Aggregator

CVE-2022-23695 | Aruba ClearPass Policy Manager up to 6.9.11/6.10.6 Web-based Management Interface sql injection (ARUBA-PSA-2022-013)

10 months ago

A vulnerability, which was classified as critical, was found in Aruba ClearPass Policy Manager up to 6.9.11/6.10.6. Affected is an unknown function of the component Web-based Management Interface. The manipulation leads to sql injection. This vulnerability is traded as CVE-2022-23695. It is possible to launch the attack remotely. There is no exploit available.

vuldb.com

CVE-2017-20147 | SmokePing up to 2.7.3-r1 on Gentoo ebuild denial of service

Vuldb Updates

10 months ago

A vulnerability was found in SmokePing up to 2.7.3-r1 on Gentoo. It has been classified as problematic. Affected is an unknown function of the component ebuild. The manipulation leads to denial of service. This vulnerability is traded as CVE-2017-20147. It is possible to launch the attack remotely. There is no exploit available.

vuldb.com

CVE-2022-34917 | Oracle Communications Elastic Charging Engine up to 12.0.0.7.0 Security denial of service

Vuldb Updates

10 months ago

A vulnerability was found in Oracle Communications Elastic Charging Engine up to 12.0.0.7.0. It has been rated as critical. This issue affects some unknown processing of the component Security. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2022-34917. The attack may be initiated remotely. There is no exploit available.

vuldb.com

CVE-2022-34917 | Oracle Primavera Unifier 18.8/19.12/20.12/21.12/22.12 Event Streams/Communications denial of service

Vuldb Updates

10 months ago

A vulnerability, which was classified as critical, was found in Oracle Primavera Unifier 18.8/19.12/20.12/21.12/22.12. Affected is an unknown function of the component Event Streams/Communications. The manipulation leads to denial of service. This vulnerability is traded as CVE-2022-34917. It is possible to launch the attack remotely. There is no exploit available.

vuldb.com

CVE-2023-42716 | Unisoc S8000 Telephony Service information disclosure

Vuldb Updates

10 months ago

A vulnerability was found in Unisoc SC7731E, SC9832E, SC9863A, T310, T606, T612, T616, T610, T618, T760, T770, T820 and S8000. It has been classified as problematic. This affects an unknown part of the component Telephony Service. The manipulation leads to information disclosure. This vulnerability is uniquely identified as CVE-2023-42716. It is possible to initiate the attack remotely. There is no exploit available.

vuldb.com

CVE-2023-42726 | Unisoc S8000 TeleService out-of-bounds

Vuldb Updates

10 months ago

A vulnerability was found in Unisoc SC9863A, T310, T606, T612, T616, T610, T618, T760, T770, T820 and S8000 and classified as problematic. This issue affects some unknown processing of the component TeleService. The manipulation leads to out-of-bounds read. The identification of this vulnerability is CVE-2023-42726. It is possible to launch the attack on the local host. There is no exploit available.

vuldb.com

Cybercriminals exploit AI hype to spread ransomware, malware

Bleeping Computer.

10 months ago

Threat actors linked to lesser-known ransomware and malware projects now use AI tools as lures to infect unsuspecting victims with malicious payloads. [...]

Bill Toulas

Alleged data breach of VIP Data 2025 exposing over 12 million records

Dark Web Informer - Cyber Threat Intelligence

10 months ago

Alleged data breach of VIP Data 2025 exposing over 12 million records

Dark Web Informer - Cyber Threat Intelligence

CVE-2025-46673 | NASA CryptoLib up to 1.3.1 Space Data Link Security Protocol dynamically-managed code resources (EUVD-2025-12473)

Vuldb Updates

10 months ago

A vulnerability, which was classified as problematic, was found in NASA CryptoLib up to 1.3.1. Affected is an unknown function of the component Space Data Link Security Protocol Handler. The manipulation leads to dynamically-managed code resources. This vulnerability is traded as CVE-2025-46673. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2025-46674 | NASA CryptoLib up to 1.3.1 Extended Procedures debug code (EUVD-2025-12474)

Vuldb Updates

10 months ago

A vulnerability, which was classified as problematic, has been found in NASA CryptoLib up to 1.3.1. Affected by this issue is some unknown functionality of the component Extended Procedures. The manipulation leads to active debug code. This vulnerability is handled as CVE-2025-46674. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2024-1396 | Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress title_tag cross site scripting

Vuldb Updates

10 months ago

A vulnerability, which was classified as problematic, has been found in Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress. Affected by this issue is the function title_tag. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2024-1396. The attack may be launched remotely. There is no exploit available.

vuldb.com

CVE-2024-1533 | Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress cross site scripting

Vuldb Updates

10 months ago

A vulnerability was found in Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-1533. It is possible to initiate the attack remotely. There is no exploit available.

vuldb.com

CVE-2024-3341 | Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress Shortcode aux_gmaps cross site scripting

Vuldb Updates

10 months ago

A vulnerability classified as problematic was found in Averta Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress. This vulnerability affects the function aux_gmaps of the component Shortcode Handler. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-3341. The attack can be initiated remotely. There is no exploit available.

vuldb.com

CVE-2024-3517 | Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress Accordion Widget cross site scripting

Vuldb Updates

10 months ago

A vulnerability, which was classified as problematic, was found in Shortcodes and Extra Features for Phlox Theme up to 2.15.5 on WordPress. Affected is an unknown function of the component Accordion Widget. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-3517. It is possible to launch the attack remotely. There is no exploit available.

vuldb.com

Criminal IP Set to Make Its Debut at Infosecurity Europe 2025

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform

10 months ago

Criminal IP, the AI-powered threat intelligence platform developed by AI SPERA (led by CEO Byungtak Kang), has announced its first participation in Infosecurity Europe 2025, the largest cybersecurity conference in Europe. The event will take place from June 3 to 5, 2025, at ExCeL London, where Criminal IP will engage with global security professionals at […]

The post Criminal IP Set to Make Its Debut at Infosecurity Europe 2025 appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

CyberNewswire