Severity High Analysis Summary DCRat – a Russian backdoor, was initially introduced in 2018, but rebuilt and relaunched a year later. The DCRat backdoor appears to […]

Severity Medium Analysis Summary CVE-2022-45378 Apache SOAP could allow a remote attacker to execute arbitrary code on the system, caused by improper authentication validation by the […]

Severity High Analysis Summary Conti ransomware was discovered in December 2019 and is delivered via TrickBot. It’s been utilized against large companies and government institutions across […]

Severity Medium Analysis Summary CVE-2022-44590 Simple Video Embedder plugin for WordPress is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated […]

Severity High Analysis Summary CVE-2022-41701 CVSS:8.7Delta Electronics DIAEnergie is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the PutShift API module. A […]

Severity Medium Analysis Summary CVE-2022-41348 CVSS:6.1Zimbra Collaboration is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the onerror attribute of an IMG […]

Severity High Analysis Summary CVE-2022-29922 CVSS:7.5Hitachi Energy MicroSCADA is vulnerable to a denial of service, caused by improper validation in handling IEC 61850 packets. By sending […]

Severity Medium Analysis Summary CVE-2020-36605 Hitachi Infrastructure Analytics Advisor on Linux, Ops Center Analyzer on Linux, and Ops Center Viewpoint on Linux could allow a local […]

Severity High Analysis Summary CVE-2021-28052 Hitachi Content Platform could allow a remote authenticated attacker to bypass security restrictions, caused by improper authentication. By sending a specially-crafted […]