Severity Medium Analysis Summary CVE-2021-29878  IBM Business Automation Workflow 18.0, 19.0, 20.0, and 21.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary […]

Severity Medium Analysis Summary CVE-2021-41971  Apache Superset is vulnerable to SQL injection. A remote authenticated attacker could send specially-crafted SQL statements when configured with ENABLE_TEMPLATE_PROCESSING, which […]

Severity Medium Analysis Summary GuLoader is currently being distributed via spam email campaigns with archived attachments that contain the malware. The majority of malware downloaded by […]

Severity High Analysis Summary LokiBot is a commodity malware sold on underground sites which are designed to steal private data from infected machines, and then submit […]

Severity High Analysis Summary CVE-2021-3847  Linux Kernel could allow a locally authenticated attacker to gain elevated privileges on the system, caused by a flaw in the […]

Severity High Analysis Summary CVE-2021-42340  Apache Tomcat is vulnerable to a denial of service, caused by a memory leak flaw in WebSocket connections. By sending a […]

Severity High Analysis Summary CVE-2021-20599 Mitsubishi Electric MELSEC iQ-R Series could allow a remote attacker to bypass security restrictions, caused by improper authorization validation. By obtaining […]

Severity High Analysis Summary CVE-2021-41546  Siemens RUGGEDCOM ROX Devices are vulnerable to a denial of service, caused by an improper checking of disk space when writing […]

Severity Medium Analysis Summary Smokeloader is a popular bot and a veteran in its field, this piece of malware is used mainly for loading other malicious […]