Build Numbers and Versions of Veeam Plug-In for HPE Morpheus VM Essentials

This KB article lists all versions of the Veeam Plug-in for HPE Morpheus VM Essentials and their respective worker build numbers. Version | Plug-In / Worker Build | Release Date ---|---|--- Veeam Plug-in for HPE Morpheus VM Essentials 1 Releases Veeam Plug-in for HPE Morpheus VM Essentials 1.1...

CVE-2022-31261

An XXE issue was discovered in Morpheus through 5.2.16 and 5.4.x through 5.4.4. A successful attack requires a SAML identity provider to be configured. In order to exploit the vulnerability, the attacker must know the unique SAML callback ID of the configured identity source. A remote attacker ca...

MORPHEUS: A Multidimensional Framework for Modeling, Measuring, and Mitigating Human Factors in Cybersecurity

Current cybersecurity research increasingly acknowledges the human factor, yet remains fragmented, often treating user vulnerabilities as isolated and static traits. This paper introduces MORPHEUS, a holistic framework that operationalizes human-centric security as a dynamic and interconnected...

EUVD-2002-0312

Malware in sbrugna...

EUVD-2022-52837

Malicious code in bioql PyPI...

Grassroots Consensus

Grassroots platforms aim to offer an egalitarian alternative to global platforms -- centralized/autocratic and decentralized/plutocratic alike. Within the grassroots architecture, consensus is needed to realize platforms that employ digital social contracts, which are like smart contracts except...

Experts Find Shared Codebase Linking Morpheus and HellCat Ransomware Payloads

An analysis of HellCat and Morpheus ransomware operations has revealed that affiliates associated with the respective cybercrime entities are using identical code for their ransomware payloads. The findings come from SentinelOne, which analyzed artifacts uploaded to the VirusTotal malware scannin...

Operation Morpheus Disrupts 593 Cobalt Strike Servers Used for Ransomware

Global Operation Morpheus dismantles Cobalt Strike network: Law enforcement takes down criminal infrastructure used for ransomware and data…...

CVE-2022-31261

An XXE issue was discovered in Morpheus through 5.2.16 and 5.4.x through 5.4.4. A successful attack requires a SAML identity provider to be configured. In order to exploit the vulnerability, the attacker must know the unique SAML callback ID of the configured identity source. A remote attacker ca...

CVE-2022-31261

An XXE issue was discovered in Morpheus through 5.2.16 and 5.4.x through 5.4.4. A successful attack requires a SAML identity provider to be configured. In order to exploit the vulnerability, the attacker must know the unique SAML callback ID of the configured identity source. A remote attacker ca...

CVE-2022-31261

An XXE issue was discovered in Morpheus through 5.2.16 and 5.4.x through 5.4.4. A successful attack requires a SAML identity provider to be configured. In order to exploit the vulnerability, the attacker must know the unique SAML callback ID of the configured identity source. A remote attacker ca...

Design/Logic Flaw

An XXE issue was discovered in Morpheus through 5.2.16 and 5.4.x through 5.4.4. A successful attack requires a SAML identity provider to be configured. In order to exploit the vulnerability, the attacker must know the unique SAML callback ID of the configured identity source. A remote attacker ca...

CVE-2022-31261

CVE-2022-31261 concerns Morpheus Data (versions 5.2.16 and 5.4.x prior to 5.4.4) with an XML External Entity (XXE) vulnerability. According to connected Red Hat and NVD records, an attacker must configure a SAML identity provider and know the unique SAML callback ID. A remote attacker can send a ...

CVE-2022-31261

An XXE issue was discovered in Morpheus through 5.2.16 and 5.4.x through 5.4.4. A successful attack requires a SAML identity provider to be configured. In order to exploit the vulnerability, the attacker must know the unique SAML callback ID of the configured identity source. A remote attacker ca...

Morpheus Data Morpheus 代码问题漏洞

Morpheus Data Morpheus is a powerful self-service engine from Morpheus Data USA, Inc. that delivers enterprise agility, control and efficiency. A security vulnerability exists in Morpheus Data Morpheus version 5.2.16 and version 5.4.x prior to version 5.4.4, which stems from the discovery of an X...

Automated ettercap TCP/IP Hijacking Tool: Morpheus

morpheus framework automates tcp/udp packet manipulation tasks by using etter filters to manipulate target requests/responses under MitM attacks replacing the tcp/udp packet contents by our contents befor forward the packet back to the target host… workflow: 1. attacker - arp poison local lan mit...

Morpheus - Automated Ettercap TCP/IP Hijacking Tool

Morpheus framework automates tcp/udp packet manipulation tasks by using etter filters to manipulate target requests/responses under MitM attacks replacing the tcp/udp packet contents by our contents befor forward the packet back to the target host... workflow: 1º - attacker - arp poison local lan...

Morpheus <= 4.8 - Local Chat Passwords Disclosure Exploit

No description provided by source. / Morpheus 4.8 Local Chat Passwords Disclosure Exploit by Kozan Application: Morpheus 4.8 and probably prior versions Vendor: Streamcast Networks - www.streamcastnetworks.com Vulnerable Description: Morpheus 4.8 discloses chat passwords to local users. Discovere...

CMS Morpheus SQL Injection

SQL Injection on CMS Morpheus Risk: High CWE number: CWE-89 Date: 19/04/2014 Vendor: www.pixel-dusche.de Author: Felipe " Renzi " Gabriel Contact: [email protected] Tested on Windows 8 pro Vulnerable File: index.php Exploit: http://www.site.com/index.php?cid=SQLI...

AlegroCart 1.1 Cross Site Request Forgery

---------------------------------------------------------------- + Home Of AlegroCart v1.1 - Xsrf Change Administrator Password // Author Info x Author: The.Morpheus x Contact: [email protected] x Thanks: Türksec.İnfo Nd And Tg Tayfa :P x Date : 01.02.2010...