Lucene search
K

39 matches found

CVE
CVE
added 2026/03/02 6:42 p.m.16 views

CVE-2025-48613

The CVE-2025-48613 entry describes a vulnerability in VBMeta where an attacker can modify and resign VBMeta using a test key, assuming the original image was signed with the same key. This could enable local privilege escalation with no additional privileges or user interaction. Connected sources...

7.8CVSS6.1AI score0.00088EPSS
Exploits0References1Affected Software1
HackRead
HackRead
added 2025/12/15 11:22 a.m.5 views

Coupang CEO Steps Down After Data Breach Hits 33.7 Million Users

South Korean e-commerce giant Coupang faces intense scrutiny after CEO Park Dae-jun resigns over a data breach that exposed 33.7 million customer accounts. Read about the police raids, US lawsuit, and regulatory orders from PIPC...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/11/05 9:9 a.m.6 views

CVE-2025-63294

WorkDo HRM SaaS HR and Payroll Tool 8.1 is affected vulnerable to Insecure Permissions. An authenticated user can create leave or resignation records on behalf of other users...

6.5CVSS6.8AI score0.00287EPSS
Exploits1References1
OSV
OSV
added 2025/11/04 4:16 p.m.6 views

CVE-2025-63294

WorkDo HRM SaaS HR and Payroll Tool 8.1 is affected vulnerable to Insecure Permissions. An authenticated user can create leave or resignation records on behalf of other users...

6.5CVSS5.8AI score0.00287EPSS
Exploits1References3
NVD
NVD
added 2025/11/04 4:16 p.m.7 views

CVE-2025-63294

WorkDo HRM SaaS HR and Payroll Tool 8.1 is affected vulnerable to Insecure Permissions. An authenticated user can create leave or resignation records on behalf of other users...

6.5CVSS0.00287EPSS
Exploits1References3
EUVD
EUVD
added 2025/11/04 12:0 a.m.5 views

EUVD-2025-37760

WorkDo HRM SaaS HR and Payroll Tool 8.1 is affected vulnerable to Insecure Permissions. An authenticated user can create leave or resignation records on behalf of other users...

6.5CVSS6.3AI score0.00287EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/11/04 12:0 a.m.3 views

CVE-2025-63294

WorkDo HRM SaaS HR and Payroll Tool 8.1 is affected vulnerable to Insecure Permissions. An authenticated user can create leave or resignation records on behalf of other users...

6.4AI score0.00287EPSS
Exploits1References3
CNNVD
CNNVD
added 2025/11/04 12:0 a.m.7 views

WorkDo HRM SaaS HR and Payroll Tool 安全漏洞

WorkDo HRM SaaS HR and Payroll Tool is a human resource management software from WorkDo, Inc. A security vulnerability exists in WorkDo HRM SaaS HR and Payroll Tool version 8.1, which stems from improperly set permissions and could result in an authenticated user creating leave or resignation...

6.5CVSS6.6AI score0.00287EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/11/04 12:0 a.m.7 views

CVE-2025-63294

WorkDo HRM SaaS HR and Payroll Tool 8.1 is affected vulnerable to Insecure Permissions. An authenticated user can create leave or resignation records on behalf of other users...

0.00287EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/11/04 12:0 a.m.6 views

PT-2025-45014

Name of the Vulnerable Software and Affected Versions WorkDo HRM SaaS HR and Payroll Tool version 8.1 Description WorkDo HRM SaaS HR and Payroll Tool version 8.1 has an issue with insecure permissions. An authenticated user is able to create leave or resignation records for other users...

6.5CVSS6.6AI score0.00287EPSS
Exploits1References6
Wired Threat Level
Wired Threat Level
added 2025/07/03 8:50 p.m.5 views

The Person in Charge of Testing Tech for US Spies Has Resigned

IARPA director Rick Muller is departing after just over a year at the R&D unit that invests in emerging technologies of potential interest to agencies like the NSA and the CIA, WIRED has learned...

7.2AI score
Exploits0
Information Security Automation
Information Security Automation
added 2023/09/30 7:31 p.m.100 views

September 2023: VM courses, Bahasa Indonesia, Russian Podcasts, Goodbye Tinkoff, MS Patch Tuesday, Qualys TOP 20, Linux, Forrester, GigaOm, R-Vision VM

September 2023: VM courses, Bahasa Indonesia, Russian Podcasts, Goodbye Tinkoff, MS Patch Tuesday, Qualys TOP 20, Linux, Forrester, GigaOm, R-Vision VM. Hello everyone! On the last day of September, I decided to record another retrospective episode on how my Vulnerability Management month went...

9.8CVSS9.3AI score0.99999EPSS
Exploits344
Rapid7 Blog
Rapid7 Blog
added 2022/09/29 4:53 p.m.21 views

The Empty SOC Shop: Where Has All the Talent Gone?

Anyone involved in hiring security analysts in the last few years is likely painfully aware of the cybersecurity skills shortage – but the talent hasn’t “gone anywhere” so much as it’s been bouncing around all over the place, looking for the highest bidder and most impactful work environment...

7.1AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/06/23 1:58 p.m.17 views

Determining “Need to share vs. Need to know” is a Cornerstone of a Data Protection Strategy

There is a paradox that lies at the heart of data security. Data itself only has real value if an organization can share it with stakeholders that need it to perform their roles. However, the more widely an organization shares data the greater the risks of the data being compromised. Data securit...

0.4AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/06/10 1:2 p.m.18 views

How CISOs can Find and Retain Security Staff During the Great Resignation

The rising demand for cybersecurity professionals As if the skill shortfall in cybersecurity wasn’t bad enough, the employment landscape is shifting rapidly. This shift is due, in part, to historically low unemployment claims, unrivaled quit rates, and swathes of baby boomers and older Gen X...

7AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2022/05/18 4:0 p.m.23 views

So you want to be a CISO: What you should know about data protection

Data is the lifeblood of any organization. Whether you’re a Chief Information Security Officer CISO or aspiring to become one, protecting sensitive business data will be your main priority. But the job isn’t getting any easier. In 2021, the number of data breaches climbed 68 percent to 1,862,...

6.6AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/04/27 12:28 p.m.20 views

6 Best Data Security Practices You Can Start Today

Given the dramatic increases in the volume and frequency of data theft due to breaches and the increased threat of cyberattacks resulting from current conflicts, organizations worldwide are prioritizing tactical and strategic efforts to shore up their data security. Here are six best practices yo...

0.4AI score
Exploits0
ThreatPost
ThreatPost
added 2022/02/16 9:15 p.m.260 views

Massive LinkedIn Phishing, Bot Attacks Feed on the Job-Hungry

Emotionally vulnerable and willing to offer up any information that lands the gig, job seekers are prime targets for social engineering campaigns. And with the “Great Resignation” in full swing, cybercriminals are having an easy time finding their next victim. Just since Feb. 1, analysts have...

8.6AI score
Exploits0References10
ThreatPost
ThreatPost
added 2020/11/13 12:54 p.m.29 views

Report: CISA Chief Expects White House to Fire Him

Top U.S. cybersecurity official Christopher Krebs said he expects to be fired by the Trump administration after he delivered a secure presidential election that didn’t go in the current administration’s favor. Krebs, the first and current director of the Department of Homeland Security’s DHS’s...

7.1AI score
Exploits0References17
Krebs on Security
Krebs on Security
added 2019/12/11 10:31 p.m.61 views

The Great $50M African IP Address Heist

A top executive at the nonprofit entity responsible for doling out chunks of Internet addresses to businesses and other organizations in Africa has resigned his post following accusations that he secretly operated several companies which sold tens of millions of dollars worth of the increasingly...

6.9AI score
Exploits0
Rows per page
Query Builder