Global Network Activity Map
Real-time global network and scanning activity from open, public data sets. Updated periodically.
Sources: abuse.ch · SANS Internet Storm Center
i Real-time network and scanning activity indicators from open, public data sets. Last update: -
Priority Anti-Risks (CISA KEV)
Imperfections listed by CISA as a priority in the avoidable catalogue. The federal authorities must eliminate them within a certain timeframe - good practice for others too. Updated periodically.
Source: CISA KEV katalogs
Microsoft SharePoint Server √ Microsoft SharePoint Server Discussion of Untrusted Data Vulnerability
SimpleHelp SimpleHelp √ SimpleHelp Authentication Bypass Vulnerability
Cisco Unified Communications Manager √ Cisco Unified Communications Manager Server-Side Request Forgery (SSRF) Vulnerability
PTC Windchill and FlexPLM PTC Windchill and FlexPLM Improper Input Validation Vulnerability
Ubiquiti UniFi OS Ubiquiti UniFi OS Path Traversal Vulnerability
Lantronix EDS5000 √ Lantronix EDS5000 Code Injection Vulnerability
Ubiquiti UniFi OS √ Ubiquiti UniFi OS Improper Access Control Vulnerability
Ubiquiti UniFi OS Ubiquiti UniFi OS Improper Input Validation Vulnerability
Splunk Enterprise Splunk Enterprise Missing Authentication for Critical Function Vulnerability
Widget Factory Joomla Content Editor √ Widget Factory Joomla Content Editor Impriper Access Control Vulnerability
Lite LiteSpeed cPanel Plugin UNIX Symbolic Link (Symlink) Following Vulnerability
Cisco Catalyst SD-WAN Manager √ Cisco Catalyst SD-WAN Manager Directory or Path Traversal Vulnerability
Oracle PeopleSoft Enterprise PeopleTools Oracle PeopleSoft Enterprise PeopleTools Missing Authentication for Critical Function Vulnerability
Ivanti Sentry Ivanti Sentry OS Command Injection Vulnerability
Arista Extended Operating System Arista Extended Operating System Incomplete Comparison with Missing Factors Vulnerability
Cisco Catalyst SD-WAN Manager √ Cisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability
Google Chromium V8 √ Google Chromium V8 Out-of-Bounds Read and Write Vulnerability
Check Point Security Gateway √ Check Point Security Gateway Improper Authentication Vulnerability
Berriai LiteLM √ BerriAI LiteLM Command Injection Vulnerability
SolarWinds Serv-U √ SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability
i CISA KEV - catalogue of priority avoidable vulnerabilities The spoon in the CVE list below indicates overlap with the latest injuries.
Top 20 latest vulnerabilities
Published CVE vulnerabilities from public sources. Updated periodically.
Missing authentication for critical function
A critical function is available without authentication.
Injection of an involuntary code
Unverified data are interpreted as a program code that can change the application's performance.
Intersite scripting
The web page gets unverified content that can execute a foreign script and steal a session in the user browser.
Missing authorization
The right of access is not verified which can allow access to foreign resources.
High risk vulnerability
It is recommended to update quickly.
High risk vulnerability
It is recommended to update quickly.
Critical vulnerability
High impact - recommended update immediately.
Critical vulnerability
High impact - recommended update immediately.
Critical vulnerability
High impact - recommended update immediately.
Critical vulnerability
High impact - recommended update immediately.
High risk vulnerability
It is recommended to update quickly.
Cross-border recording in memory
The program writes data outside the dedicated memory area, which may cause a crash or allow you to execute a foreign code.
Reference of empty claim
The reference to the non-existent memory indication causes the program crash.
Buffer overflow
The data is copied without size check by overwriting the adjacent memory.
Reference of empty claim
The reference to the non-existent memory indication causes the program crash.
Crossing the road
Insufficient file path check allows access to files outside the allowed folder.
High risk vulnerability
It is recommended to update quickly.
Forgery of server-side requests (SSRF)
The server is forced to make requests for arbitrary purposes that can reveal internal resources.
Medium risk vulnerability
Plan an update.
High risk vulnerability
It is recommended to update quickly.
i The list is updated periodically from public CVE sources.
Top 20 technology news
Most popular news from global technology, security and software stories. Updated periodically.
Source: Hacker News
- 01
- 02
- 03
- 04
- 05
- 06
- 07
- 08
- 09
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
- 20
i The list is updated periodically from public sources of technology news.