Output Messenger
Company Details
Linkedin ID:
srimax
Website:
Employees number:
None employees
Number of followers:
51
NAICS:
5415
Industry Type:
Homepage:
outputmessenger.com
IP Addresses:
0
Company ID:
OUT_1191777
Scan Status:
In-progress
Output Messenger Company CyberSecurity Posture
outputmessenger.com
"Output Messenger", the leading Secure and Private Instant Messaging Solution for all businesses. Give your team the freedom to chat, talk, share and interact together from anywhere, on any devices."
Output Messenger A.I CyberSecurity Scoring
Output Messenger Risk Score (AI oriented)Between 750 and 799
Output Messenger
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Output Messenger Global Score (TPRM)XXXX
Output Messenger
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Output Messenger Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Srimax and Output Messenger: Türkiye Hackers Exploited Output Messenger Zero-Day to Drop Golang Backdoors on Kurdish Servers
Vulnerability
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: Marbled Dust Exploits Zero-Day in Output Messenger for Cyber Espionage Targeting Kurdish Military A Türkiye-linked threat actor, tracked as Marbled Dust (also known as Cosmic Wolf, Sea Turtle, and UNC1326), has been exploiting a zero-day vulnerability (CVE-2025-27920) in Output Messenger, an Indian enterprise communication platform, since April 2024. The campaign, uncovered by Microsoft Threat Intelligence, targeted Kurdish military entities in Iraq, aligning with the group’s historical focus on regional espionage. The flaw a directory traversal vulnerability in Output Messenger version 2.0.62 allowed attackers to remotely execute arbitrary files. The developer, Srimax, patched the issue in December 2024 with version 2.0.63, though its advisory did not acknowledge in-the-wild exploitation. Microsoft assessed that Marbled Dust conducted reconnaissance to identify Output Messenger users before leveraging the zero-day. The attack chain began with authenticated access to the Output Messenger Server Manager, likely obtained via DNS hijacking or typosquatted domains. Once inside, the threat actor exploited CVE-2025-27920 to deploy malicious payloads, including: - OM.vbs and OMServerService.vbs (dropped in the server startup folder) - OMServerService.exe (a Golang backdoor placed in the server’s *Users/public/videos* directory) The backdoor communicated with a hard-coded domain (api.wordinfos[.]com) for data exfiltration. On the client side, the installer executed both the legitimate OutputMessenger.exe and a second Golang backdoor (OMClientService.exe), which connected to a Marbled Dust command-and-control (C2) server. The backdoor performed a connectivity check before sending victim hostname data, with responses executed via Windows command prompt (cmd /c). Microsoft also identified a second reflected XSS vulnerability (CVE-2025-27921) in the same version but found no evidence of its exploitation. The attack marks a shift in Marbled Dust’s sophistication, suggesting escalated targeting priorities or operational urgency while maintaining its established espionage focus. The group, active since at least 2017, has previously targeted telecoms, ISPs, IT service providers, and Kurdish entities in the Middle East, North Africa, and Europe.
Output Messenger Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Output Messenger
Incidents vs IT Services and IT Consulting Industry Average (This Year)
No incidents recorded for Output Messenger in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Output Messenger in 2026.
Incident Types Output Messenger vs IT Services and IT Consulting Industry Avg (This Year)
No incidents recorded for Output Messenger in 2026.
Incident History — Output Messenger (X = Date, Y = Severity)
Output Messenger cyber incidents detection timeline including parent company and subsidiaries
Output Messenger Company Subsidiaries
"Output Messenger", the leading Secure and Private Instant Messaging Solution for all businesses. Give your team the freedom to chat, talk, share and interact together from anywhere, on any devices."
Loading...
Output Messenger Similar Companies
TELUS Digital
TELUS Digital crafts unique and enduring experiences for customers and employees, and creates future-focused digital transformations that stand the test of time. We are the brand behind the brands. Our global team members are both passionate ambassadors of our clients’ products and services, and vis
Apex Systems
Apex Systems is a leading global technology services firm that incorporates industry insights and experience to deliver solutions that fulfill our clients’ digital visions. We offer a continuum of services, specializing in strategy, transformation, and managed services across application development
Virtusa is a global product and platform engineering services company that makes experiences better with technology. We help organizations grow faster, more profitably, and more sustainably by reimagining enterprises through domain-driven solutions. We combine strategy, design, and engineering, back
LexisNexis is a leading innovator of private, secure, and authoritative Legal AI solutions that help legal and business professionals draft full documents with ease, make informed decisions faster, and deliver outstanding work and improved outcomes, all powered by trusted content. LexisNexis Legal &
Accenture in India
Accenture is a global professional services company with leading capabilities in digital, cloud and security. Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Interactive, Technology and Operations services — all powered by the w
HGS
A global leader in optimizing the customer experience lifecycle, digital transformation, and business process management, HGS is helping its clients become more competitive every day. HGS combines automation, analytics, and artificial intelligence with deep domain expertise focusing on digital custo
SoftServe
SoftServe is a premier IT consulting and digital services provider. We expand the horizon of new technologies to solve today's complex business challenges and achieve meaningful outcomes for our clients. Our boundless curiosity drives us to explore and reimagine the art of the possible. Clients conf
IBM
At IBM, we do more than work. We create. We create as technologists, developers, and engineers. We create with our partners. We create with our competitors. If you're searching for ways to make the world work better through technology and infrastructure, software and consulting, then we want to work
NTT DATA, Inc.
NTT DATA, Inc. is a trusted global innovator of business and technology services. We're committed to helping clients innovate, optimize and transform for long-term success. Our R&D investments help organizations and society move confidently and sustainably into the digital future. As a Global Top Em
.png)
Output Messenger CyberSecurity News
May 20, 2025 07:00 AM
Latest Security Advisory Critical Vulnerabilities Ivanti
Ivanti has released updates to address two vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM) version 12.5.0.0, an organization-use platform for managing...
May 19, 2025 07:00 AM
⚡ Weekly Recap: Zero-Day Exploits, Insider Threats, APT Targeting, Botnets and More
Cybersecurity leaders aren't just dealing with attacks—they're also protecting trust, keeping systems running, and maintaining their...
May 16, 2025 07:00 AM
News brief: Patch critical SAP, Samsung and chat app flaws now
A critical vulnerability, CVE-2025-31324, in SAP NetWeaver's Visual Composer development software is under attack by ransomware groups and Chinese advanced...
May 15, 2025 07:00 AM
Turkish APT Exploits Chat App Zero-Day to Spy on Iraqi Kurds
A Turkish espionage group has been using a vulnerability in a messaging app to spy on Kurdish military forces operating in Iraq.
May 13, 2025 07:00 AM
Türkiye Hackers Exploited Output Messenger Zero-Day to Drop Golang Backdoors on Kurdish Servers
CVE-2025-27920 exploited by Marbled Dust in April 2024 to breach Kurdish targets via Output Messenger.
May 13, 2025 07:00 AM
Output Messenger Zero-Day Exploited by Turkish Hackers for Iraq Spying
A Turkey-affiliated espionage group has exploited a zero-day vulnerability in Output Messenger since April 2024.
May 13, 2025 07:00 AM
APT group exploited Output Messenger Zero-Day to target Kurdish military operating in Iraq
A Türkiye-linked group used an Output Messenger zero-day to spy on Kurdish military targets in Iraq, collecting user data since April 2024.
May 13, 2025 07:00 AM
Turkish spies caught exploiting zero-day for over a year
Turkish spies exploited a zero-day bug in a messaging app to collect info on the Kurdish army in Iraq, according to Microsoft, which says the attacks began...
May 13, 2025 07:00 AM
Turkey-Aligned Hackers Targeted Iraq-Based Kurds with Zero-Day Exploit
A cyber threat actor believed to align with Turkish government interests has been observed exploiting user accounts that have not applied fixes to a...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Output Messenger CyberSecurity History Information
Official Website of Output Messenger
The official website of Output Messenger is http://outputmessenger.com/.
Output Messenger’s AI-Generated Cybersecurity Score
According to Rankiteo, Output Messenger’s AI-generated cybersecurity score is 754, reflecting their Fair security posture.
How many security badges does Output Messenger’ have ?
According to Rankiteo, Output Messenger currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has Output Messenger been affected by any supply chain cyber incidents ?
According to Rankiteo, Output Messenger has been affected by a supply chain cyber incident involving Output Messenger, with the incident ID SRISRI1767087399.
Does Output Messenger have SOC 2 Type 1 certification ?
According to Rankiteo, Output Messenger is not certified under SOC 2 Type 1.
Does Output Messenger have SOC 2 Type 2 certification ?
According to Rankiteo, Output Messenger does not hold a SOC 2 Type 2 certification.
Does Output Messenger comply with GDPR ?
According to Rankiteo, Output Messenger is not listed as GDPR compliant.
Does Output Messenger have PCI DSS certification ?
According to Rankiteo, Output Messenger does not currently maintain PCI DSS compliance.
Does Output Messenger comply with HIPAA ?
According to Rankiteo, Output Messenger is not compliant with HIPAA regulations.
Does Output Messenger have ISO 27001 certification ?
According to Rankiteo,Output Messenger is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Output Messenger
Output Messenger operates primarily in the IT Services and IT Consulting industry.
Number of Employees at Output Messenger
Output Messenger employs approximately None employees people worldwide.
Subsidiaries Owned by Output Messenger
Output Messenger presently has no subsidiaries across any sectors.
Output Messenger’s LinkedIn Followers
Output Messenger’s official LinkedIn profile has approximately 51 followers.
NAICS Classification of Output Messenger
Output Messenger is classified under the NAICS code 5415, which corresponds to Computer Systems Design and Related Services.
Output Messenger’s Presence on Crunchbase
No, Output Messenger does not have a profile on Crunchbase.
Output Messenger’s Presence on LinkedIn
Yes, Output Messenger maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/srimax.
Cybersecurity Incidents Involving Output Messenger
As of January 21, 2026, Rankiteo reports that Output Messenger has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Output Messenger has an estimated 38,438 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Output Messenger ?
Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability.
How does Output Messenger detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with microsoft threat intelligence, and containment measures with patch released (v2.0.63), removal of malicious payloads (om.vbs, omserverservice.vbs, omserverservice.exe), and remediation measures with fix for cve-2025-27920, enhanced authentication mechanisms, and enhanced monitoring with monitoring for connections to c2 domain (api.wordinfos[.]com)..
Incident Details
Can you provide details on each incident ?
Title: Marbled Dust Exploits Zero-Day in Output Messenger for Cyber Espionage
Description: A Türkiye-affiliated threat actor exploited a zero-day security flaw in an Indian enterprise communication platform called Output Messenger as part of a cyber espionage attack campaign since April 2024. The exploits resulted in the collection of related user data from targets in Iraq, specifically associated with the Kurdish military.
Date Detected: 2024-04-01
Date Resolved: 2024-12-01
Type: Cyber Espionage
Attack Vector: Zero-day Exploit (CVE-2025-27920)
Vulnerability Exploited: CVE-2025-27920 (Directory Traversal), CVE-2025-27921 (Reflected XSS - unused)
Threat Actor: Marbled Dust (aka Cosmic Wolf, Sea Turtle, Teal Kurma, UNC1326, Silicon)
Motivation: Cyber Espionage
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Vulnerability.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through DNS hijacking or typosquatted domains to intercept credentials.
Impact of the Incidents
What was the impact of each incident ?
Incident : Cyber Espionage SRISRI1767087399
Data Compromised: User data, credentials, and sensitive information
Systems Affected: Output Messenger Server Manager, Output Messenger Client
Operational Impact: Data exfiltration, unauthorized access to sensitive communications
Brand Reputation Impact: Potential reputational damage to Output Messenger
Identity Theft Risk: High (PII exposure)
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are User credentials, communication data and personally identifiable information (PII).
Which entities were affected by each incident ?
Incident : Cyber Espionage SRISRI1767087399
Entity Name: Output Messenger (Srimax)
Entity Type: Enterprise Communication Platform
Industry: Technology/Software
Location: India
Customers Affected: Kurdish military entities in Iraq, telecommunication/media/IT-service providers in the Middle East and North Africa
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Cyber Espionage SRISRI1767087399
Third Party Assistance: Microsoft Threat Intelligence
Containment Measures: Patch released (v2.0.63), removal of malicious payloads (OM.vbs, OMServerService.vbs, OMServerService.exe)
Remediation Measures: Fix for CVE-2025-27920, enhanced authentication mechanisms
Enhanced Monitoring: Monitoring for connections to C2 domain (api.wordinfos[.]com)
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through Microsoft Threat Intelligence.
Data Breach Information
What type of data was compromised in each breach ?
Incident : Cyber Espionage SRISRI1767087399
Type of Data Compromised: User credentials, communication data, personally identifiable information (PII)
Sensitivity of Data: High (military-related, PII)
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Fix for CVE-2025-27920, enhanced authentication mechanisms.
How does the company handle incidents involving personally identifiable information (PII) ?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by patch released (v2.0.63), removal of malicious payloads (om.vbs, omserverservice.vbs and omserverservice.exe).
Ransomware Information
Was ransomware involved in any of the incidents ?
Incident : Cyber Espionage SRISRI1767087399
Data Exfiltration: True
Lessons Learned and Recommendations
What lessons were learned from each incident ?
Incident : Cyber Espionage SRISRI1767087399
Lessons Learned: Zero-day exploits can be leveraged for targeted cyber espionage; reconnaissance plays a critical role in threat actor operations; timely patching is essential to mitigate risks.
What recommendations were made to prevent future incidents ?
Incident : Cyber Espionage SRISRI1767087399
Recommendations: Apply the latest patch (v2.0.63) for Output Messenger, Monitor for connections to known malicious domains (e.g., api.wordinfos[.]com), Implement multi-factor authentication (MFA) for sensitive systems, Conduct regular security audits and vulnerability assessments, Educate users on phishing and credential interception risksApply the latest patch (v2.0.63) for Output Messenger, Monitor for connections to known malicious domains (e.g., api.wordinfos[.]com), Implement multi-factor authentication (MFA) for sensitive systems, Conduct regular security audits and vulnerability assessments, Educate users on phishing and credential interception risksApply the latest patch (v2.0.63) for Output Messenger, Monitor for connections to known malicious domains (e.g., api.wordinfos[.]com), Implement multi-factor authentication (MFA) for sensitive systems, Conduct regular security audits and vulnerability assessments, Educate users on phishing and credential interception risksApply the latest patch (v2.0.63) for Output Messenger, Monitor for connections to known malicious domains (e.g., api.wordinfos[.]com), Implement multi-factor authentication (MFA) for sensitive systems, Conduct regular security audits and vulnerability assessments, Educate users on phishing and credential interception risksApply the latest patch (v2.0.63) for Output Messenger, Monitor for connections to known malicious domains (e.g., api.wordinfos[.]com), Implement multi-factor authentication (MFA) for sensitive systems, Conduct regular security audits and vulnerability assessments, Educate users on phishing and credential interception risks
What are the key lessons learned from past incidents ?
Key Lessons Learned: The key lessons learned from past incidents are Zero-day exploits can be leveraged for targeted cyber espionage; reconnaissance plays a critical role in threat actor operations; timely patching is essential to mitigate risks.
What recommendations has the company implemented to improve cybersecurity ?
Implemented Recommendations: The company has implemented the following recommendations to improve cybersecurity: Implement multi-factor authentication (MFA) for sensitive systems, Conduct regular security audits and vulnerability assessments, Educate users on phishing and credential interception risks, Monitor for connections to known malicious domains (e.g., api.wordinfos[.]com) and Apply the latest patch (v2.0.63) for Output Messenger.
References
Where can I find more information about each incident ?
Incident : Cyber Espionage SRISRI1767087399
Source: Microsoft Threat Intelligence
Incident : Cyber Espionage SRISRI1767087399
Source: Cisco Talos
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Microsoft Threat Intelligence, and Source: Cisco Talos.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Cyber Espionage SRISRI1767087399
Investigation Status: Ongoing
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Cyber Espionage SRISRI1767087399
Entry Point: DNS hijacking or typosquatted domains to intercept credentials
Reconnaissance Period: Pre-attack reconnaissance to identify Output Messenger users
Backdoors Established: Golang backdoors (OMServerService.exe, OMClientService.exe)
High Value Targets: Kurdish military entities, telecommunication/media/IT-service providers
Data Sold on Dark Web: Kurdish military entities, telecommunication/media/IT-service providers
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Cyber Espionage SRISRI1767087399
Root Causes: Unpatched Zero-Day Vulnerability (Cve-2025-27920), Lack Of Multi-Factor Authentication (Mfa), Insufficient Monitoring For Malicious C2 Communications,
Corrective Actions: Patch Management For Zero-Day Vulnerabilities, Implementation Of Mfa, Enhanced Network Monitoring For C2 Traffic, User Training On Credential Security,
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Microsoft Threat Intelligence, Monitoring for connections to C2 domain (api.wordinfos[.]com).
What corrective actions has the company taken based on post-incident analysis ?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Patch Management For Zero-Day Vulnerabilities, Implementation Of Mfa, Enhanced Network Monitoring For C2 Traffic, User Training On Credential Security, .
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident were an Marbled Dust (aka Cosmic Wolf, Sea Turtle, Teal Kurma, UNC1326 and Silicon).
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2024-04-01.
What was the most recent incident resolved ?
Most Recent Incident Resolved: The most recent incident resolved was on 2024-12-01.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were User data, credentials and and sensitive information.
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was Microsoft Threat Intelligence.
What containment measures were taken in the most recent incident ?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident were Patch released (v2.0.63), removal of malicious payloads (OM.vbs, OMServerService.vbs and OMServerService.exe).
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were User data, credentials and and sensitive information.
Lessons Learned and Recommendations
What was the most significant lesson learned from past incidents ?
Most Significant Lesson Learned: The most significant lesson learned from past incidents was Zero-day exploits can be leveraged for targeted cyber espionage; reconnaissance plays a critical role in threat actor operations; timely patching is essential to mitigate risks.
What was the most significant recommendation implemented to improve cybersecurity ?
Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was Implement multi-factor authentication (MFA) for sensitive systems, Conduct regular security audits and vulnerability assessments, Educate users on phishing and credential interception risks, Monitor for connections to known malicious domains (e.g., api.wordinfos[.]com) and Apply the latest patch (v2.0.63) for Output Messenger.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Cisco Talos and Microsoft Threat Intelligence.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing.
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an DNS hijacking or typosquatted domains to intercept credentials.
What was the most recent reconnaissance period for an incident ?
Most Recent Reconnaissance Period: The most recent reconnaissance period for an incident was Pre-attack reconnaissance to identify Output Messenger users.
.png)
Latest Global CVEs (Not Company-Specific)
Description
SummaryA command injection vulnerability (CWE-78) has been found to exist in the `wrangler pages deploy` command. The issue occurs because the `--commit-hash` parameter is passed directly to a shell command without proper validation or sanitization, allowing an attacker with control of `--commit-hash` to execute arbitrary commands on the system running Wrangler. Root causeThe commitHash variable, derived from user input via the --commit-hash CLI argument, is interpolated directly into a shell command using template literals (e.g., execSync(`git show -s --format=%B ${commitHash}`)). Shell metacharacters are interpreted by the shell, enabling command execution. ImpactThis vulnerability is generally hard to exploit, as it requires --commit-hash to be attacker controlled. The vulnerability primarily affects CI/CD environments where `wrangler pages deploy` is used in automated pipelines and the --commit-hash parameter is populated from external, potentially untrusted sources. An attacker could exploit this to: * Run any shell command. * Exfiltrate environment variables. * Compromise the CI runner to install backdoors or modify build artifacts. Credits Disclosed responsibly by kny4hacker. Mitigation * Wrangler v4 users are requested to upgrade to Wrangler v4.59.1 or higher. * Wrangler v3 users are requested to upgrade to Wrangler v3.114.17 or higher. * Users on Wrangler v2 (EOL) should upgrade to a supported major version.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle VM VirtualBox accessible data as well as unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L).
Risk Information
cvss3
Base: 8.1
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=srimax' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
