[ News | Newsletters | Blogs | Reddits | Lists | Media | Jobs ] HoneyDB
  [ vulnerabilities | tools ]
CISA Advisories
Johnson Controls iSTAR Configuration Utility (ICU) Tool
New Guidance for SIEM and SOAR Implementation
CISA Releases One Industrial Control Systems Advisory
CISA Adds One Known Exploited Vulnerability to Catalog
New Best Practices Guide for Securing AI Data Released
Rockwell Automation FactoryTalk Historian ThingWorx
CISA Releases Two Industrial Control Systems Advisories
Advisory Update on Cyber Threat Activity Targeting Commvault’s SaaS Cloud Application (Metallic)
Lantronix Device Installer
Russian GRU Targeting Western Logistics Entities and Technology Companies
US-CERT
New Guidance for SIEM and SOAR Implementation
CISA Releases One Industrial Control Systems Advisory
New Best Practices Guide for Securing AI Data Released
CISA Releases Two Industrial Control Systems Advisories
CISA Adds One Known Exploited Vulnerability to Catalog
Advisory Update on Cyber Threat Activity Targeting Commvault’s SaaS Cloud Application (Metallic)
Russian GRU Cyber Actors Targeting Western Logistics Entities and Tech Companies
Threat Actors Target U.S. Critical Infrastructure with LummaC2 Malware
CISA Releases Thirteen Industrial Control Systems Advisories
CISA Adds Six Known Exploited Vulnerabilities to Catalog
FullDisclosure
SEC Consult SA-20250521-0 :: Multiple Vulnerabilities in eCharge Hardy Barth cPH2 and cPP2 charging stations
Structured Query Language Injection in frappe.desk.reportview.get_list Endpoint in Frappe Framework
Unauthenticated Blind SQL Injection | RSI queue management system - V 3.0 | CVE-2025-26086
CVE-2025-30072 Tiiwee X1 Alarm System - Authentication Bypass by Capture-replay
SEC Consult SA-20250506-0 :: Honeywell MB Secure Authenticated Command Injection
SEC Consult SA-20250429-0 :: Multiple Vulnerabilities in HP Wolf Security Controller and more
SEC Consult SA-20250422-0:: Local Privilege Escalation via DLL Search Order Hijacking
Session Invalidation in Economizzer Allows Unauthorized Access After Logout
Persistent Cross-Site Scripting in Economizzer Category Entry
Persistent Cross-Site Scripting in Economizzer Cashbook Entry
US CERT Weekly
Vulnerability Summary for the Week of May 19, 2025
Vulnerability Summary for the Week of May 12, 2025
Vulnerability Summary for the Week of May 5, 2025
Vulnerability Summary for the Week of April 28, 2025
Vulnerability Summary for the Week of April 21, 2025
Vulnerability Summary for the Week of April 14, 2025
Vulnerability Summary for the Week of April 7, 2025
Vulnerability Summary for the Week of March 31, 2025
Vulnerability Summary for the Week of March 24, 2025
Vulnerability Summary for the Week of March 17, 2025
Open Source Security
Re: CVE-2025-5278: Heap Buffer Overflow in GNU Coreutils sort
Re: ISC has disclosed three vulnerabilities in Kea (CVE-2025-32801, CVE-2025-32802, CVE-2025-32803)
how to unsubscribe (Re: ISC has disclosed three vulnerabilities in Kea (CVE-2025-32801, CVE-2025-32802, CVE-2025-32803))
RE: ISC has disclosed three vulnerabilities in Kea (CVE-2025-32801, CVE-2025-32802, CVE-2025-32803)
Re: ISC has disclosed three vulnerabilities in Kea (CVE-2025-32801, CVE-2025-32802, CVE-2025-32803)
ISC has disclosed three vulnerabilities in Kea (CVE-2025-32801, CVE-2025-32802, CVE-2025-32803)
CVE-2025-48734: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum's declaredClass property by default
[SECURITY ADVISORY] curl: No QUIC certificate pinning with wolfSSL
[SECURITY ADVISORY] curl: QUIC certificate check skip with wolfSSL
CVE-2025-27528: Apache InLong: JDBC Vulnerability for Invisible Character Bypass Leading to Arbitrary File Read
© 2024 RiskDiscovery | Sponsored by: Deception Logic