latest vulnerabilities

 

Microsoft Exchange Server Remote Code Execution Vulnerability

Microsoft Exchange Server Remote Code Execution VulnerabilityCVE nameCVE-2023-21707Severity/CVSS ScoreHighCVSS:8.8Exploitation Status_________________DescriptionThe vulnerability allows attackers to execute arbitrary code and gain unauthorized…
Read More

Veeam Vulnerability Allows to Encrypted Credentials and Execute Arbitrary Code

Veeam vulnerability allows to encrypted credentials and execute arbitrary codeCVE nameCVE-2023-27532Severity/CVSS ScoreHighCVSS:7.5Exploitation StatusExploited by FIN7DescriptionAn attacker exploits this vulnerability to…
Read More

Deserialization Vulnerability in VMware

Deserialization Vulnerability in VMware.CVE nameCVE-2023-20864Severity/CVSS ScoreCriticalCVSS: 9.8Exploitation Status___________________Description Deserialization vulnerability allows an unauthenticated actor with network access to VMware Aria Operations…
Read More

Vulnerability Exposes Apache Superset Servers to RCE Attacks

Vulnerability Exposes Apache Superset Servers to RCE AttacksCVE nameCVE-2023-27524Severity/CVSS ScoreCriticalCVSS: 9.8Exploitation StatusExploited in the wildDescription Its default credentials vulnerability allows an…
Read More

Oracle WebLogic Server Unspecified Vulnerability

Oracle WebLogic Server Unspecified VulnerabilityCVE nameCVE-2023-21839Severity/CVSS ScoreHighCVSS: 7.5Exploitation StatusExploitedDescription Exploiting this vulnerability would allow an attacker to gain unauthorized access to…
Read More

Vulnerability in Linux Kernel

Vulnerability in Linux KernelCVE nameCVE-2022-0847Severity/CVSS ScoreHighCVSS: 7.8Exploitation StatusExploited in the wildDescription This vulnerability is known as Dirty Pipe,  an attacker with…
Read More

Fortinet Multiple Products Authentication Bypass Vulnerability

Fortinet Multiple Products Authentication Bypass VulnerabilityCVE nameCVE-2022-40684Severity/CVSS ScoreCriticalCVSS: 9.8Exploitation StatusExploited in the WildDescription An authentication bypass using an alternate path or channel…
Read More

Google Chrome Skia Integer Overflow Vulnerability

Google Chrome Skia Integer Overflow VulnerabilityCVE nameCVE-2023-2136Severity/CVSS ScoreHighCVSS: 7.7Exploitation StatusExploited in the Wild as Zero-DayDescription Integer overflow in Skia in Google Chrome…
Read More

Google Chromium V8 Engine Type Confusion Vulnerability (Zero-Day)

Google Chromium V8 Engine Type Confusion Vulnerability ( Zero-Day)CVE name     CVE-2023-2033Severity/CVSS ScoreCriticalCVSS: ___Exploitation StatusExploited  in the WildDescription This vulnerability allows a…
Read More

Zero-Day Vulnerability in Linux Kernel

Zero-Day Vulnerability in Linux KernelCVE nameCVE-2023-0266Severity/CVSS ScoreHighCVSS: 7.8Exploitation StatusExploited in the wildDescription The vulnerability allows an attacker to execute arbitrary code or cause…
Read More