Category: CVSS3 - CRITICAL
CRLF Injection

Undici is is vulnerable to CRLF injection. The vulnerability is due to improper request header `content-type` sanitization in `lib/core/request.js`. An attacker can exploit this vulnerability to prefo ...

Continue Reading

August 16, 2022

Security Bulletin: Multiple Vulnerabilities in Node.js affect IBM Cloud Pak System

## Summary Multiple Vulnerabilities have been found in Node.js used by the Common UI in Cloud Pak System. Cloud Pak System has addressed these vulnerabilities. ## Vulnerability Details ** CVEID: **[CV ...

Continue Reading

August 16, 2022

Exploit for Vulnerability in Microsoft

# CVE-2022-26809-POC metasploit module for CVE-2022-26809 window...Read More ...

Continue Reading

August 15, 2022

Vulnerability Management news and publications #2

Hello everyone! This is the second episode of Vulnerability Management news and publications. In fact, this is a collection of my posts from the [avleonovcom]() and [avleonovrus]() telegram channels. ...

Continue Reading

August 14, 2022

Hackers Behind Cuba Ransomware Attacks Using New RAT Malware

[![Cuba Ransomware](https://thehackernews.com/new-images/img/b/R29vZ2xl/AVvXsEjG5NY6z_E3mIqws1GTNFoFKEavt9jBxtciK10htSDSQc_JECqfwKvNTPymBW0axc6McWFzM08_t78ovmJx91jcYFgquWC09fNYVXBMKenTKS08JGIU8VnHvwXE ...

Continue Reading

August 11, 2022

CVE-2022-2242

The KUKA SystemSoftware V/KSS in versions prior to 8.6.5 is prone to improper access control as an unauthorized attacker can directly read and write robot configurations when access control is not ava ...

Continue Reading

August 10, 2022

CVE-2022-33649

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability.Read More ...

Continue Reading

August 09, 2022

Microsoft Patch Tuesday, August 2022 Edition

**Microsoft** today released updates to fix a record 141 security vulnerabilities in its **Windows** operating systems and related software. Once again, Microsoft is patching a zero-day vulnerability ...

Continue Reading

August 09, 2022

CVE-2022-34715

Windows Network File System Remote Code Execution Vulnerability.Read More ...

Continue Reading

August 09, 2022

CVE-2022-30133

Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-35744.Read More ...

Continue Reading

August 09, 2022

Load more