Lucene search
K

54 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-5359

Malware in sbrugna...

10CVSS6.4AI score0.03348EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-53440

Malicious code in bioql PyPI...

10CVSS6.6AI score0.00556EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/07/31 12:0 a.m.2 views

Implementing Zero Trust Architecture to Enhance Security and Resilience in the Pharmaceutical Supply Chain

The pharmaceutical supply chain faces escalating cybersecurity challenges threatening patient safety and operational continuity. This paper examines the transformative potential of zero trust architecture for enhancing security and resilience within this critical ecosystem. We explore the...

7.3AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 9:16 a.m.11 views

CVE-2024-56829

Huang Yaoshi Pharmaceutical Management Software through 16.0 allows arbitrary file upload via a .asp filename in the fileName element of the UploadFile element in a SOAP request to /XSDService.asmx...

10CVSS6.9AI score0.00556EPSS
Exploits0References1
NVD
NVD
added 2025/01/02 4:15 a.m.18 views

CVE-2024-56829

Huang Yaoshi Pharmaceutical Management Software through 16.0 allows arbitrary file upload via a .asp filename in the fileName element of the UploadFile element in a SOAP request to /XSDService.asmx...

10CVSS0.00556EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/02 12:0 a.m.9 views

CVE-2024-56829

Huang Yaoshi Pharmaceutical Management Software through 16.0 allows arbitrary file upload via a .asp filename in the fileName element of the UploadFile element in a SOAP request to /XSDService.asmx...

10CVSS7AI score0.00556EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/02 12:0 a.m.4 views

Huang Yaoshi Pharmaceutical Management Software 安全漏洞

NWT Huang Yaoshi Pharmaceutical Management Software is a pharmaceutical management software from NWT. A security vulnerability exists in Huang Yaoshi Pharmaceutical Management version 16.0 and prior versions that originates from a file upload via the /XSDService.asmx interface that allows arbitra...

10CVSS7AI score0.00556EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/02 12:0 a.m.30 views

CVE-2024-56829

Huang Yaoshi Pharmaceutical Management Software through 16.0 allows arbitrary file upload via a .asp filename in the fileName element of the UploadFile element in a SOAP request to /XSDService.asmx...

10CVSS0.00556EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/06/24 12:0 a.m.3 views

Hangzhou Meisoft Information Technology Finesoft Security Breach

Hangzhou Meisoft Information Technology Finesoft is a pharmaceutical management software from Hangzhou Meisoft Information China. A security vulnerability exists in Hangzhou Meisoft Information Technology Finesoft v.8.0 and prior versions that could allow a remote attacker to execute arbitrary co...

5.3CVSS7.6AI score0.0027EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/06/24 12:0 a.m.3 views

Hangzhou Meisoft Information Technology FineSoft Cross-Site Scripting Vulnerability

Hangzhou Meisoft Information Technology Finesoft is a pharmaceutical management software from Hangzhou Meisoft Information China. A cross-site scripting vulnerability exists in Hangzhou Meisoft Information Technology FineSoft v.8.0 and earlier versions, which can be exploited to allow a remote...

6.1CVSS6.9AI score0.00416EPSS
Exploits1References3
Openbugbounty
Openbugbounty
added 2024/01/04 6:4 a.m.11 views

pharmaceutical-technology.com Improper Access Control vulnerability OBB-3828142

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/12/10 11:29 a.m.3 views

pharmaceutical-technology.com Cross Site Scripting vulnerability OBB-3807790

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Akamai Blog
Akamai Blog
added 2023/10/04 1:0 p.m.18 views

Prioritizing the Pharmaceutical Supply Chain for Healthcare Resiliency

...

7.1AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/09/14 4:30 p.m.56 views

Peach Sandstorm password spray campaigns enable intelligence collection at high-value targets

Since February 2023, Microsoft has observed password spray activity against thousands of organizations carried out by an actor we track as Peach Sandstorm HOLMIUM. Peach Sandstorm is an Iranian nation-state threat actor who has recently pursued organizations in the satellite, defense, and...

7.5CVSS8.1AI score0.99999EPSS
Exploits90
Rapid7 Blog
Rapid7 Blog
added 2022/06/28 6:0 p.m.14 views

For Ransomware Double-Extorters, It's All About the Benjamins — and Data From Healthcare and Pharma

Welcome to the second installment in our series looking at the latest ransomware research from Rapid7. Two weeks ago, we launched "Pain Points: Ransomware Data Disclosure Trends", our first-of-its-kind look into the practice of double extortion, what kinds of data get disclosed, and how the...

Exploits0
The Hacker News
The Hacker News
added 2022/03/28 1:0 p.m.23 views

Hackers Hijack Email Reply Chains on Unpatched Exchange Servers to Spread Malware

A new email phishing campaign has been spotted leveraging the tactic of conversation hijacking to deliver the IcedID info-stealing malware onto infected machines by making use of unpatched and publicly-exposed Microsoft Exchange servers. "The emails use a social engineering technique of...

0.9AI score
Exploits0
ICS
ICS
added 2022/01/25 12:0 p.m.55 views

APT Groups Target Healthcare and Essential Services

Summary This is a joint alert from the United States Department of Homeland Security DHS Cybersecurity and Infrastructure Security Agency CISA and the United Kingdom’s National Cyber Security Centre NCSC. CISA and NCSC continue to see indications that advanced persistent threat APT groups are...

9.8CVSS10AI score0.99999EPSS
Exploits48References50
Openbugbounty
Openbugbounty
added 2021/09/20 5:1 p.m.12 views

pharmaceutical.ca Cross Site Scripting vulnerability OBB-2144646

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
CNVD
CNVD
added 2021/01/20 12:0 a.m.5 views

Oracle Argus Safety Information Disclosure Vulnerability

Oracle Argus Safety is a complete pharmacovigilance software system designed to address the pharmaceutical industry's toughest regulatory challenges. An information disclosure vulnerability exists in the Letters component of Oracle Argus Safety 8.2.2. An attacker could exploit this vulnerability ...

5CVSS5.9AI score0.00912EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2020/12/24 7:24 a.m.51 views

North Korean Hackers Trying to Steal COVID-19 Vaccine Research

Threat actors such as the notorious Lazarus group are continuing to tap into the ongoing COVID-19 vaccine research to steal sensitive information to speed up their countries' vaccine-development efforts. Cybersecurity firm Kaspersky detailed two incidents at a pharmaceutical company and a...

0.6AI score
Exploits0
Rows per page
Query Builder