Aggregator

CVE-2023-5878 | Honeywell OneWireless Network Wireless Device Manager up to 322.2/330.1 Firmware Update command injection(link is external)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability was found in Honeywell OneWireless Network Wireless Device Manager up to 322.2/330.1 and classified as critical. This issue affects some unknown processing of the component Firmware Update Handler. The manipulation leads to command injection. The identification of this vulnerability is CVE-2023-5878. The attack may be initiated remotely. There is no exploit available.
vuldb.com

CVE-2025-1086 | Safetytest Cloud-Master Server up to 1.1.1 /static/ path traversal(link is external)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability has been found in Safetytest Cloud-Master Server up to 1.1.1 and classified as critical. This vulnerability affects unknown code of the file /static/. The manipulation leads to path traversal: '../filedir'. This vulnerability was named CVE-2025-1086. The attack can be initiated remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way. It is recommended to apply restrictive firewalling. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com

Hackers Exploiting ScreenConnect RMM Tool to Establish Persistence(link is external)

Cyber Security News
2 months 2 weeks ago

Threat actors have been leveraging the legitimate Remote Monitoring and Management (RMM) tool, ScreenConnect, to establish persistence in their cyberattacks. This trend shows the evolving tactics of hackers who exploit trusted software to gain unauthorized access to systems. ScreenConnect, now known as ConnectWise Control, is a widely used RMM tool that allows IT teams to […]

The post Hackers Exploiting ScreenConnect RMM Tool to Establish Persistence appeared first on Cyber Security News.

Tushar Subhra Dutta

CVE-2025-1085 | Animati PACS up to 1.24.12.09.03 /login cross site scripting(link is external)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability, which was classified as problematic, was found in Animati PACS up to 1.24.12.09.03. This affects an unknown part of the file /login. The manipulation of the argument p leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-1085. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com

Expel expands SIEM capabilities to meet mounting data storage needs(link is external)

Help Net Security
2 months 2 weeks ago

Expel announced expanded security information and event management (SIEM) coverage, including a new low-cost data lake offering, allowing customers to meet compliance and data storage requirements more effectively while strengthening their overall security posture. Additionally, Expel extended integration coverage and support for several industry-leading SIEM and extended detection and response (XDR) products, including Sumo Logic Cloud SIEM and CrowdStrike Falcon LogScale environments. “Organizations are navigating an increasingly complex landscape when it comes to the balance … More →

The post Expel expands SIEM capabilities to meet mounting data storage needs appeared first on Help Net Security.

Industry News

Fake Google Chrome Sites Distribute ValleyRAT Malware via DLL Hijacking(link is external)

The Hackers News
2 months 2 weeks ago
Bogus websites advertising Google Chrome have been used to distribute malicious installers for a remote access trojan called ValleyRAT. The malware, first detected in 2023, is attributed to a threat actor tracked as Silver Fox, with prior attack campaigns primarily targeting Chinese-speaking regions like Hong Kong, Taiwan, and Mainland China. "This actor has increasingly targeted key roles
The Hacker News

Managed ad