulnerabilities across many of its products and releasing corresponding updates. This month's Patch Tuesday covers 111 vulnerabilities. Fifteen of the flaws Microsoft disclosed are considered critical. There are also...

Microsoft Office 365 (2016 Click-to-Run) Excel RCE Vulnerability (May 2020)

This host is missing an important security update according to Microsoft Office Click-to-Run updates. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

KB4556812: Windows 10 Version 1709 May 2020 Security Update

The remote Windows host is missing security update 4556812. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests. An attacker who successfully exploited this vulnerability could cause a...

Security Updates for Microsoft Excel Products (May 2020)

The Microsoft Excel Products are missing a security update. It is, therefore, affected by the following vulnerability : - A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited t...

CVE-2020-12752

An issue was discovered on Samsung mobile devices with P9.0 and Q10.0 with TEEGRIS software. Attackers can determine user credentials via a brute-force attack against the Gatekeeper trustlet. The Samsung ID is SVE-2020-16908 May 2020...

CVE-2020-12750

An issue was discovered on Samsung mobile devices with Q10.0 software. Attackers can bypass Factory Reset Protection FRP via SPEN. The Samsung ID is SVE-2020-17019 May 2020...