CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Kitploit•added 2022/12/19 11:30 a.m.•154 views

Shennina - Automating Host Exploitation With AI

Shennina is an automated host exploitation framework. The mission of the project is to fully automate the scanning, vulnerability scanning/analysis, and exploitation using Artificial Intelligence. Shennina is integrated with Metasploit and Nmap for performing the attacks, as well as being...

7.3AI score

ICS•added 2022/12/15 12:0 a.m.•79 views

Prosys OPC UA Simulation Server (Update A)

1. EXECUTIVE SUMMARY CVSS v3 6.5 --------- Begin Update A part 1 of 3 --------- ATTENTION: Low attack complexity Vendor: Prosys OPC Equipment: UA Simulation Server, UA Modbus Server --------- End Update A part 1 of 3 --------- Vulnerability: Insufficiently Protected Credentials 2. UPDATE...

7.5CVSS7.5AI score0.00137EPSS

CNNVD•added 2022/12/15 12:0 a.m.•3 views

Prosys OPC UA Simulation Server 安全漏洞

Prosys OPC UA Simulation Server is a simulation server from Prosys OPC, Finland. A security vulnerability exists in Prosys OPC UA Simulation Server version v5.03-64 that stems from insufficiently protected credentials. An attacker could exploit the vulnerability to obtain user credentials and...

7.5CVSS7.4AI score0.00137EPSS

CNVD•added 2022/12/14 12:0 a.m.•20 views

Siemens Simcenter STAR-CCM Privilege Elevation Vulnerability

Siemens Simcenter STAR-CCM is a complete multi-physics field solution from Siemens Germany that simulates products and designs working under real-world conditions. a security vulnerability exists in Siemens Simcenter STAR-CCM, which stems from improperly assigning file permissions to installation...

7.8CVSS3.5AI score0.00082EPSS

Exploits0References1

Hive Pro Threat Advisories•added 2022/12/12 7:44 a.m.•14 views

Hive Pro includes Breach & Attack Simulation as a feature in its Threat Exposure Management Platform

...

1.3AI score

The Hacker News•added 2022/11/23 5:40 a.m.•32 views

Nighthawk Likely to Become Hackers' New Post-Exploitation Tool After Cobalt Strike

A nascent and legitimate penetration testing framework known as Nighthawk is likely to gain threat actors' attention for its Cobalt Strike-like capabilities. Enterprise security firm Proofpoint said it detected the use of the software in mid-September 2022 by a red team with a number of test emai...

0.2AI score

The Hacker News•added 2022/11/10 7:30 a.m.•32 views

Re-Focusing Cyber Insurance with Security Validation

The rise in the costs of data breaches, ransomware, and other cyber attacks leads to rising cyber insurance premiums and more limited cyber insurance coverage. This cyber insurance situation increases risks for organizations struggling to find coverage or facing steep increases. Some Akin Gump...

7.2AI score

RedHat Linux•added 2022/11/08 9:32 a.m.•2 views

kernel: ath11k: fix the warning of dev_wake in mhi_pm_disable_transition()

In the Linux kernel, the following vulnerability has been resolved: ath11k: fix the warning of devwake in mhipmdisabletransition When test device recovery with below command, it has warning in message as below. echo assert /sys/kernel/debug/ath11k/wcn6855\ hw2.0/simulatefwcrash echo assert...

5.5CVSS6.3AI score0.00093EPSS

Exploits0References5

CNNVD•added 2022/10/11 12:0 a.m.•2 views

Siemens Simcenter Femap 缓冲区错误漏洞

Siemens Simcenter Femap is a cutting-edge engineering simulation application from Siemens, Germany. Simcenter Femap versions prior to 11.1.1.0, 2022.1.0 and later, 2022.1.3 and later, 2022.2.0 and later, and 2022.2.2 and earlier contain security vulnerabilities that can be exploited by attackers ...

7.8CVSS7.2AI score0.00062EPSS

CNNVD•added 2022/10/11 12:0 a.m.•3 views

Altair HyperView Player 输入验证错误漏洞

Altair HyperView Player is a standalone 3D viewer from Altair Japan. It is used to share CAE models and simulation results. An input validation error vulnerability exists in Altair HyperView Player that originates from improper validation of an array indexing vulnerability that results in memory...

7.8CVSS7.3AI score0.00159EPSS

CNNVD•added 2022/10/11 12:0 a.m.•2 views

Altair HyperView Player 缓冲区错误漏洞

Altair HyperView Player is a standalone 3D viewer from Altair Japan. It is used to share CAE models and simulation results. A buffer error vulnerability exists in Altair HyperView Player that originates from allowing memory locations outside of the expected boundaries of the buffer to be read or...

7.8CVSS7.5AI score0.00071EPSS

CNNVD•added 2022/09/29 12:0 a.m.•2 views

Matrix 安全漏洞

Matrix is an ambitious new ecosystem for open federated instant messaging and VoIP. A security vulnerability in Matrix matrix-nio prior to version 0.19 stems from a vulnerability that allows a malicious home server to insert a room key of questionable validity into the keystore under certain...

8.6CVSS7AI score0.00245EPSS

Microsoft Malware Protection•added 2022/09/15 4:0 p.m.•19 views

Test your team’s security readiness with the Gone Phishing Tournament

Why should you care about the behavioral risk of your employees? Eighty-two percent of breaches include and often start with user behavior.1 Not all are phishing, but a majority of them are just that. Phishing is, and has been for many years, the cheapest and most reliable way for an attacker of...

7AI score