21 matches found
EUVD-2018-6773
Malware in sbrugna...
EUVD-2018-6772
Malware in sbrugna...
Emerging Attacker Exploit: Microsoft Cross-Tenant Synchronization
Attackers continue to target Microsoft identities to gain access to connected Microsoft applications and federated SaaS applications. Additionally, attackers continue to progress their attacks in these environments, not by exploiting vulnerabilities, but by abusing native Microsoft functionality ...
Vectra and Microsoft join forces to step up detection and response
This blog post is part of the Microsoft Intelligent Security Association MISA guest blog series. Click here to learn more about MISA. Traditional security operations center SOC processes typically involve a wide variety of disparate event notification tools that force overworked analysts to battl...
Vectra Cognito Brain and Sensor Management Console Privilege Vulnerability
Vectra Cognito Brain and Sensor is a cyber threat sensing system from Vectra Networks, USA. The system supports functions such as cyber attack detection and cyber threat search. An elevation of privilege vulnerability exists in the management console in Vectra Cognito Brain and Sensor versions...
Vectra Cognito Brain and Sensor Web Management Console Cross-Site Scripting Vulnerability
Vectra Cognito Brain and Sensor is a cyber threat sensing system from Vectra Networks, USA. The system supports functions such as cyber attack detection and cyber threat search. A cross-site scripting vulnerability exists in the Web Management Console in Vectra Cognito Brain and Sensor versions...
CVE-2018-14891
Management Console in Vectra Networks Cognito Brain and Sensor before 4.3 contains a local privilege escalation vulnerability...
Privilege escalation
Management Console in Vectra Networks Cognito Brain and Sensor before 4.3 contains a local privilege escalation vulnerability...
CVE-2018-14890
Vectra Networks Cognito Brain and Sensor before 4.2 contains a cross-site scripting XSS vulnerability in the Web Management Console...
CVE-2018-14889
CouchDB in Vectra Networks Cognito Brain and Sensor before 4.3 contains a local code execution vulnerability...
CVE-2018-14891
Management Console in Vectra Networks Cognito Brain and Sensor before 4.3 contains a local privilege escalation vulnerability...
Cross site scripting
Vectra Networks Cognito Brain and Sensor before 4.2 contains a cross-site scripting XSS vulnerability in the Web Management Console...
CVE-2018-14890
Vectra Networks Cognito Brain and Sensor before 4.2 contains a cross-site scripting XSS vulnerability in the Web Management Console...
CVE-2018-14889
CouchDB in Vectra Networks Cognito Brain and Sensor before 4.3 contains a local code execution vulnerability...
Remote code execution
CouchDB in Vectra Networks Cognito Brain and Sensor before 4.3 contains a local code execution vulnerability...
CVE-2018-14890
Vectra Networks Cognito Brain and Sensor before 4.2 contains a cross-site scripting XSS vulnerability in the Web Management Console...
CVE-2018-14890
Vectra Networks Cognito Brain and Sensor Web Management Console is affected by a Cross-Site Scripting (XSS) vulnerability in versions prior to 4.2. The issue exists in the Web Management Console and can allow injection of arbitrary scripts/HTML. The available connected records consistently descri...
CVE-2018-14891
Management Console in Vectra Networks Cognito Brain and Sensor before 4.3 contains a local privilege escalation vulnerability...
CVE-2018-14889
CVE-2018-14889 affects CouchDB in Vectra Networks Cognito Brain and Sensor prior to version 4.3, described as a local code execution vulnerability . The available data show a local attack with partial impact on confidentiality, integrity, and availability (CVSS2: 4.6 MEDIUM; CVSS3: 7.8 HIGH); exp...
CVE-2018-14891
The CVE-2018-14891 entry concerns the Management Console of Vectra Networks Cognito Brain and Sensor prior to version 4.3, with a local privilege escalation vulnerability. Affected product: Cognito Brain and Sensor management console. Vulnerability: local privilege escalation; root cause details ...