Lucene search
K

478 matches found

ThreatPost
ThreatPost
added 2020/11/16 6:23 p.m.25 views

Hacked Security Software Used in Novel South Korean Supply-Chain Attack

The Lazarus cybercriminal group is using a novel supply-chain attack against visitors to websites operated by the South Korean government and financial firms, in order to deliver dropper malware that eventually plants a remote access trojan on victim’s PCs. The attacks use stolen digital...

2.1AI score
Exploits0References9
Pen Test Partners Blog
Pen Test Partners Blog
added 2020/08/03 5:57 a.m.40 views

Building a lab with Server 2019 Server Core and PowerShell …then attacking it!

A lot of people want to get into red teaming but dont know how. Our Andy Gill / @ZephrFish has written about that. One of the most important skills a red teamer needs to have is a plan to fail mentality. By planning to fail you can plan for all eventualities. This is a very common military tactic...

7.6AI score
Exploits0
The Hacker News
The Hacker News
added 2020/07/09 10:1 a.m.87 views

Joker Malware Apps Once Again Bypass Google's Security to Spread via Play Store

Cybersecurity researchers took the wraps off yet another instance of Android malware hidden under the guise of legitimate applications to stealthily subscribe unsuspecting users for premium services without their knowledge. In a report published by Check Point research today, the malware —...

0.2AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2020/06/30 12:0 a.m.5 views

The vulnerability of the Security Group Tag Exchange Protocol (SXP) implementation in Cisco IOS XE, Cisco IOS, and Cisco NX-OS operating systems allows a attacker to induce a service failure.

The vulnerability of the Security Group Tag Exchange Protocol SXP implementation in Cisco IOS XE, Cisco IOS, and Cisco NX-OS is related to errors in processing SXP packets. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

6.8CVSS6.8AI score0.01786EPSS
Exploits0References3Affected Software2
Veeam
Veeam
added 2020/06/22 5:50 p.m.16 views

Deploying Veeam Backup for Microsoft 365 Backup Proxy Server in AWS

Challenge You need to configure an Amazon EC2 instance to act as a Backup Proxy for Veeam Backup for Microsoft 365 in AWS. For example, this may be required for the following reasons: The current proxy/deployment has or will reach configuration maximums. Growth within the Organizations. You need ...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/06/19 12:0 a.m.37 views

Cisco IOS, IOS XE, and NX-OS Software Security Group Tag Exchange Protocol Denial of Service Vulnerability (cisco-sa-sxp-68TEVzR)

A denial of service DoS vulnerability exists in Security Group Tag Exchange Protocol SXP in Cisco IOS Software, Cisco IOS XE Software, and Cisco NX-OS Software due to crafted SXP packets being mishandled. An unauthenticated, remote attacker can exploit this issue, by sending specifically crafted...

8.6CVSS6.9AI score0.01786EPSS
Exploits0References5
CNVD
CNVD
added 2020/06/04 12:0 a.m.1 views

Multiple Cisco Products Input Validation Error Vulnerability (CNVD-2020-32900)

Cisco NX-OS Software and so on are products of Cisco Corporation.Cisco NX-OS Software is a set of data center-grade operating system software used by switches.Cisco IOS is a set of operating systems developed for its network devices.IOS XE is a set of operating systems developed for its network...

8.6CVSS6.7AI score0.01786EPSS
Exploits0References1
Prion
Prion
added 2020/06/03 6:15 p.m.23 views

Race condition

A vulnerability in Security Group Tag Exchange Protocol SXP in Cisco IOS Software, Cisco IOS XE Software, and Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause the affected device to reload, resulting in a denial of service DoS condition. The vulnerability exists becau...

7.8CVSS8.3AI score0.01786EPSS
Exploits0References1Affected Software3
Microsoft KB
Microsoft KB
added 2020/04/10 12:0 a.m.4 views

Update adds BPA rules for DirectAccess in Windows Server 2012 R2 or Windows Server 2012

Update adds BPA rules for DirectAccess in Windows Server 2012 R2 or Windows Server 2012 Introduction This article describes an update that adds new Best Practices Analyzer BPA rules. The rules are for DirectAccess on the servers that are running Windows Server 2012 R2 or Windows Server 2012. The...

6.2AI score
Exploits0
0day.today
0day.today
added 2020/04/08 12:0 a.m.33 views

Django 3.0 - Cross-Site Request Forgery Token Bypass Exploit

Exploit for php platform in category web applications Exploit Title: Django 3.0 - Cross-Site Request Forgery Token Bypass Exploit Author: Spad Security Group Vendor Homepage: https://www.djangoproject.com/ Software Link: https://pypi.org/project/Django/ Version: 3.0 = Tested on: windows 10...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2020/04/08 12:0 a.m.412 views

Django 3.0 - Cross-Site Request Forgery Token Bypass

Exploit Title: Django 3.0 - Cross-Site Request Forgery Token Bypass Date: 2020-04-08 Exploit Author: Spad Security Group Vendor Homepage: https://www.djangoproject.com/ Software Link: https://pypi.org/project/Django/ Version: 3.0 = Tested on: windows 10 Language: python3.8 t.me/SpadSec Spad...

7.4AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/09 11:31 p.m.34 views

Security Bulletin: PowerVC is impacted by an OpenStack Neutron vulnerability related to security group rules (CVE-2019-10876)

Summary OpenStack Neutron is vulnerable to a denial of service, caused by a flaw in the neutron-openvswitch-agent. By creating two security groups with separate/overlapping port ranges, a remote authenticated attacker could exploit this vulnerability to prevent Neutron from being able to configur...

6.5CVSS0.4AI score0.01757EPSS
Exploits0Affected Software1
myhack58
myhack58
added 2019/07/11 12:0 a.m.251 views

Redis is not authorized to access high-risk vulnerability alerts-a vulnerability alert-the black bar safety net

Recently, Sangfor security team found that open-source databases Redis broke up an unauthorized access vulnerability, the first time for tracking and analysis of early warning. The study found that the use of the vulnerability, the attacker can achieve rally shell for arbitrary code execution...

0.3AI score
Exploits0
Ubuntu
Ubuntu
added 2019/06/25 11:48 a.m.55 views

USN-4036-1: OpenStack Neutron vulnerability

Erik Olof Gunnar Andersson discovered that OpenStack Neutron incorrectly handled certain security group rules in the iptables firewall module. An authenticated attacker could possibly use this issue to block further application of security group rules for other instances...

6.5CVSS6.9AI score0.03635EPSS
Exploits1
OSV
OSV
added 2019/06/25 11:48 a.m.8 views

USN-4036-1 neutron vulnerability

Erik Olof Gunnar Andersson discovered that OpenStack Neutron incorrectly handled certain security group rules in the iptables firewall module. An authenticated attacker could possibly use this issue to block further application of security group rules for other instances...

6.5CVSS6.8AI score0.03635EPSS
Exploits1References2
Metasploit
Metasploit
added 2019/06/20 8:8 p.m.41 views

Amazon Web Services EC2 instance enumeration

Provided AWS credentials, this module will call the authenticated API of Amazon Web Services to list all EC2 instances associated with the account This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'aws-sdk-ec2'...

6.9AI score
Exploits0
Veracode
Veracode
added 2019/05/02 4:48 a.m.44 views

Denial Of Service (DoS)

The openstack-nova packages provide OpenStack Compute Nova, which provides services for provisioning, managing, and using virtual machine instances. It was found that the fixes for CVE-2013-1664 and CVE-2013-1665, released via RHSA-2013:0657, did not fully correct the issues in the Extensible...

6CVSS9.2AI score0.04863EPSS
Exploits7References13Affected Software1
RedHat Linux
RedHat Linux
added 2019/04/30 5:48 p.m.8 views

Moderate: Red Hat Bug Fix Advisory: Red Hat OpenStack Platform 14 bug fix and enhancement advisory

Updated packages that resolve various issues are now available for Red Hat OpenStack Platform 14.0 Rocky for RHEL 7. Red Hat OpenStack Platform provides the facilities for building, deploying and monitoring a private or public infrastructure-as-a-service IaaS cloud running on commonly available...

8.8CVSS7.1AI score0.00999EPSS
Exploits0References33
RedHat Linux
RedHat Linux
added 2019/04/30 5:24 p.m.6 views

openstack-neutron: incorrect validation of port settings in iptables security group driver

A validation flaw was discovered in the iptables firewall module in OpenStack Neutron. By setting a destination port in a security group rule, along with a protocol that does not support that option for example, VRRP, an authenticated user could block further application of security group rules f...

6.5CVSS7.4AI score0.03635EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2019/04/25 12:0 a.m.8 views

The vulnerability of the iptables security group driver of the Neutron SDN-platform for OpenStack, related to incorrect handling of security group configurations, allows attackers to circumvent established security policy rules.

The vulnerability of the iptables security group driver of the Neutron SDN-platform for the OpenStack platform is related to incorrect handling of security group configurations. Exploiting this vulnerability allows a malicious actor to circumvent established security policies by blocking further...

6.5CVSS6.8AI score0.03635EPSS
Exploits1References4Affected Software2
Rows per page
Query Builder