Severity High Analysis Summary  CVE-2018-25020  Linux Kernel is vulnerable to a buffer overflow, caused by improper bounds checking by the BPF subsystem when there is a […]

Severity Medium Analysis Summary CVE-2021-38937  IBM PowerVM Hypervisor FW940, FW950, and FW1010 could allow an authenticated user to cause the system to crash using a specially […]

Severity Medium Analysis Summary CVE-2021-4038  McAfee Network Security Manager is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the administrator interface. A […]

Severity Medium Analysis Summary CVE-2021-44228  Apache could allow a remote attacker to execute arbitrary code on the system, caused by a flaw in the Java logging […]

Severity High Analysis Summary Log4j versions prior to 2.15.0 are subject to a remote code execution vulnerability via the ldap JNDI parser. Security guide of Apache […]

Severity High Analysis Summary Emotet researchers are warning that emotet now installs Cobalt Strike directly onto infected systems. “WARNING We have confirmed that #Emotet is dropping […]

Severity Medium Analysis Summary Widely used in both enterprise apps and cloud services, Log4j is a popular (Java logging library) developed by Apache foundation. Proof of […]

Severity High Analysis Summary An emergent and effective data-harvesting tool dubbed Oski is proliferating in North America and China, stealing online account credentials, credit card numbers, […]

Severity High Analysis Summary PatchWork, (also known as Mahabusa, White Elephant, hangOver, VICEROY TIGER, and The Dropping Elephant) is an APT that mainly conducts cyber-espionage activities […]