Severity Medium Analysis Summary CVE-2023-36413 Microsoft Office could allow a remote attacker to bypass security restrictions. By persuading a victim to open a specially crafted file, […]

Severity High Analysis Summary Sapphire Sleet, also known as APT38 and BlueNoroff is associated with North Korea which is regarded as a subgroup of the well-known […]

Severity High Analysis Summary CVE-2023-36038 Microsoft ASP.NET is vulnerable to a denial of service. By sending a specially crafted request, a remote attacker could exploit this […]

Severity Medium Analysis Summary CVE-2023-36031 CVSS:7.6 Microsoft Dynamics 365 (on-premises) is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated attacker […]

Severity High Analysis Summary CVE-2023-36041 CVSS:7.8 Microsoft Excel could allow a local attacker to execute arbitrary code on the system. By persuading a victim to open […]

Severity High Analysis Summary CVE-2023-36045 Microsoft Office could allow a local attacker to execute arbitrary code on the system, caused by a flaw in Graphics component. […]

Severity High Analysis Summary CVE-2023-38177 CVSS:6.1 Microsoft SharePoint Server could allow a remote authenticated attacker within the local network to execute arbitrary code on the system. […]

Severity High Analysis Summary CVE-2023-41840 CVSS:7.8 Fortinet FortiClientWindows could allow a remote authenticated attacker to gain elevated privileges on the system, caused by an untrusted search […]

Severity High Analysis Summary Ducktail’s latest campaign focuses on targeting marketing professionals within the fashion industry, in which the attackers distribute archives that contain several images […]