Category - API Security Blog

CVE-2019-11892

A potential improper access control vulnerability exists in the JSON-RPC interface of the Bosch Smart Home Controller (SHC) before 9.8.905 that may result in reading or modification of the SHC's confi ...

May 30, 2022

P4wnP1 A.L.O.A. – Framework Which Turns A Rapsberry Pi Zero W Into A Flexible, Low-Cost Platform For Pentesting, Red Teaming And Physical Engagements

[![](https://1.bp.blogspot.com/-kAfpXyhBA0g/XOS89ORP25I/AAAAAAAAO9U/ohWV8x2YZRoU8uw-JNH2-J2fUP6QWvIXQCLcBGAs/s640/raspberry%2Bpi%2Bzero.jpg)]() P4wnP1 A.L.O.A. by MaMe82 is a framework which turns a R ...

May 30, 2022

Threat Roundup for May 3 to May 10

[![](https://4.bp.blogspot.com/-OZk_HZUnWw8/XNGon29pJLI/AAAAAAAAGNI/IY-WnPRAA6UTgQH2jV6_IyW_zGeZtU03wCK4BGAYYCw/s1600/recurring%2Bblog%2Bimages_threat%2Broundup.jpg)]() Today, Talos is publishing a gl ...

May 30, 2022

Threat Roundup for April 26 to May 3

[![](https://4.bp.blogspot.com/-OZk_HZUnWw8/XNGon29pJLI/AAAAAAAAGNI/IY-WnPRAA6UTgQH2jV6_IyW_zGeZtU03wCK4BGAYYCw/s1600/recurring%2Bblog%2Bimages_threat%2Broundup.jpg)]() Today, Talos is publishing a gl ...

May 30, 2022

CVE-2018-20487

An issue was discovered in the firewall3 component in Inteno IOPSYS 1.0 through 3.16. The attacker must make a JSON-RPC method call to add a firewall rule as an "include" and point the "path" argument ...

May 30, 2022

Onion Omega2 Login Brute-Force

OnionOS login scanner module for Onion Omega2 devices.Read More ...

May 30, 2022

Onion Omega2 Login Brute-Force

OnionOS login scanner module for Onion Omega2 devices.Read More ...

May 30, 2022

Nexus Repository Manager 3 new vulnerability has been used in mining Trojan spread, users are advised to fix as soon as possible-vulnerability warning-the black bar safety net

Recently, Ali cloud security monitoring to watchbog mining Trojan use the new exposure of the Nexus Repository Manager 3 remote code execution vulnerability(CVE-2019-7238)for attack and mining the eve ...

May 30, 2022