Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2026/06/05 12:0 a.m.26 views

PT-2026-46985

Name of the Vulnerable Software and Affected Versions vantage6 versions prior to 5.0.0 Description Users can reset their Multi-Factor Authentication MFA token through API routes that trigger email notifications. Because there is no limit on the number of emails that can be sent, an attacker could...

2.1CVSS5.2AI score0.00278EPSS
Exploits0References7
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/25 6:11 p.m.12 views

Malicious code in @nolimit-x/win32-x64 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 343787b335da015be56f49d118534c54bf81abab9e53b40bec0114d23bcc95c7 Package ships a single 8.1 MB Windows PE nolimit-core.exe as its main entry with only the description 'nolimit-x native binary for Windows x64' — no...

5.8AI score
Exploits0References1
CVE
CVE
added 2025/08/12 11:17 a.m.20 views

CVE-2025-40753

Affected devices POWER METER SICAM Q100 (versions 2.60–2.61) and Q200 (versions 2.70–2.79) export the SMTP password in plain text within the Configuration File. This local-authenticated exposure allows an attacker with access to the device to extract credentials and abuse the configured SMTP serv...

6.8CVSS7AI score0.00086EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2024/01/17 11:14 a.m.179 views

Feds Warn of AndroxGh0st Botnet Targeting AWS, Azure, and Office 365 Credentials

The U.S. Cybersecurity and Infrastructure Security Agency CISA and the Federal Bureau of Investigation FBI warned that threat actors deploying the AndroxGh0st malware are creating a botnet for "victim identification and exploitation in target networks." A Python-based malware, AndroxGh0st was fir...

9.8CVSS8AI score0.99999EPSS
Exploits178
Rows per page
Query Builder