New Initial Access features
- Initial Access Intelligence exploits have all been updated with Dockerfiles. Users no longer need to have a development environment to compile and use the scanners and exploits.
- Initial Access Intelligence exploits have all been updated to support target provisioning over stdin. Supported formats are CSV, host:port listings, and VulnCheck IP Intelligence JSON. The same formats are also supported via file. These updates were rolled into the go-exploit 1.9.2 release.
Recent Initial Access activity
JetBrains TeamCity Authentication Bypass was added on Mar, 5 and is found in 1 product.
View more detail on CVE-2024-27198
Ivanti Connect Secure XXE was added on Mar, 11 and is found in 1 product.
View more detail on CVE-2024-22024
ConnectWise ScreenConnect Authentication Bypass was added on Feb, 23 and is found in 1 product.
View more detail on CVE-2024-1709
Progress Kemp LoadMaster RCE was added on Mar, 20 and is found in 1 product.
View more detail on CVE-2024-1212
SolarWinds Security Event Manager AMF Deserialization was added on Mar, 10 and is found in 1 product.
View more detail on CVE-2024-0692
Provectus Kafka-UI Search Groovy Execute (Unpatched) was added on Mar, 6 and is found in 1 product.
View more detail on CVE-2023-52251
3 new indices
Microsoft KB list by CVE
This data is a reformatted view of microsoft-cvrf showing each CVE and its list of KBs.
MITRE CVE
MITRE CVE is a collection of publicly disclosed cybersecurity vulnerabilities by NIST that aims to identify, define and catalog publicly disclosed cybersecurity vulnerabilities.
Linux Kernel Security Advisories
Linux kernel security advisories are official notifications released by the Linux security team to address security vulnerabilities and updates in the open source Linux operating system. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
- Initial Access Release notes
- 25 new initial-access advisories
- 3 new indices
- 18 new initial-access advisories
- 7 new indices
- 32 new initial-access advisories
- 6 new indices
- 29 new Initial Access advisories
- 16 New indices
- 4 New Features
- 13 new Initial Access advisories
- 15 New indices
- 13 New indices
- 11 new Initial Access entries
- New Initial Access features
- 3 New indices including Microsoft KB list by CVE
- 5 new Initial Access entries
- Upgraded dashboard, and the VulnCheck KEV Browser
- 6 New indices including OpenCloud Vulnerability & Security Issue Database
- 5 New Initial Access artifacts
- New Features
- 3 New Advisories
- 10 New Indices
- CVE Browser
- 4 new Initial Access advisories
- New query parameters for the ipintel-* IP Intelligence indexes and more
- 33 new indices including Microsoft Security Updates
- Introducing VulnCheck IP Intelligence
- 5 new Initial Access advisories
- 17 new indices
- Recent IA activity including Apache Druid Log4Shell and ownCloud graphapi
- 17 new Indices including LG security, and several Apache projects
- 20 new Indices including mitre-attack-cve, botnets, and ransomware
- 5 new Indices including osv and cbl-mariner
- New Changelog Initial Access Details
- 20 new indices including nokia, blackberry, and iava
- Search for aliases in all indices
- 30 new indices including checkpoint, jetbrains, and bitdefender
- New indices: epss, vulnerability-aliases, and threat-actors
- More Indices: kubernetes, rustsec-advisories, hashicorp, wolfssl, zoom, and salesforce
- New Documentation Portal
- 64 New Indices
- New Index: vulncheck-nvd2 - NIST NVD V2.0 data supplemented with VulnCheck Data
- New Indices: twcert, vde, watchguard, vyaire, and ubiquiti
- New Indices: usom, zimba, zyxel, yokogawa, nodejs, and hkcert
- We have a booth at BlackHat. Come say hi!
- New Indices: schneider-electric, dell, arch, debian, rocky, and wolfi
- Fixes to the github-exploits backup
- New Indexes: vulncheck-nvd, eol and many more
- New Indexes: nist-nvd and many more
- Multi-region support for backups
- Portal Feature: Employee Invitations
- New package managers for PURL queries
- 13 New Indexes
- OPAM, Wolfi and Swift support for PURL queries
- New V3 Exploits Index
- About 25+ more Indices
- We are now a CVE Numbering Authority
- Postman collection support
- New package managers added to our PURL support
- Providing Fixed Version in OS package manager support
- New package types support for PURL: Maven, PHP, Ruby, and Rust
- 5 New Indices: ABB, AlmaLinux, Alpine Linux, AWS and Apple
- New Endpoint: Request vulns related to a PURL
- Snort Rule added to initial-access index
- New Endpoint: Request vulns related to a CPE
- New Index: Debian Security Tracker
- Welcome to the VulnCheck Changelog
- New Indices: CNVD Flaws and CNVD Bulletins
