Severity Medium Analysis Summary The affected devices do not properly handle large numbers of new incoming connections and could crash under certain circumstances. Impact Denial-of-service Affected […]

Severity Medium Analysis Summary Unencrypted communication between the configuration software and the respective device could allow an attacker to capture potential plain text communication and have […]

Severity High Analysis Summary A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server. An attacker […]

Severity High Analysis Summary A remote code execution vulnerability exists when Windows Address Book (WAB) improperly processes vcard files.To exploit the vulnerability, an attacker could send […]

Severity High Analysis Summary A remote code execution vulnerability exists in Windows Domain Name System servers when they fail to properly handle requests. An attacker who […]

Severity High Analysis Summary CVE-2020-14497  The affected product contains multiple SQL injection vulnerabilities that are vulnerable to the use of an attacker-controlled string in the construction […]

Severity High Analysis Summary Researchers have analyzed the M00nD3V Logger, a new information stealing Trojan with wide functionality. The Trojan is marketed on hacking forums and […]

Severity High Analysis Summary ServHelper that is associated with the hacking group TA505 has been seen targeting financial and retail sectors. With the help of this […]

Severity Medium Analysis Summary IBM Maximo Asset Management 7.6.0 and 7.6.1 does not invalidate session after logout which could allow a local user to impersonate another […]

Severity High Analysis Summary Researchers have analyzed a new TrickBot module that appears to have still been in development and unintentionally deployed in the wild. The […]

Severity High Analysis Summary Emotet is a Trojan that is primarily spread through spam emails (malspam). The infection may arrive either via malicious script, macro-enabled document […]

Severity High Analysis Summary The vulnerability is introduced due to the lack of authentication in a web component of the SAP NetWeaver AS for Java allowing […]

Severity Medium Analysis Summary NanoCore is high-risk trojan, a remote access tool (RAT). In most cases, this malware is proliferated using spam email campaigns. Criminals send […]

Severity High Analysis Summary FormBook is an information-stealer malware that has been active since 2016. The info-stealer malware’s capabilities include stealing credentials, capturing screenshots of victim’s […]

Severity High Analysis Summary Researchers discovered a new Mirai variant (detected as IoT.Linux.MIRAI.VWISI) that exploits nine vulnerabilities, most notable of which is CVE-2020-10173 in Comtrend VR-3033 […]

Severity Medium Analysis Summary Joker is malware that targets Android devices. A new variant of it was detected in the Google Play store by researchers. Joker […]

High Analysis Summary TrickBot is a banking Trojan which targets sensitive information and acts as a dropper for other malware. Trickbot is usually spread via malicious […]

Severity High Analysis Summary FASTCash schemes remotely compromise payment switch application servers within banks to facilitate fraudulent transactions. Lazarus has been targeting this fastcash schemes previous […]

Severity High Analysis Summary An improper authentication vulnerability in FortiMail and FortiVoiceEntreprise may allow a remote unauthenticated attacker to access the system as a legitimate user […]

Severity High Analysis Summary A new ransomware family packs multiple unique features, including to improve performance and give its operators the option to only target networked […]

Severity High Analysis Summary VMware Fusion, VMRC for Mac and Horizon Client for Mac contain a privilege escalation vulnerability due to improper XPC Client validation.Successful exploitation […]

Severity Low Analysis Summary Logix Designer Studio 5000 use a third-party XML parser that natively accepts AML and RDF files from any external entity. If exploited […]

Severity Medium Analysis Summary CVE-2020-12497 Due to insufficient input data validation while processing project files the buffer could be overflown. An attacker could use a specially […]