Lucene search
K

100 matches found

Kitploit
Kitploit
added 2020/08/14 12:30 p.m.109 views

DAGOBAH - Open Source Tool To Generate Internal Threat Intelligence, Inventory & Compliance Data From AWS Resources

Dagobah is an open source tool written in python to automate the internal threat intelligence generation, inventory collection and compliance check from different AWS resources. Dagobah collects information and save the state into an elasticsearch index. Dagobah runs into the a LAMBDA and looks a...

6.9AI score
Exploits0References1
Veeam
Veeam
added 2020/04/16 10:55 a.m.23 views

"Value cannot be null. Parameter name: dnsName” Error when performing Infrastructure scans in Veeam Backup for AWS

For more information about Veeam Backup for AWS considerations and limitations, please review: Veeam Backup for AWS User Guide Planning and Preparation Considerations and Limitations Challenge When performing an infrastructure scan in Veeam Backup for AWS, you receive the following error: " Faile...

6.7AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2020/01/03 12:0 a.m.19 views

Cisco Data Center Network Manager getVpcHistory SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Cisco Data Center Network Manager. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

8.8CVSS4.4AI score0.46935EPSS
Exploits10References1
Zero Day Initiative
Zero Day Initiative
added 2020/01/03 12:0 a.m.18 views

Cisco Data Center Network Manager deleteVpcHistory SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Cisco Data Center Network Manager. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

7.2CVSS4.5AI score0.46935EPSS
Exploits10References1
Trend Micro Simply Security
Trend Micro Simply Security
added 2019/12/03 8:35 a.m.18 views

Network security simplified with Amazon VPC Ingress Routing and Trend Micro

Today, Amazon Web Services AWS announced the availability of a powerful new service, Amazon Virtual Private Cloud Amazon VPC Ingress Routing. As a Launch Partner for Amazon VPC Ingress Routing, we at Trend Micro are proud to continue to innovate alongside AWS to provide solutions to...

0.3AI score
Exploits0
Kitploit
Kitploit
added 2019/09/30 12:0 p.m.148 views

Terraform AWS Secure Baseline - Terraform Module To Set Up Your AWS Account With The Secure Baseline Configuration Based On CIS Amazon Web Services Foundations

Terraform Module Registry A terraform module to set up your AWS account with the reasonably secure configuration baseline. Most configurations are based on CIS Amazon Web Services Foundations v1.2.0. See Benchmark Compliance to check which items in CIS benchmark are covered. Starting from v0.10.0...

7AI score
Exploits0References11
Rhino Security Labs
Rhino Security Labs
added 2019/09/17 10:7 a.m.76 views

Abusing VPC Traffic Mirroring in AWS

The post Abusing VPC Traffic Mirroring in AWS appeared first on Rhino Security Labs...

2.9AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2019/06/27 6:31 p.m.389 views

AWS re:Inforce 2019 re:Cap

The inaugural AWS Cloud security conference—AWS re:Inforce—was held in Boston this week. Well over 8,000 attendees descended on the Boston Convention and Exhibition Center for two days jammed packed with security education and cloud content. This was a very interesting conference because the...

7.1AI score
Exploits0
n0where
n0where
added 2018/11/08 3:21 a.m.108 views

The AWS Exploitation Framework: Pacu

Pacu is an open source AWS exploitation framework, designed for offensive security testing against cloud environments. Created and maintained by Rhino Security Labs, Pacu allows penetration testers to exploit configuration flaws within an AWS account, using modules to easily expand its...

0.8AI score
Exploits0References2
NVD
NVD
added 2018/04/19 8:29 p.m.23 views

CVE-2018-0273

A vulnerability in the IPsec Manager of Cisco StarOS for Cisco Aggregation Services Router ASR 5000 Series Routers and Virtualized Packet Core VPC System Software could allow an unauthenticated, remote attacker to terminate all active IPsec VPN tunnels and prevent new tunnels from being...

5.3CVSS5.5AI score0.03286EPSS
Exploits0References3
OSV
OSV
added 2018/04/19 8:29 p.m.6 views

CVE-2018-0273

A vulnerability in the IPsec Manager of Cisco StarOS for Cisco Aggregation Services Router ASR 5000 Series Routers and Virtualized Packet Core VPC System Software could allow an unauthenticated, remote attacker to terminate all active IPsec VPN tunnels and prevent new tunnels from being...

5.3CVSS5.8AI score0.03286EPSS
Exploits0References3
Prion
Prion
added 2018/04/19 8:29 p.m.16 views

Race condition

A vulnerability in the IPsec Manager of Cisco StarOS for Cisco Aggregation Services Router ASR 5000 Series Routers and Virtualized Packet Core VPC System Software could allow an unauthenticated, remote attacker to terminate all active IPsec VPN tunnels and prevent new tunnels from being...

5CVSS5.4AI score0.03286EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2018/04/19 8:29 p.m.21 views

Race condition

A vulnerability in the egress packet processing functionality of the Cisco StarOS operating system for Cisco Aggregation Services Router ASR 5700 Series devices and Virtualized Packet Core VPC System Software could allow an unauthenticated, remote attacker to cause an interface on the device to...

5CVSS7.5AI score0.03446EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2018/04/19 8:29 p.m.22 views

CVE-2018-0239

A vulnerability in the egress packet processing functionality of the Cisco StarOS operating system for Cisco Aggregation Services Router ASR 5700 Series devices and Virtualized Packet Core VPC System Software could allow an unauthenticated, remote attacker to cause an interface on the device to...

7.5CVSS7.6AI score0.03446EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2018/04/19 8:0 p.m.8 views

CVE-2018-0273

A vulnerability in the IPsec Manager of Cisco StarOS for Cisco Aggregation Services Router ASR 5000 Series Routers and Virtualized Packet Core VPC System Software could allow an unauthenticated, remote attacker to terminate all active IPsec VPN tunnels and prevent new tunnels from being...

7AI score0.03286EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2018/04/19 8:0 p.m.9 views

CVE-2018-0239

A vulnerability in the egress packet processing functionality of the Cisco StarOS operating system for Cisco Aggregation Services Router ASR 5700 Series devices and Virtualized Packet Core VPC System Software could allow an unauthenticated, remote attacker to cause an interface on the device to...

7AI score0.03446EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/04/19 8:0 p.m.30 views

CVE-2018-0239

A vulnerability in the egress packet processing functionality of the Cisco StarOS operating system for Cisco Aggregation Services Router ASR 5700 Series devices and Virtualized Packet Core VPC System Software could allow an unauthenticated, remote attacker to cause an interface on the device to...

7.6AI score0.03446EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/04/19 8:0 p.m.27 views

CVE-2018-0273

A vulnerability in the IPsec Manager of Cisco StarOS for Cisco Aggregation Services Router ASR 5000 Series Routers and Virtualized Packet Core VPC System Software could allow an unauthenticated, remote attacker to terminate all active IPsec VPN tunnels and prevent new tunnels from being...

5.4AI score0.03286EPSS
Exploits0References3
Cisco
Cisco
added 2018/04/18 4:0 p.m.55 views

Cisco StarOS Interface Forwarding Denial of Service Vulnerability

A vulnerability in the egress packet processing functionality of the Cisco StarOS operating system for Cisco Aggregation Services Router ASR 5700 Series devices and Virtualized Packet Core VPC System Software could allow an unauthenticated, remote attacker to cause an interface on the device to...

8.6CVSS1.5AI score0.03446EPSS
Exploits0References1
Imperva Blog
Imperva Blog
added 2018/02/23 4:45 p.m.89 views

NEW: Vulnerability and Assessment Scanning for Your AWS Cloud Databases

Scuba is a free and easy-to-use tool that uncovers hidden security risks. Scuba is frequently updated with content from Imperva’s Defense Center researchers. With Scuba you can: Scan enterprise databases for vulnerabilities and misconfigurations Identify risks to your databases Get recommendation...

6.3AI score
Exploits0
Rows per page
Query Builder