Episode 2: Behind the Scenes of a Tailor-Made Massive Phishing Campaign Part 2
Executive Summary Last summer, we investigated a massive, global phishing campaign impersonating almost 350 legitimate companies. Our continued investigation into this expansive phishing campaign revealed leaked backend source code, shedding light on the infrastructure behind the operation. This...
7AI Score
Summary IBM Storage Protect for Virtual Environments: Data Protection for Hyper-V can be affected by a security flaw in IBM WebSphere Application Server Liberty. The flaw can lead to weaker than expected security for outbound TLS connections, as described in the "Vulnerability Details" section....
5.3CVSS
5.8AI Score
0.0004EPSS
Summary IBM Storage Protect for Virtual Environments: Data Protection for VMware can be affected by a security flaw in IBM WebSphere Application Server Liberty. The flaw can lead to weaker than expected security for outbound TLS connections, as described in the "Vulnerability Details" section....
5.3CVSS
5.8AI Score
0.0004EPSS
Summary IBM Storage Protect Backup-Archive Client can be affected by security flaws in IBM WebSphere Application Server Liberty and libcurl. The flaws can lead to weaker than expected security for outbound TLS connections and bypass of security restrictions, as described in the "Vulnerability...
6.5CVSS
7AI Score
0.001EPSS
October is a self-hosted CMS platform based on the Laravel PHP Framework. The X-October-Request-Handler Header does not sanitize the AJAX handler name and allows unescaped HTML to be reflected back. There is no impact since this vulnerability cannot be exploited through normal browser...
3.1CVSS
3.9AI Score
EPSS
October is a self-hosted CMS platform based on the Laravel PHP Framework. The X-October-Request-Handler Header does not sanitize the AJAX handler name and allows unescaped HTML to be reflected back. There is no impact since this vulnerability cannot be exploited through normal browser...
3.1CVSS
EPSS
Security Bulletin: Multiple Vulnerabilities in IBM CloudPak for AIOps
Summary Multiple vulnerabilities were addressed in IBM Cloud Pak for AIOps version 4.6.0 Vulnerability Details ** CVEID: CVE-2022-25857 DESCRIPTION: **Java package org.yaml:snakeyam is vulnerable to a denial of service, caused by missing to nested depth limitation for collections. By sending a...
9.8CVSS
10AI Score
EPSS
Multiple vulnerabilities in TP-Link Omada system could lead to root access
The TP-Link Omada system is a software-defined networking solution for small to medium-sized businesses. It touts cloud-managed devices and local management for all Omada devices. The supported devices in this ecosystem vary greatly but include wireless access points, routers, switches, VPN...
8.1CVSS
9.4AI Score
0.001EPSS
CVE-2024-25637 Reflected XSS via X-October-Request-Handler Header
October is a self-hosted CMS platform based on the Laravel PHP Framework. The X-October-Request-Handler Header does not sanitize the AJAX handler name and allows unescaped HTML to be reflected back. There is no impact since this vulnerability cannot be exploited through normal browser...
3.1CVSS
EPSS
CVE-2022-3114 affecting package kernel 5.15.158.2-1
CVE-2022-3114 affecting package kernel 5.15.158.2-1. No patch is available...
5.5CVSS
6.5AI Score
0.0004EPSS
CVE-2022-45885 affecting package kernel 5.15.158.2-1
CVE-2022-45885 affecting package kernel 5.15.158.2-1. No patch is available...
7CVSS
7.3AI Score
0.0004EPSS
CVE-2022-40133 affecting package kernel 5.15.158.2-1
CVE-2022-40133 affecting package kernel 5.15.158.2-1. No patch is available...
6.3CVSS
6.5AI Score
0.0004EPSS
CVE-2022-2961 affecting package kernel 5.15.158.2-1
CVE-2022-2961 affecting package kernel 5.15.158.2-1. No patch is available...
7CVSS
6.8AI Score
0.0004EPSS
CVE-2021-3847 affecting package kernel 5.15.158.2-1
CVE-2021-3847 affecting package kernel 5.15.158.2-1. No patch is available...
7.8CVSS
7.7AI Score
0.0004EPSS
CVE-2022-4543 affecting package kernel 5.15.158.2-1
CVE-2022-4543 affecting package kernel 5.15.158.2-1. No patch is available...
5.5CVSS
5.4AI Score
0.0004EPSS
CVE-2022-38457 affecting package kernel 5.15.158.2-1
CVE-2022-38457 affecting package kernel 5.15.158.2-1. No patch is available...
6.3CVSS
6.5AI Score
0.0004EPSS
CVE-2023-23039 affecting package kernel 5.10.189.1-1
CVE-2023-23039 affecting package kernel 5.10.189.1-1. No patch is available...
5.7CVSS
7.5AI Score
0.0004EPSS
CVE-2022-3114 affecting package kernel 5.10.189.1-1
CVE-2022-3114 affecting package kernel 5.10.189.1-1. No patch is available...
5.5CVSS
7.5AI Score
0.0004EPSS
CVE-2022-3108 affecting package kernel 5.10.189.1-1
CVE-2022-3108 affecting package kernel 5.10.189.1-1. No patch is available...
5.5CVSS
7.5AI Score
0.0004EPSS
CVE-2022-45885 affecting package kernel 5.10.189.1-1
CVE-2022-45885 affecting package kernel 5.10.189.1-1. No patch is available...
7CVSS
7.5AI Score
0.0004EPSS
CVE-2022-3344 affecting package kernel 5.10.189.1-1
CVE-2022-3344 affecting package kernel 5.10.189.1-1. No patch is available...
5.5CVSS
7.5AI Score
0.0004EPSS
CVE-2022-38457 affecting package kernel 5.10.189.1-1
CVE-2022-38457 affecting package kernel 5.10.189.1-1. No patch is available...
6.3CVSS
7.5AI Score
0.0004EPSS
CVE-2022-2961 affecting package kernel 5.10.189.1-1
CVE-2022-2961 affecting package kernel 5.10.189.1-1. No patch is available...
7CVSS
7.5AI Score
0.0004EPSS
CVE-2021-3669 affecting package kernel 5.10.189.1-1
CVE-2021-3669 affecting package kernel 5.10.189.1-1. No patch is available...
5.5CVSS
9.3AI Score
0.0004EPSS
CVE-2022-38096 affecting package kernel 5.10.189.1-1
CVE-2022-38096 affecting package kernel 5.10.189.1-1. No patch is available...
6.3CVSS
7.5AI Score
0.0004EPSS
CVE-2022-0480 affecting package kernel 5.10.189.1-1
CVE-2022-0480 affecting package kernel 5.10.189.1-1. No patch is available...
5.5CVSS
7.5AI Score
0.0004EPSS
CVE-2022-40133 affecting package kernel 5.10.189.1-1
CVE-2022-40133 affecting package kernel 5.10.189.1-1. No patch is available...
6.3CVSS
7.5AI Score
0.0004EPSS
CVE-2023-26242 affecting package kernel 5.10.189.1-1
CVE-2023-26242 affecting package kernel 5.10.189.1-1. No patch is available...
7.8CVSS
7.5AI Score
0.0004EPSS
CVE-2023-0468 affecting package kernel 5.10.189.1-1
CVE-2023-0468 affecting package kernel 5.10.189.1-1. No patch is available...
4.7CVSS
7.5AI Score
0.0004EPSS
CVE-2022-4543 affecting package kernel 5.10.189.1-1
CVE-2022-4543 affecting package kernel 5.10.189.1-1. No patch is available...
5.5CVSS
7.5AI Score
0.0004EPSS
CVE-2021-3773 affecting package kernel 5.10.189.1-1
CVE-2021-3773 affecting package kernel 5.10.189.1-1. No patch is available...
9.8CVSS
9.7AI Score
0.008EPSS
CVE-2021-3847 affecting package kernel 5.10.189.1-1
CVE-2021-3847 affecting package kernel 5.10.189.1-1. No patch is available...
7.8CVSS
7.5AI Score
0.0004EPSS
7.8CVSS
7.1AI Score
0.0004EPSS
7.3CVSS
7.1AI Score
0.0005EPSS
GHSA-2C7C-3MJ9-8FQH vulnerabilities
Vulnerabilities for packages: external-secrets-operator, flux-kustomize-controller, slsa-verifier, tekton-chains, cert-manager, cloudflared, aactl, oauth2-proxy, cosign, keda, cilium-envoy, terragrunt, falco, argo-cd, rekor, dex, vexctl, kyverno, spire-server, tekton-pipelines, gitsign,...
7.5AI Score
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: terraform-provider-aws, kubeflow-katib, aactl, nghttp2, secrets-store-csi-driver, haproxy-ingress, kind, opentofu, influxd, prometheus-elasticsearch-exporter, dynamic-localpv-provisioner, prometheus, dotnet, kubewatch, dex, mc, grype, atlantis, skaffold, hugo,...
7.5CVSS
9AI Score
0.732EPSS
CVE-2024-27304 vulnerabilities
Vulnerabilities for packages: spicedb, telegraf, kine, src, amass, ferretdb, step-ca, kots, caddy, trillian, vault, temporal-server, keda, k3s, kube-bench,...
9.8CVSS
9.7AI Score
0.0004EPSS
7.5AI Score
CVE-2024-29018 vulnerabilities
Vulnerabilities for packages: wolfictl, aactl, datadog-agent, buildkitd, kargo, syft, telegraf, cadvisor, ko, prometheus, crossplane, loki, zot, conftest, dagger, grype, ctop, docker-compose, spire-server, buf, melange, trivy, kaniko, goreleaser, tkn, up,...
5.9CVSS
5.9AI Score
0.0004EPSS
GHSA-95PR-FXF5-86GV vulnerabilities
Vulnerabilities for packages: slsa-verifier, tekton-chains, falcoctl, wolfictl, aactl, policy-controller, ko, neuvector-sigstore-interface, falco, zot, zarf, vexctl, apko, skaffold, spire-server, melange, gitsign, goreleaser, flux-source-controller, tkn,...
7.5AI Score
GHSA-MQ39-4GV4-MVPX vulnerabilities
Vulnerabilities for packages: wolfictl, aactl, datadog-agent, buildkitd, kargo, syft, telegraf, cadvisor, ko, prometheus, crossplane, loki, zot, conftest, dagger, grype, ctop, docker-compose, spire-server, buf, melange, trivy, kaniko, goreleaser, tkn, up,...
7.5AI Score
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: nri-nginx, crossplane-provider-azure, cloud-sql-proxy, cni-plugins, docker-cli, prometheus-postgres-exporter, kubeflow-katib, pombump, go-licenses, gops, docker-credential-ecr-login, haproxy-ingress, kind, opentofu, cri-tools, prometheus-elasticsearch-exporter,...
7.8AI Score
0.0004EPSS
GHSA-MRWW-27VC-GGHV vulnerabilities
Vulnerabilities for packages: spicedb, telegraf, kine, src, amass, ferretdb, step-ca, kots, caddy, trillian, vault, temporal-server, keda, k3s, kube-bench,...
7.5AI Score
CVE-2024-21506 vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server, datadog-agent,...
6.7AI Score
0.0004EPSS
7.5AI Score
CVE-2024-28219 vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines-visualization-server, py3-pillow,...
6.7CVSS
7AI Score
0.0004EPSS
7.5AI Score
5.3CVSS
6.1AI Score
0.0004EPSS
4.9CVSS
6AI Score
0.0004EPSS
4.9CVSS
6AI Score
0.0004EPSS