Severity High Analysis Summary CVE-2023-28754 Apache ShardingSphere-Agent could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization in […]

Severity High Analysis Summary Shuckworm APT – aka Actinium, Armageddon, Primitive Bear, Gamaredon, and Trident Ursa – is a Russia-backed advanced persistent threat (APT) that has […]

Severity High Analysis Summary CVE-2023-2913 Rockwell Automation ThinManager ThinServer could allow a remote attacker to traverse directories on the system, caused by improper validation of user […]

Severity High Analysis Summary CVE-2023-28767 Multiple Zyxel devices could allow a remote attacker to execute arbitrary commands on the system, caused by improper input validation by […]

Severity High Analysis Summary The financially motivated cybercrime group FIN8, also known as Syssphinx, has been identified using an updated version of the Sardonic backdoor to […]

Severity High Analysis Summary Microsoft and the Ukraine Computer Emergency Response Team (CERT-UA) have issued a critical warning about the activities of the Turla hacking group, […]

Severity High Analysis Summary CVE-2023-22014 A vulnerability in Oracle PeopleSoft Enterprise PeopleTools related to the Portal component could allow a local attacker to cause high confidentiality, […]

Severity Medium Analysis Summary CVE-2023-20216 Cisoc BroadWorks could allow a local authenticated attacker to gain elevated privileges on the system, caused by an incorrect implementation of […]

Severity High Analysis Summary Lazarus APT is one of North Korea’s most sophisticated threat actors, operating since at least 2009. Initially, they concentrated on South Korea. […]