Full Disclosure: by date

48 messages starting May 02 22 and ending May 27 22
Date index | Thread index | Author index

Monday, 02 May

Multiple Vulnerabilities in Ruijie RG-EW Series Routers Minh-Khoa Tran
Ransom.LockBit / DLL Hijacking malvuln
Ransom.AvosLocker / Code Execution malvuln

Wednesday, 04 May

Onapsis Security Advisory 2022-0001: HTTP Request Smuggling in SAP Web Dispatcher Onapsis Research via Fulldisclosure
Onapsis Security Advisory 2022-0002: Denial of Service in SAP NetWeaver JAVA Onapsis Research via Fulldisclosure

Thursday, 05 May

SEC Consult SA-20220505-0 :: Password Reset Poisoning Attack in Craft CMS SEC Consult Vulnerability Lab, Research via Fulldisclosure
BlackBasta Ransom / Code Execution malvuln
LokiLocker Ransom / Code Execution malvuln
Conti Ransom / Code Execution malvuln
REvil Ransom / Code Execution malvuln
RedLine.Stealer / Code Execution malvuln
Conti.Ransom / Code Execution malvuln
Ransom.Conti / Code Execution malvuln
REvil.Ransom / Code Execution malvuln
Ransom.WannaCry / Code Execution malvuln
REvil.Ransom / Code Execution malvuln
Trojan.Ransom.Cryptowall / Code Execution malvuln
Trojan-Ransom.Cerber / Code Execution malvuln
Ransom.CTBLocker / Code Execution malvuln
Trojan-Ransom.LockerGoga / Code Execution malvuln

Saturday, 07 May

Trojan-Ransom.Radamant / Code Execution malvuln
Ransom.Cryakl / Code Execution malvuln
Ransom.Petya / Code Execution malvuln
Ransom.Conti / Code Execution malvuln
Ransom.Satana / Code Execution malvuln

Tuesday, 10 May

Defense in depth -- the Microsoft way (part 80): 25 (in words: TWENTY-FIVE) year old TRIVIAL bug crashes CMD.exe Stefan Kanthak
APT28 FancyBear / Code Execution malvuln

Thursday, 12 May

Re: Defense in depth -- the Microsoft way (part 80): 25 (in words: TWENTY-FIVE) year old TRIVIAL bug crashes CMD.exe Tavis Ormandy
SEC Consult SA-20220512-0 :: Sandbox Escape with Root Access & Clear-text passwords in Konica Minolta bizhub MFP Printer Terminals SEC Consult Vulnerability Lab, Research via Fulldisclosure

Friday, 13 May

some details regarding CVE-2022-24422 / iDRAC VNC authentication christian mock

Monday, 16 May

CVE-2022-24108: OpenCart's plugin "So Listing Tabs" <= 2.2.0 Deserialization of Untrusted Data Denis Mironov
APPLE-SA-2022-05-16-8 Xcode 13.4 Apple Product Security via Fulldisclosure
APPLE-SA-2022-05-16-7 Safari 15.5 Apple Product Security via Fulldisclosure
APPLE-SA-2022-05-16-4 Security Update 2022-004 Catalina Apple Product Security via Fulldisclosure
APPLE-SA-2022-05-16-1 iOS 15.5 and iPadOS 15.5 Apple Product Security via Fulldisclosure
APPLE-SA-2022-05-16-3 macOS Big Sur 11.6.6 Apple Product Security via Fulldisclosure
APPLE-SA-2022-05-16-5 watchOS 8.6 Apple Product Security via Fulldisclosure
APPLE-SA-2022-05-16-6 tvOS 15.5 Apple Product Security via Fulldisclosure
APPLE-SA-2022-05-16-2 macOS Monterey 12.4 Apple Product Security via Fulldisclosure

Wednesday, 18 May

github.com/malvuln/RansomDLLs / Catalog of current DLLs affecting vulnerable Ransomware strains. malvuln
Watch multiple LockBit Ransom get DESTROYED Mass PWNAGE at scale! malvuln
LiquidFiles - 3.4.15 - Stored XSS - CVE-2021-30140 Rodolfo Augusto do Nascimento Tavares via Fulldisclosure
PHPIPAM 1.4.4 - CVE-2021-46426 Rodolfo Augusto do Nascimento Tavares via Fulldisclosure
SEC Consult SA-20220518-0 :: Multiple Critical Vulnerabilities in SAP® Application Server, ABAP and ABAP® Platform (Different Software Components) SEC Consult Vulnerability Lab, Research via Fulldisclosure

Monday, 23 May

[tool] tplink backup decryptor. retset
Disclosing Vulnerability of CLink Office 2.0 chan chan

Friday, 27 May

[CVE-2022-0779] User Meta "um_show_uploaded_file" Path Traversal / Local File Enumeration Julien Ahrens (RCE Security)
Trojan-Ransom.Thanos / Code Execution malvuln

Previous period

Next period