Severity High Analysis Summary CVE-2023-20900 VMware Tools could allow a remote attacker to bypass security restrictions, caused by improper SAML token signature verification. By utilize man-in-the-middle […]

Severity High Analysis Summary Shuckworm APT – aka Actinium, Armageddon, Primitive Bear, Gamaredon, and Trident Ursa – is a Russia-backed advanced persistent threat (APT) that has […]

Severity High Analysis Summary A threat actor believed to be associated with the hacking group FIN8 has been exploiting a vulnerability known as CVE-2023-3519 to compromise […]

Severity High Analysis Summary NjRat is a Remote Access Trojan, which is found leveraging Pastebin to deliver a second-stage payload after initial infection. There are multiple […]

Severity High Analysis Summary CVE-2023-4481 Juniper Networks Junos OS and Junos OS Evolved are vulnerable to a denial of service, caused by improper input validation vulnerability […]

Severity Medium Analysis Summary CVE-2023-4522 GitLab is vulnerable to a denial of service, caused by improper validation of user-supplied input. By committing directories containing LF character, […]

Severity Medium Analysis Summary CVE-2023-20266 Cisco Unified Communications Products could allow a remote authenticated attacker to gain elevated privileges on the system, caused by not properly […]

Severity High Analysis Summary APT-17, also known as “Bitter APT” or “DeputyDog” is a state-sponsored cyber espionage group that is believed to operate out of China. […]

Severity Medium Analysis Summary CVE-2023-4569 Linux Kernel could allow a local authenticated attacker to obtain sensitive information, caused by a memory leak flaw in the nft_set_catchall_flush […]