Severity Medium Analysis Summary CVE-2023-25768 CVSS:4.3 Jenkins Azure Credentials Plugin could allow a remote authenticated attacker to bypass security restrictions, caused by improper permission checks in […]

Severity Medium Analysis Summary CVE-2023-23848 CVSS:7.1 Jenkins Synopsys Coverity Plugin could allow a remote authenticated attacker to bypass security restrictions, caused by improper permission validation. By […]

Severity High Analysis Summary BlueNoroff is a sophisticated Advanced Persistent Threat (APT) group that has been active since at least 2014. The group is believed to […]

Severity High Analysis Summary The SideWinder Advanced Persistent Threat (APT) is a state-sponsored hacking group that operates out of China. This group is also known as […]

Severity High Analysis Summary CVE-2022-42735  Apache ShenYu could allow a remote authenticated attacker to gain elevated privileges on the system, caused by improper privilege management. An […]

Severity Medium Analysis Summary CVE-2023-20009 Cisco ESA and Secure Email and Web Manager could allow a remote authenticated attacker to gain elevated privileges on the system, […]

Severity Medium Analysis Summary CVE-2023-20075 Cisco Email Security Appliance could allow a local authenticated attacker to execute arbitrary commands on the system, caused by improper input […]

Severity High Analysis Summary In April 2021, researchers identified a new advanced threat entity, Actor210426, which was later named MurenShark. MurenShark is an APT group active […]

Severity High Analysis Summary CVE-2023-21571 CVSS:5.4 Microsoft Dynamics 365 (on-premises) is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated attacker […]