CVE-2023-34362 – MOVEit SQL Injection
A SQL injection vulnerability has been identified in Progress MOVEit Transfer. This vulnerability has the potential to enable unauthorized access...
Zyxel CVE-2023-28771 – Command Injection
Improper error message handling in Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG firewalls creates a vulnerability that can be exploited...
Advantech WebAccess/SCADA Advisory
CVE-2023-2866 – Insufficient Type Distinction vulnerability where .zip files containing webshells can be uploaded on the SCADA server. If an...
Exploited in the wild: Barracuda Email Security Gateway Appliance (ESG) (CVE-2023-2868)
Barracuda discovered a vulnerability in their Email Security Gateway (ESG) appliance on May 19, 2023, affecting the attachment screening module....