Silver Fox Exploits Microsoft-Signed WatchDog Driver to Deploy ValleyRAT Malware

The threat actor known as Silver Fox has been attributed to abuse of a previously unknown vulnerable driver associated with WatchDog Anti-malware as part of a Bring Your Own Vulnerable Driver BYOVD attack aimed at disarming security solutions installed on compromised hosts. The vulnerable driver ...

Geovision GV-ASManager 6.1.10 Cross Site Request Forgery

Geovision GV-ASManager versions 6.1.10 and below suffer from a cross site request forgery vulnerability. CVE-2024-56901 CVE-2024-56901 - A Cross-Site Request Forgery CSRF vulnerability in Geovision GV-ASManager web application with the version 6.1.1.0 or less that allows attackers to arbitrarily...

PT-2024-15605 · Code Projects +1 · Code-Projects Fighting Cock Information System +1

Name of the Vulnerable Software and Affected Versions: code-projects Fighting Cock Information System version 1.0 Windows Event Log affected versions not specified Description: A critical issue has been identified, allowing for SQL injection through the manipulation of the type feed argument in t...

The vulnerability of the DLL component of Cisco AMP’s security tools for end devices allows a malicious actor to disable the security services and system scanning functions.

The vulnerability of the DLL component used by Cisco AMP’s security tools for end devices relates to resource management errors. Exploiting this vulnerability allows a malicious actor to remotely disable security services and system scanning services using a specially crafted DLL file...