30 matches found
EUVD-2019-13263
Malware in sbrugna...
EUVD-2019-13266
Malware in sbrugna...
EUVD-2019-13264
Malware in sbrugna...
EUVD-2019-13267
Malware in sbrugna...
EUVD-2019-13265
Malware in sbrugna...
EUVD-2012-4512
Malware in sbrugna...
EUVD-2012-4515
Malware in sbrugna...
EUVD-2015-7919
Malware in sbrugna...
EUVD-2012-4517
Malware in sbrugna...
EUVD-2022-15900
Malicious code in bioql PyPI...
CVE-2012-4588
McAfee Enterprise Mobility Manager EMM Agent before 4.8 and Server before 10.1 record all invalid usernames presented in failed login attempts, and place them on a list of accounts that an administrator may wish to unlock, which allows remote attackers to cause a denial of service excessive list...
CVE-2019-3628
Privilege escalation in McAfee Enterprise Security Manager ESM 11.x prior to 11.2.0 allows authenticated user to gain access to a core system component via incorrect access control...
CVE-2019-3631
Command Injection vulnerability in McAfee Enterprise Security Manager ESM prior to 11.2.0 and prior to 10.4.0 allows authenticated user to execute arbitrary code via specially crafted parameters...
CVE-2019-3632
Directory Traversal vulnerability in McAfee Enterprise Security Manager ESM prior to 11.2.0 and prior to 10.4.0 allows authenticated user to gain elevated privileges via specially crafted input...
CVE-2019-3630
Command Injection vulnerability in McAfee Enterprise Security Manager ESM prior to 11.2.0 and prior to 10.4.0 allows authenticated user to execute arbitrary code via specially crafted parameters...
CVE-2019-3629
Application protection bypass vulnerability in McAfee Enterprise Security Manager ESM prior to 11.2.0 and prior to 10.4.0 allows unauthenticated user to impersonate system users via specially crafted parameters...
Get To Know John Fokker
Meet John Fokker Head of Cyber Investigations for Trellix Threat Labs By Trellix · April 28, 2022 This blog was written by Michael Alicea At Trellix, we celebrate and champion our people. This week, I sat down with John Fokker, Head of Cyber Investigations for Trellix Threat Labs and one of the...
CVE-2022-0858 Cross-site scripting vulnerability in ePO
A cross-site scripting XSS vulnerability in McAfee Enterprise ePolicy Orchestrator ePO prior to 5.10 Update 13 allows a remote attacker to potentially obtain access to an ePO administrator's session by convincing the attacker to click on a carefully crafted link. This would lead to limited abilit...
CVE-2022-0857 ePO Reflected Cross-site scripting vulnerability
A reflected cross-site scripting XSS vulnerability in McAfee Enterprise ePolicy Orchestrator ePO prior to 5.10 Update 13 allows a remote attacker to potentially obtain access to an ePO administrator's session by convincing the attacker to click on a carefully crafted link. This would lead to...
Prime Minister’s Office Compromised: Details of Recent Espionage Campaign
Prime Minister’s Office Compromised: Details of Recent Espionage Campaign By Marc Elias · January 25, 2022 A special thanks to Christiaan Beek, Alexandre Mundo, Leandro Velasco and Max Kersten for malware analysis and support during this investigation. Executive Summary Our Advanced Threat Resear...