Severity High Analysis Summary CVE-2023-21249 CVSS:9.8 Google Android could allow a remote attacker to obtain sensitive information, caused by an error in the Framework component. By […]

Severity High Analysis Summary CVE-2023-21250 Google Android could allow a remote attacker to execute arbitrary code on the system, caused by an error in the System […]

Severity High Analysis Summary Shuckworm APT – aka Actinium, Armageddon, Primitive Bear, Gamaredon, and Trident Ursa – is a Russia-backed advanced persistent threat (APT) that has […]

Severity High Analysis Summary CVE-2023-36934 Progress Software MOVEit Transfer is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the human.aspx script, […]

Severity High Analysis Summary CVE-2023-35935 Node.js @fastify/oauth2 is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input by the state parameter. By persuading […]

Severity High Analysis Summary RedEnergy is a newly discovered cyber threat known as a “Stealer-as-a-Ransomware” that has been specifically deployed in targeted attacks against energy utilities, […]

Severity High Analysis Summary CVE-2023-20185 Cisco ACI Multi-Site CloudSec could allow a remote attacker to obtain sensitive information, caused by an issue with the implementation of […]

Severity High Analysis Summary CVE-2023-3484 GitLab could allow a remote authenticated attacker to bypass security restrictions. By sending a specially crafted request, an attacker could exploit […]

Severity Medium Analysis Summary CVE-2023-20207 Cisco Duo Authentication Proxy could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw in the logging […]