An uncaught exception in Elasticsearch >= 8.4.0 and < 8.11.1 occurs when an encrypted PDF is passed to an attachment processor through the REST API. The Elasticsearch ingest node that at ...
Continue ReadingApril 02, 2024
A threat activity cluster tracked as Earth Freybug has been observed using a new malware called UNAPIMON to fly under the radar. "Earth Freybug is a cyberthreat group that has been active sin ...
Continue ReadingApril 02, 2024
VolWeb is a digital forensic memory analysis platform that leverages the power of the Volatility 3 framework. It is dedicated to aiding in investigations and incident responses. Objective The goal of ...
Continue ReadingApril 02, 2024
xz-vulnerable-honeypot An ssh honeypot with the XZ backdoor. CVE-2024-3094 TODO: hook the backdoor and/or sshd. log rsa keys for decryption. notes: - https://gist.github.com/smx-smx/a6112d54777845d389 ...
Continue ReadingApril 02, 2024
Summary IBM Business Automation Workflow is vulnerable to a Cross-Site scripting attack. Vulnerability Details ** IBM X-Force ID: 273485 DESCRIPTION: **Enterprise Security API for Java is vulnerable ...
Continue ReadingApril 02, 2024
BioTime versions 8.5.5 and 9.0.1 suffer from directory traversal and file write vulnerabilities. This exploit also achieves remote code execution on version...Read More ...
Continue ReadingApril 02, 2024
This article provides an in-depth look into two techniques used by Earth Freybug actors: dynamic-link library (DLL) hijacking and application programming interface (API) unhooking to prevent child pro ...
Continue ReadingApril 02, 2024
-= Per source details. Do not edit below this line.=- Source: ghsa-malware (78627b7277f79f6b0febc6c2efde348085a7bf7363ebc2986ac5d3e2ce2329d1) Any computer that has this package installed or running sh ...
Continue ReadingApril 02, 2024
Back to Main