Severity High Analysis Summary APT-C-35 (also known as “Donot APT Group”) is a cyber espionage group that has been active since at least 2013. The group […]

Severity Medium Analysis Summary CVE-2023-30529 CVSS:4.3 Jenkins Lucene-Search Plugin is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input. By persuading an authenticated […]

Severity High Analysis Summary Shuckworm APT – aka Actinium, Armageddon, Primitive Bear, Gamaredon, and Trident Ursa – is a Russia-backed advanced persistent threat (APT) that has […]

Severity High Analysis Summary CVE-2021-45960 CVSS:5.5 Expat (aka libexpat) is vulnerable to a denial of service, caused by a realloc misbehavior issue in the storeAtts function […]

Severity Medium Analysis Summary CVE-2023-0006 CVSS:6.3 Palo Alto Networks GlobalProtect app for Windows could allow a local authenticated attacker to bypass security restrictions, caused by a […]

Severity High Analysis Summary CVE-2023-28260 Microsoft .NET Core could allow a local authenticated attacker to execute arbitrary code on the system, caused by a DLL hijacking […]

Severity High Analysis Summary CVE-2023-28287 CVSS:7.8 Microsoft Publisher could allow a remote attacker to execute arbitrary code on the system. By persuading a victim to open […]

Severity High Analysis Summary CVE-2023-24860 Microsoft Defender is vulnerable to a denial of service. By sending a specially crafted request, a remote attacker could exploit this […]

Severity High Analysis Summary The Konni APT (Advanced Persistent Threat) group is a cyber espionage group that has been active since at least 2014. It is […]