Severity High Analysis Summary CVE-2022-23732 GitHub Enterprise Server could allow a remote authenticated attacker to gain elevated privileges on the system, caused by a path traversal […]

Severity Medium Analysis Summary CVE-2022-22356 CVSS:5.3 IBM MQ Appliance 9.2 CD and 9.2 LTS could allow an attacker to enumerate account credentials due to an observable […]

Severity Medium Analysis Summary CVE-2022-23974 Apache Pinot is vulnerable to a denial of service, caused by a flaw in the unprotected environments in the segment push […]

Severity High Analysis Summary CVE-2022-1232 Google Chrome could allow a remote attacker to execute arbitrary code on the system, caused by a type confusion in V8. […]

Severity High Analysis Summary CVE-2022-22965 Spring Framework could allow a remote attacker to execute arbitrary code on the system, caused by the improper handling of PropertyDescriptor […]

Severity Medium Analysis Summary A new AgentTesla campaign is seen targeting victims with malspam. AgentTesla is known for stealing data from different applications on victim machines, […]

Severity Medium Analysis Summary Since 2019, Guloader has been in operation as a downloader. GuLoader spreads through spam campaigns with malicious archived attachments. GuLoader downloads the […]

Severity High Analysis Summary Deep Panda is a suspected Chinese threat actor group that compromises high-tech sector companies, including government, defense, financial, and telecommunications. This group’s […]

Severity High Analysis Summary Black Guard stealer is a newly developed info stealer malware. It is often delivered by malicious software disguised as a Windows Update […]