A vulnerability has been found in Siemens Mendix LDAP up to 1.1.1 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to ldap injection.
This vulnerability is known as CVE-2024-56841. The a…
A vulnerability, which was classified as problematic, was found in Siemens SIPROTEC 5 6MD84 (CP300), SIPROTEC 5 6MD85 (CP300), SIPROTEC 5 6MD86 (CP300), SIPROTEC 5 6MD89 (CP300), SIPROTEC 5 6MU85 (CP300), SIPROTEC 5 7KE85 (CP300), SIPROTEC 5 7SA82 (CP1…
A vulnerability, which was classified as critical, has been found in YS STEALTHONE D220 and STEALTHONE D340 up to 6.03.02. This issue affects some unknown processing of the component Web Management Page. The manipulation leads to sql injection.
The id…
A vulnerability classified as critical was found in YS STEALTHONE D220 and STEALTHONE D340 up to 6.03.02. This vulnerability affects unknown code. The manipulation leads to os command injection.
This vulnerability was named CVE-2025-20055. The attack …
A vulnerability classified as critical has been found in YS STEALTHONE D220, STEALTHONE D340 and STEALTHONE D440. This affects an unknown part of the component Web Management Page. The manipulation leads to os command injection.
This vulnerability is …
What do identity risks, data security risks and third-party risks all have in common? They are all made much worse by SaaS sprawl. Every new SaaS account adds a new identity to secure, a new place where sensitive data can end up, and a new source of th…
The Telegram-based online marketplace known as HuiOne Guarantee and its vendors have cumulatively received at least $24 billion in cryptocurrency, dwarfing the now-defunct Hydra to become the largest online illicit marketplace to have ever operated.
Th…
Threat hunters are calling attention to a new campaign that has targeted Fortinet FortiGate firewall devices with management interfaces exposed on the public internet.
“The campaign involved unauthorized administrative logins on management interfaces o…
Russia-linked threat actors have been attributed to an ongoing cyber espionage campaign targeting Kazakhstan as part of the Kremlin’s efforts to gather economic and political intelligence in Central Asia.
The campaign has been assessed to be the work o…
A vulnerability was found in AquilaCMS 1.412.13. It has been rated as critical. Affected by this issue is some unknown functionality of the file /api/v2/categories. The manipulation of the argument PostBody.populate leads to deserialization.
This vuln…
