Severity High Analysis Summary CVE-2022-23448 CVSS:7.3 Siemens SIMATIC Energy Manager Basic and SIMATIC Energy Manager PRO could allow a local authenticated attacker to execute arbitrary code […]

Severity High Analysis Summary CVE-2022-1331 In four instances the affected product does not properly restrict references of XML external entities while processing specific project files, which […]

Severity High Analysis Summary Lazarus APT (aka AppleWorm, APT C-26, Group-77, Guardians of Peace, Hidden Cobra, Official 91, Red Dot, Term.Hermit, or Zinc) is one of […]

Severity Medium Analysis Summary CVE-2022-22391 IBM Aspera High-Speed Transfer 4.3.1 and earlier could allow an authenticated user to obtain information from non sensitive operating system files […]

Severity High Analysis Summary A new Mirai variant is making the rounds called mirai_pteamirai. The botnet exploits a vulnerability in KGUARD DVR to spread within an […]

Severity High Analysis Summary The NanoCore remote access Trojan (RAT) was first discovered in 2013 when it was being sold in underground forums. The malware has […]

Severity High Analysis Summary CVE-2022-21803 Node.js nconf module could allow a remote attacker to execute arbitrary code on the system, caused by a prototype pollution flaw […]

Severity Medium Analysis Summary Since 2016, FormBook has been active as a data-stealing malware that affects 4% of enterprises in 2020. It tracks and monitors keystrokes, […]

Severity Medium Analysis Summary CVE-2022-27629 CVSS:4.3 MicroPayments – Paid Author Subscriptions, Content, Downloads, Membership plugin for WordPress is vulnerable to cross-site request forgery, caused by improper […]