Lucene search
K

627 matches found

The Hacker News
The Hacker News
added 2023/09/20 10:13 a.m.32 views

Fresh Wave of Malicious npm Packages Threaten Kubernetes Configs and SSH Keys

Cybersecurity researchers have discovered a fresh batch of malicious packages in the npm package registry that are designed to exfiltrate Kubernetes configurations and SSH keys from compromised machines to a remote server. Sonatype said it has discovered 14 different npm packages so far:...

6.5AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/09/16 12:0 a.m.7 views

The vulnerability of the sshkeys.js component in the embedded operating system OpenWrt, related to the lack of security measures for the website structure, allows attackers to perform cross-site scripting attacks.

The vulnerability of the sshkeys.js component in the embedded operating system OpenWrt is related to the lack of security measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

6.4CVSS5.6AI score0.00611EPSS
Exploits1References6Affected Software1
Metasploit
Metasploit
added 2023/09/08 7:52 p.m.479 views

Prometheus API Information Gather

This module utilizes Prometheus' API calls to gather information about the server's configuration, and targets. Fields which may contain credentials, or credential file names are then pulled out and printed. Targets may have a wealth of information, this module will print the following values whe...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2023/08/28 3:40 p.m.52 views

Developers Beware: Malicious Rust Libraries Caught Transmitting OS Info to Telegram Channel

In yet another sign that developers continue to be targets of software supply chain attacks, a number of malicious packages have been discovered on the Rust programming language's crate registry. The libraries, uploaded between August 14 and 16, 2023, were published by a user named "amaperf,"...

6.6AI score
Exploits0
NVD
NVD
added 2023/08/22 7:16 p.m.16 views

CVE-2023-37426

EdgeConnect SD-WAN Orchestrator instances prior to the versions resolved in this advisory were found to have shared static SSH host keys for all installations. This vulnerability could allow an attacker to spoof the SSH host signature and thereby masquerade as a legitimate Orchestrator host...

7.5CVSS7.4AI score0.00389EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2023/08/07 9:52 a.m.46 views

New SkidMap Linux Malware Variant Targeting Vulnerable Redis Servers

Vulnerable Redis services have been targeted by a "new, improved, dangerous" variant of a malware called SkidMap that's engineered to target a wide range of Linux distributions. "The malicious nature of this malware is to adapt to the system on which it is executed," Trustwave security researcher...

6.7AI score
Exploits0
GithubExploit
GithubExploit
added 2023/07/17 10:21 p.m.390 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Imagemagick

auto-cve-2022-44268 Automating expl...

6.5CVSS6.8AI score0.89855EPSS
Exploits28
OSV
OSV
added 2023/06/16 8:15 p.m.5 views

CVE-2023-25187

An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. Nokia Single RAN commissioning procedures do not change factory-time installed default SSH public/private key values that are specific to a network operator. As a result, the CSP internal BTS network SSH server disable...

7CVSS5.7AI score0.00956EPSS
Exploits4References3
Positive Technologies
Positive Technologies
added 2023/06/16 12:0 a.m.4 views

PT-2023-19968 · Nokia · Nokia Airscale Asika Single Ran

Name of the Vulnerable Software and Affected Versions: NOKIA Airscale ASIKA Single RAN devices versions prior to 21B Description: An issue was discovered where Nokia Single RAN commissioning procedures do not change the default SSH public/private key values that are specific to a network operator...

7CVSS7.1AI score0.00956EPSS
Exploits4References7
Vulnrichment
Vulnrichment
added 2023/06/16 12:0 a.m.14 views

CVE-2023-25187

An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. Nokia Single RAN commissioning procedures do not change factory-time installed default SSH public/private key values that are specific to a network operator. As a result, the CSP internal BTS network SSH server disable...

6.3CVSS7AI score0.00956EPSS
Exploits4References3
The Hacker News
The Hacker News
added 2023/05/31 3:44 p.m.79 views

Cybercriminals Targeting Apache NiFi Instances for Cryptocurrency Mining

A financially motivated threat actor is actively scouring the internet for unprotected Apache NiFi instances to covertly install a cryptocurrency miner and facilitate lateral movement. The findings come from the SANS Internet Storm Center ISC, which detected a spike in HTTP requests for "/nifi" o...

10CVSS6.9AI score0.99997EPSS
Exploits43
Oracle linux
Oracle linux
added 2023/05/24 12:0 a.m.54 views

Image Builder security, bug fix, and enhancement update

cockpit-composer 45-1.0.1 - Make per page documentation links point to Oracle Linux Orabug: 32013095 45-1 - New upstream release 44-1 - New upstream release 43-1 - New upstream release 42-1 - New upstream release 40-1 - New upstream release 39-1 - New upstream release 38-1 - New upstream release...

7.5CVSS7.4AI score0.05623EPSS
Exploits1
Fedora
Fedora
added 2023/05/07 1:21 a.m.26 views

[SECURITY] Fedora 38 Update: cloud-init-23.1.2-1.fc38

Cloud-init is a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install ssh keys and to let the user run various scripts...

5.5CVSS6.1AI score0.00263EPSS
Exploits0
OSV
OSV
added 2023/04/19 8:55 a.m.6 views

SUSE-SU-2023:1909-1 Security update for libgit2

This update for libgit2 fixes the following issues: - CVE-2023-22742: Fixed SSH keys verification failure bsc1207364...

5.9CVSS6AI score0.0058EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/14 2:32 p.m.32 views

Security Bulletin: Vulnerabilities in OpenSSH affect IBM Flex System FC3171 8Gb SAN Switch and SAN Pass-thru Firmware and QLogic Virtual Fabric Extension Module for IBM BladeCenter (CVE-2016-0777, CVE-2016-0778)

Summary An information leak flaw and buffer overflow flaw in the way the OpenSSH client roaming feature was implemented affects IBM Flex System FC3171 8Gb SAN Switch and SAN Pass-thru Firmware and QLogic Virtual Fabric Extension Module for IBM BladeCenter. Vulnerability Details Summary An...

8.1CVSS7.8AI score0.63468EPSS
Exploits3Affected Software2
OSV
OSV
added 2023/04/11 9:15 a.m.4 views

CVE-2023-28368

TP-Link L2 switch T2600G-28SQ firmware versions prior to 'T2600G-28SQUNV11.0.6 Build 20230227' uses vulnerable SSH host keys. A fake device may be prepared to spoof the affected device with the vulnerable host key.If the administrator may be tricked to login to the fake device, the credential...

5.7CVSS5.8AI score0.00265EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2023/04/06 3:53 p.m.15 views

cloud-init bug fix and enhancement update

An update is available for cloud-init. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The cloud-init packages provide a set of init scripts for cloud instances...

6.6AI score
Exploits0
OSV
OSV
added 2023/03/27 5:15 p.m.3 views

CVE-2022-48428

In JetBrains TeamCity before 2022.10.3 stored XSS on the SSH keys page was possible...

5.4CVSS5.8AI score0.6796EPSS
Exploits0References1
NVD
NVD
added 2023/03/27 5:15 p.m.28 views

CVE-2022-48428

In JetBrains TeamCity before 2022.10.3 stored XSS on the SSH keys page was possible...

5.4CVSS5.2AI score0.6796EPSS
Exploits0References1
Prion
Prion
added 2023/03/27 5:15 p.m.17 views

Cross site scripting

In JetBrains TeamCity before 2022.10.3 stored XSS on the SSH keys page was possible...

4.9CVSS5.2AI score0.6796EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder