In March, Microsoft Exchange servers worldwide were hit by Black Kingdom [1, 2] and DearCry ransomware as part of a massive wave of attacks directed at systems unpatched against ProxyLogon vulnerabilities (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-27065). Last but not leas...
The CVE Automation Working Group is piloting use of git to share information about public vulnerabilities. The goal is to learn not only what features are necessary to support the "plumbing" of sending and receiving the data, but also which attributes and metadata are needed in the CVE format...
This version involves vulnerabilities in open-source software, third-party software, and Huawei-developed code. See Table 1 and Table 2. Table 1 Fixed open source and third-party software vulnerabilities Software Version CVE Number CVSS Score Vulnerability Description Resolved In OpenSSL 1.1.1n ...
A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-)) - cfalta/MicrosoftWontFixList
CVE-2022-23861 Multiple Stored Cross-Site Scripting vulnerabilities were discovered in Y Soft SAFEQ 6 Build 53. Multiple fields in the YSoft SafeQ web application can be used to inject malicious inputs that, due to a lack of output sanitization, result in the execution of arbitrary JS code...
Showing a limited preview of this publication: APPENDIXEListof CritiCaL rdp vuLnerabiLitiesCVE-IDsRDP VulnerabilitiesSeverity CVE-2019-0708https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-070810CVE-2019-1226https://cve.mitre.org/cgi-bin/cvename.cgi?name=2019-1226 10CVE-2020-0609https...
SecLists.org archive for the Full Disclosure mailing list: A public, vendor-neutral forum for detailed discussion of vulnerabilities and exploitation techniques, as well as tools, papers, news, and events of interest to the community. The relaxed atmosp
SecPGH:Security videos showcasing security talent in Pittsburgh, PA VulnPatches:Providing vulnerability patches for named vulnerabilities Nexpose Management:Scripts to help people get the most out of R7 Nexpose Nexpose Checks:Custom Vulnerability checks for R7 Nexpose ...
CVE/vulnerabilityCyber Security NewsSecurity UpdatesTop 10Vulnerability Published on January 21, 2020 By GurubaranAPI Security AuditMITRE has released a list of Top 25 Most Dangerous Software Errors (CWE Top 25) that are widely spread and leads to serious vulnerabilities. The list was generated ...
CVE cache of the official CVE List in CVE JSON 5 format - cvelistV5/cves/2023/45xxx/CVE-2023-45755.json at cve_2024-12-14_0300Z · CVEProject/cvelistV5