βΌ CVE-2022-29597 βΌ
π Read
via "National Vulnerability Database".
Solutions Atlantic Regulatory Reporting System (RRS) v500 is vulnerable to Local File Inclusion (LFI). Any authenticated user has the ability to reference internal system files within requests made to the RRSWeb/maint/ShowDocument/ShowDocument.aspx page. The server will successfully respond with the file contents of the internal system file requested. This ability could allow for adversaries to extract sensitive data and/or files from the underlying file system, gain knowledge about the internal workings of the system, or access source code of the application.π Read
via "National Vulnerability Database".
βΌ CVE-2021-45981 βΌ
π Read
via "National Vulnerability Database".
NetScout nGeniusONE 6.3.2 allows an XML External Entity (XXE) attack.π Read
via "National Vulnerability Database".
βΌ CVE-2022-31024 βΌ
π Read
via "National Vulnerability Database".
richdocuments is the repository for NextCloud Collabra, the app for Nextcloud Office collaboration. Prior to versions 6.0.0, 5.0.4, and 4.2.6, a user could be tricked into working against a remote Office by sending them a federated share. richdocuments versions 6.0.0, 5.0.4 and 4.2.6 contain a fix for this issue. There are currently no known workarounds available.π Read
via "National Vulnerability Database".
β Yet another zero-day (sort of) in Windows βsearch URLβ handling β
π Read
via "Naked Security".
More trouble with special-purpose URLs on Windows.π Read
via "Naked Security".
Sophos News
Naked Security β Sophos News
β S3 Ep85: Now THATβS what I call a Microsoft Office exploit! [Podcast] β
π Read
via "Naked Security".
Latest episode - listen now!π Read
via "Naked Security".
Sophos News
Naked Security β Sophos News
π΄ Gurucul Launches Cloud-Native SOC Platform Pushing the Boundaries of Next-Gen SIEM and XDR with Identity Threat Detection and Response π΄
π Read
via "Dark Reading".
Gurucul automating threat detection, investigation and response (TDIR) with advanced analytics, comprehensive threat content, and a flexible enterprise risk engine for hybrid and multi-cloud environments.π Read
via "Dark Reading".
Dark Reading
Gurucul Launches Cloud-Native SOC Platform Pushing the Boundaries of Next-Gen SIEM and XDR with Identity Threat Detection and Response
Gurucul automating threat detection, investigation and response (TDIR) with advanced analytics, comprehensive threat content, and a flexible enterprise risk engine for hybrid and multi-cloud environments.
π΄ Research Reveals 75% of CISOs Are Worried Too Many Application Vulnerabilities Leak Into Production, Despite a Multi-Layered Security Approach π΄
π Read
via "Dark Reading".
79% of CISOs say continuous runtime vulnerability management is an essential capability to keep up with the expanding complexity of modern multi-cloud environments.π Read
via "Dark Reading".
Dark Reading
Research Reveals 75% of CISOs Are Worried Too Many Application Vulnerabilities Leak Into Production, Despite a Multi-Layered Securityβ¦
79% of CISOs say continuous runtime vulnerability management is an essential capability to keep up with the expanding complexity of modern multi-cloud environments.
π΄ Intel Chipset Firmware Actively Targeted by Conti Group π΄
π Read
via "Dark Reading".
Conti threat actors are betting chipset firmware is updated less frequently than other software β and winning big, analysts say.π Read
via "Dark Reading".
Dark Reading
Intel Chipset Firmware Actively Targeted by Conti Group
Conti threat actors are betting chipset firmware is updated less frequently than other software β and winning big, analysts say.
π΄ Cerberus Sentinel Completes Acquisition of Creatrix, Inc. π΄
π Read
via "Dark Reading".
U.S. cybersecurity services firm expands security and identity management services with woman-owned business.π Read
via "Dark Reading".
Dark Reading
Cerberus Sentinel Completes Acquisition of Creatrix, Inc.
U.S. cybersecurity services firm expands security and identity management services with woman-owned business.
βΌ CVE-2022-22556 βΌ
π Read
via "National Vulnerability Database".
Dell PowerStore contains an Uncontrolled Resource Consumption Vulnerability in PowerStore User Interface. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to the Denial of Service.π Read
via "National Vulnerability Database".
βΌ CVE-2022-26867 βΌ
π Read
via "National Vulnerability Database".
PowerStore SW v2.1.1.0 supports the option to export data to either a CSV or an XLSX file. The data is taken as is, without any validation or sanitization. It allows a malicious, authenticated user to inject payloads that might get interpreted as formulas by the corresponding spreadsheet application that is being used to open the CSV/XLSX file.π Read
via "National Vulnerability Database".
βΌ CVE-2021-33473 βΌ
π Read
via "National Vulnerability Database".
An argument injection vulnerability in Dragonfly Ruby Gem v1.3.0 allows attackers to read and write arbitrary files when the verify_url option is disabled. This vulnerability is exploited via a crafted URL.π Read
via "National Vulnerability Database".
βΌ CVE-2022-26869 βΌ
π Read
via "National Vulnerability Database".
Dell PowerStore versions 2.0.0.x, 2.0.1.x and 2.1.0.x contains an open port vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to information disclosure and arbitrary code execution.π Read
via "National Vulnerability Database".
βΌ CVE-2022-26868 βΌ
π Read
via "National Vulnerability Database".
Dell EMC PowerStore versions 2.0.0.x, 2.0.1.x, and 2.1.0.x are vulnerable to a command injection flaw. An authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable application. Exploitation may lead to a system takeover by an attacker.π Read
via "National Vulnerability Database".
βΌ CVE-2022-29718 βΌ
π Read
via "National Vulnerability Database".
Caddy v2.4 was discovered to contain an open redirect vulnerability. A remote unauthenticated attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links.π Read
via "National Vulnerability Database".
βΌ CVE-2022-22557 βΌ
π Read
via "National Vulnerability Database".
PowerStore contains Plain-Text Password Storage Vulnerability in PowerStore X & T environments running versions 2.0.0.x and 2.0.1.x A locally authenticated attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable application with privileges of the compromised account.π Read
via "National Vulnerability Database".
βΌ CVE-2022-32250 βΌ
π Read
via "National Vulnerability Database".
net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able to create user/net namespaces) to escalate privileges to root because an incorrect NFT_STATEFUL_EXPR check leads to a use-after-free.π Read
via "National Vulnerability Database".
βΌ CVE-2022-26866 βΌ
π Read
via "National Vulnerability Database".
Dell PowerStore Versions before v2.1.1.0. contains a Stored Cross-Site Scripting vulnerability. A high privileged network attacker could potentially exploit this vulnerability, leading to the storage of malicious HTML or JavaScript codes in a trusted application data store. When a victim user accesses the data store through their browsers, the malicious code gets executed by the web browser in the context of the vulnerable web application. Exploitation may lead to information disclosure, session theft, or client-side request forgery.π Read
via "National Vulnerability Database".
βΌ CVE-2022-29085 βΌ
π Read
via "National Vulnerability Database".
Dell Unity, Dell UnityVSA, and Dell Unity XT versions prior to 5.2.0.0.5.173 contain a plain-text password storage vulnerability when certain off-array tools are run on the system. The credentials of a user with high privileges are stored in plain text. A local malicious user with high privileges may use the exposed password to gain access with the privileges of the compromised user.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42877 βΌ
π Read
via "National Vulnerability Database".
TOTOLINK EX1200T V4.1.2cu.5215 contains a denial of service vulnerability in function RebootSystem of the file lib/cste_modules/system which can reboot the system.π Read
via "National Vulnerability Database".
βΌ CVE-2022-29084 βΌ
π Read
via "National Vulnerability Database".
Dell Unity, Dell UnityVSA, and Dell Unity XT versions before 5.2.0.0.5.173 do not restrict excessive authentication attempts in Unisphere GUI. A remote unauthenticated attacker may potentially exploit this vulnerability to brute-force passwords and gain access to the system as the victim. Account takeover is possible if weak passwords are used by users.π Read
via "National Vulnerability Database".