Severity High Analysis Summary Royal Ransomware, a new ransomware strain, is the latest malware to add encrypting capabilities to its variants, specifically targeting VMware ESXi virtual […]

Severity High Analysis Summary CVE-2023-24997 CVSS:7.5 Apache InLong could allow a remote attacker to bypass security restrictions, caused by a Bypass Through User-Controlled Key vulnerability. By […]

Severity High Analysis Summary CVE-2022-25147 CVSS:9.8 Apache Portable Runtime (APR) could allow a remote attacker to execute arbitrary code on the system, caused by an integer […]

Severity High Analysis Summary CVE-2022-44644 CVSS:6.5 Apache Linkis could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw when used with the […]

Severity High Analysis Summary Tofsee malware has been around since 2016. Once installed on a compromised computer, it can be used to send spam emails and […]

Severity Medium Analysis Summary CVE-2022-3759 CVSS:4.3 GitLab CE/EE is vulnerable to a denial of service, caused by a flaw in Sidekiq background job. By uploading malicious […]

Severity High Analysis Summary Black Basta is a new emerging ransomware that encrypts data stored on clients’ hard drives. It has been active since April 2022 […]

Severity Medium Analysis Summary CVE-2023-24574 Dell Enterprise SONiC OS is vulnerable to a denial of service, caused by an uncontrolled resource consumption vulnerability in the authentication […]

Severity High Analysis Summary CVE-2023-22572 CVSS:7.8 Dell EMC PowerScale OneFS could allow a local authenticated attacker to obtain sensitive information, caused by insertion of sensitive information […]