Severity High Analysis Summary Phobos Ransomware is based on the Dharma (aka CrySIS) malware that first appeared at the beginning of 2019. It spreads into several […]

Severity High Analysis Summary CVE-2021-35234 CVSS:8 Solarwinds Orion is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to multiple functions, which could […]

Severity High Analysis Summary CVE-2023-27938 CVSS:6.2 Apple GarageBand could allow a local attacker to obtain sensitive information, caused by an out-of-bounds when importing MIDI files. By […]

Severity High Analysis Summary CVE-2023-26464 Apache Log4j is vulnerable to a denial of service, caused by a flaw when using the Chainsaw or SocketAppender components. By […]

Severity High Analysis Summary Agent Tesla is a very popular spyware Trojan built for the.NET framework. Since its initial appearance in 2014, this has been deployed […]

Severity High Analysis Summary The AZORULT malware is an information stealer which was discovered in 2016. This malware steals IDs, browsing history, cookies, passwords, and other […]

Severity Medium Analysis Summary CVE-2022-41328 CVSS:6.7 Fortinet FortiOS could allow a local authenticated attacker to traverse directories on the system, caused by improper validation of user […]

Severity Medium Analysis Summary CVE-2022-22297 Fortinet FortiWeb and Fortinet FortiRecorder could allow a local authenticated attacker to obtain sensitive information, caused by incomplete filtering of one […]

Severity Medium Analysis Summary CVE-2023-25611 CVSS:4 Fortinet FortiAnalyzer could allow a remote authenticated attacker to execute arbitrary code on the system, caused by a CSV injection […]