ID | Votes | Profile Description |
---|
ID | Type | Votes | Profile Description |
---|---|---|---|
No associations to display |
ID | Type | Votes | Profile Description |
---|---|---|---|
No associations to display |
ID | Type | Votes | Profile Description |
---|---|---|---|
CVE-2020-0688 | Unspecified | 1 | CVE-2020-0688 is a significant vulnerability found in Microsoft Exchange Server, which pertains to memory corruption. This flaw allows for remote code execution by exploiting the fact that the application uses a static validationKey and decryptionKey (collectively known as the machineKey) by default |
CVE-2021-44228 | Unspecified | 1 | CVE-2021-44228, also known as the Log4j vulnerability, is a software flaw found in Apache Log4j, a widely used logging utility. Despite multiple attempts by Advanced Persistent Threat (APT) actors to exploit this vulnerability in the ServiceDesk system, these efforts were unsuccessful. However, it b |
CVE-2020-14750 | Unspecified | 1 | None |
CVE-2020-14882 | Unspecified | 1 | None |
CVE-2021-22205 | Unspecified | 1 | CVE-2021-22205 is a significant vulnerability in GitLab, a flaw in software design or implementation that allows for remote code execution. This vulnerability has been assigned the highest severity score (CVSS score: 10.0) due to its potential impact. The bug, which is now two years old, continues t |
CVE-2021-22941 | Unspecified | 1 | CVE-2021-22941 is a significant software vulnerability identified in Citrix ShareFile, which allows for remote code execution (RCE). This flaw was exploited by the threat actor group known as GOLD MELODY, also referred to as PROPHET SPIDER. The group has been linked to various attacks exploiting sec |
CVE-2021-26084 | Unspecified | 1 | CVE-2021-26084 is a critical vulnerability related to Atlassian's Confluence software. The flaw in the software design or implementation was first exploited as a zero-day, before its public disclosure in June 2022. It allowed remote attackers to execute code on a Confluence Server via injection atta |
CVE-2021-35464 | Unspecified | 1 | None |
CVE-2017-7504 | Unspecified | 1 | CVE-2017-7504 is a significant software vulnerability identified in the JBoss MQ Java Message Service (JMS). This flaw, rooted in software design and implementation, allows for deserialization attacks when exploited on an internet-exposed server. The vulnerability has been abused by malicious actors |
Citrix Directory Traversal Bug Cve-2019-19781 | Unspecified | 1 | None |
CVE-2024-20287 | Unspecified | 1 | None |
Source | CreatedAt | Title |
---|---|---|
CERT-EU | 6 months ago | CVE-2024-20272: Critical Flaw in Cisco Unity Connection |
MITRE | 7 months ago | Analyzing Attacker Behavior Post-Exploitation of MS Exchange | Rapid7 Blog |
SecurityIntelligence.com | 8 months ago | X-Force Research Update: Top 10 Cybersecurity Vulnerabilities of 2021 |
CERT-EU | 9 months ago | Citrix Bleed: Mass exploitation in progress (CVE-2023-4966) - Help Net Security |
CERT-EU | 10 months ago | Cyber Group 'Gold Melody' Selling Compromised Access to Ransomware Attackers |
CERT-EU | a year ago | Qualys Top 20 Exploited Vulnerabilities | Qualys Security Blog |
CISA | a year ago | 2022 Top Routinely Exploited Vulnerabilities | CISA |
DARKReading | a year ago | Attackers Exploit Citrix Zero-Day Bug to Pwn NetScaler ADC, Gateway |
MITRE | a year ago | Russian State-Sponsored Advanced Persistent Threat Actor Compromises U.S. Government Targets | CISA |
MITRE | a year ago | Ransomware 2020: Attack Trends Affecting Organizations Worldwide |
MITRE | a year ago | Iran-Based Threat Actor Exploits VPN Vulnerabilities | CISA |
MITRE | a year ago | PIONEER KITTEN: Targets & Methods [Adversary Profile] |
CISA | a year ago | Top CVEs Actively Exploited By People’s Republic of China State-Sponsored Cyber Actors | CISA |
Recorded Future | a year ago | In Before The Lock: ESXi | Recorded Future |
CISA | a year ago | Top CVEs Actively Exploited By People’s Republic of China State-Sponsored Cyber Actors | CISA |