Lucene search
K

259 matches found

The Hacker News
The Hacker News
added 2024/02/29 11:33 a.m.52 views

GTPDOOR Linux Malware Targets Telecoms, Exploiting GPRS Roaming Networks

Threat hunters have discovered a new Linux malware called GTPDOOR that's designed to be deployed in telecom networks that are adjacent to GPRS roaming exchanges GRX The malware is novel in the fact that it leverages the GPRS Tunnelling Protocol GTP for command-and-control C2 communications. GPRS...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2024/02/09 1:34 p.m.47 views

MoqHao Android Malware Evolves with Auto-Execution Capability

Threat hunters have identified a new variant of Android malware called MoqHao that automatically executes on infected devices without requiring any user interaction. "Typical MoqHao requires users to install and launch the app to get their desired purpose, but this new variant requires no...

6.7AI score
Exploits0
Citrix
Citrix
added 2023/12/05 12:0 a.m.6 views

Incorrect path displayed when click "open file location”

Type "command prompt" in the search box and click "open file location” the path of the roaming profile on the NAS server is displayed...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2023/12/02 8:29 a.m.25 views

Agent Racoon Backdoor Targets Organizations in Middle East, Africa, and U.S.

Organizations in the Middle East, Africa, and the U.S. have been targeted by an unknown threat actor to distribute a new backdoor called Agent Racoon. "This malware family is written using the .NET framework and leverages the domain name service DNS protocol to create a covert channel and provide...

7.4AI score
Exploits0
NVD
NVD
added 2023/10/03 6:15 a.m.27 views

CVE-2023-28571

Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan...

6.1CVSS6.2AI score0.00108EPSS
Exploits0References1
Prion
Prion
added 2023/10/03 6:15 a.m.20 views

Information disclosure

Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan...

1.7CVSS5.5AI score0.00108EPSS
Exploits0References1
CVE
CVE
added 2023/10/03 5:0 a.m.98 views

CVE-2023-28571

CVE-2023-28571 describes an information-disclosure flaw in WLAN HOST while processing the WLAN scan descriptor list during roaming scans. Public documents (NVD, Red Hat, PRION, vuln enrichment) consistently refer to information disclosure with CVSS metrics indicating a local attacker with low com...

6.1CVSS5.7AI score0.00108EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/10/03 5:0 a.m.34 views

CVE-2023-28571 Buffer Over-read in WLAN HOST

Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan...

6.1CVSS6.4AI score0.00108EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/10/03 5:0 a.m.22 views

CVE-2023-28571 Buffer Over-read in WLAN HOST

Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan...

6.1CVSS6.8AI score0.00108EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/10/03 12:0 a.m.5 views

Qualcomm Chip Buffer Error Vulnerability

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc. and are often manufactured on the surface of semiconductor wafers. The Qualcomm chip suffers from a buffer error vulnerability that originates fr...

6.1CVSS6.5AI score0.00108EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/10/02 12:0 a.m.7 views

PT-2023-21820 · Wlan Host · Wlan Host

Name of the Vulnerable Software and Affected Versions: WLAN HOST affected versions not specified Description: The issue is related to information disclosure in the WLAN HOST while it processes the WLAN scan descriptor list during a roaming scan. Recommendations: At the moment, there is no...

6.1CVSS5.4AI score0.00108EPSS
Exploits0References6
Securelist
Securelist
added 2023/06/07 8:0 a.m.157 views

IT threat evolution Q1 2023

IT threat evolution in Q1 2023 IT threat evolution in Q1 2023. Non-mobile statistics IT threat evolution in Q1 2023. Mobile statistics Targeted attacks BlueNoroff introduces new methods bypassing MotW At the close of 2022, we reported the recent activities of BlueNoroff, a financially motivated...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.30 views

Debian: Security Advisory (DLA-387-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.5AI score0.63468EPSS
Exploits3References2
F5 Networks
F5 Networks
added 2023/02/21 7:39 p.m.175 views

K01131113: OpenSSH vulnerabilities CVE-2016-0777 and CVE-2016-0778

Security Advisory Description CVE-2016-0777 The resendbytes function in roamingcommon.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a...

8.1CVSS8.1AI score0.63468EPSS
Exploits3
HackRead
HackRead
added 2023/01/23 6:25 p.m.27 views

Roaming Mantis Malware Returns with DNS Changer Capability

By Deeba Ahmed Roaming Mantis malware was last seen in April 2018 targeting iOS and Android devices with cryptocurrency mining malware but this time, it has new DNS changer capabilities. This is a post from HackRead.com Read the original post: Roaming Mantis Malware Returns with DNS Changer...

1.6AI score
Exploits0
The Hacker News
The Hacker News
added 2023/01/20 4:33 p.m.30 views

Roaming Mantis Spreading Mobile Malware That Hijacks Wi-Fi Routers' DNS Settings

Threat actors associated with the Roaming Mantis attack campaign have been observed delivering an updated variant of their patent mobile malware known as Wroba to infiltrate Wi-Fi routers and undertake Domain Name System DNS hijacking. Kaspersky, which carried out an analysis of the malicious...

1.8AI score
Exploits0
The Hacker News
The Hacker News
added 2023/01/20 4:33 p.m.5 views

Roaming Mantis Spreading Mobile Malware That Hijacks Wi-Fi Routers' DNS Settings

Threat actors associated with the Roaming Mantis attack campaign have been observed delivering an updated variant of their patent mobile malware known as Wroba to infiltrate Wi-Fi routers and undertake Domain Name System DNS hijacking. Kaspersky, which carried out an analysis of the malicious...

6.6AI score
Exploits0
Securelist
Securelist
added 2023/01/19 10:0 a.m.82 views

Roaming Mantis implements new DNS changer in its malicious mobile app in 2022

Roaming Mantis a.k.a Shaoye is well-known as a long-term cyberattack campaign that uses malicious Android package APK files to control infected Android devices and steal device information; it also uses phishing pages to steal user credentials, with a strong financial motivation. Kaspersky has be...

0.3AI score
Exploits0
Snyk
Snyk
added 2022/12/06 9:13 p.m.5 views

Information Exposure

Overview Affected versions of this package are vulnerable to Information Exposure in the DSInternals.Common.Data.RoamedCredential.Save method, which incorrectly parses the msPKIAccountCredentials LDAP attribute values. Consequently, a malicious actor would be able to modify the computer's file...

7.3CVSS6.7AI score0.0147EPSS
Exploits0References2
OSV
OSV
added 2022/12/06 9:13 p.m.53 views

GHSA-VX2X-9CFF-FHJW DSInternals Credential Roaming Elevation of Privilege Vulnerability

Impact A vulnerability exists in the DSInternals.Common.Data.RoamedCredential.Save method, which incorrectly parses the msPKIAccountCredentials LDAP attribute values. As a consequence, a malicious actor would be able to modify the file system of the computer where an application using this functi...

6.3CVSS8.1AI score0.0147EPSS
Exploits0References4
Rows per page
Query Builder