Cisco NX-OS Software denial of service | CVE-2023-20168
NAME__________Cisco NX-OS Software denial of servicePlatforms Affected:Cisco Nexus 3000 Series Switches Cisco MDS 9000 Series Multilayer Switches Cisco Nexus 6000...
7-Zip code execution | CVE-2023-31102
NAME__________7-Zip code executionPlatforms Affected:7-Zip 7-ZipRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________7-Zip could allow a remote attacker to execute arbitrary code on the system,...
Apache Airflow information disclosure | CVE-2023-37379
NAME__________Apache Airflow information disclosurePlatforms Affected:Apache Airflow 2.6.3Risk Level:7.6Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apache could allow a remote authenticated attacker to obtain sensitive information,...
Apache Airflow, Airflow SMTP Provider and Airflow IMAP Provider man-in-the-middle | CVE-2023-39441
NAME__________Apache Airflow, Airflow SMTP Provider and Airflow IMAP Provider man-in-the-middlePlatforms Affected:Apache Airflow 2.6.3 Apache Airflow SMTP Provider 1.2.0 Apache Airflow...
Cisco Application Policy Infrastructure Controller (APIC) security bypass | CVE-2023-20230
NAME__________Cisco Application Policy Infrastructure Controller (APIC) security bypassPlatforms Affected:Cisco Application Policy Infrastructure ControllerRisk Level:5.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Cisco Application Policy Infrastructure Controller...
Flexi Access module for Drupal code execution |
NAME__________Flexi Access module for Drupal code executionPlatforms Affected:Drupal Flexi Access module for Drupal 7.x-1.2Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Flexi Access module for...
7-Zip code execution | CVE-2023-40481
NAME__________7-Zip code executionPlatforms Affected:7-Zip 7-ZipRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________7-Zip could allow a remote attacker to execute arbitrary code on the system,...
Data field module for Drupal security bypass |
NAME__________Data field module for Drupal security bypassPlatforms Affected:Drupal Data field Module for Drupal 1.0.15Risk Level:6.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Data field module for...
ACL module for Drupal code execution |
NAME__________ACL module for Drupal code executionPlatforms Affected:Drupal ACL module for Drupal 7.x-1.3Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ACL module for Drupal could allow...
Shorthand module for Drupal information disclosure |
NAME__________Shorthand module for Drupal information disclosurePlatforms Affected:Drupal Shorthand module for Drupal 4.0.2Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Shorthand module for Drupal could allow...
CISA: Atlassian Releases Security Update for Confluence Server and Data Center
Atlassian Releases Security Update for Confluence Server and Data Center Atlassian has released its security bulletin for August 2023 to...
CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on August 17, 2023. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog,...
CISA: CISA Releases JCDC Remote Monitoring and Management (RMM) Cyber Defense Plan
CISA Releases JCDC Remote Monitoring and Management (RMM) Cyber Defense Plan Today, CISA released the Remote Monitoring and Management (RMM)...
CISA: Cisco Releases Security Advisories for Multiple Products
Cisco Releases Security Advisories for Multiple Products Cisco has released security advisories for vulnerabilities affecting multiple Cisco products. A cyber...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog,...
CISA: Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS
Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS Juniper has released a security advisory to address vulnerabilities in...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on August 22, 2023. These...
CISA: CISA, NSA, and NIST Publish Factsheet on Quantum Readiness
CISA, NSA, and NIST Publish Factsheet on Quantum Readiness Today, the Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog,...
WinRAR zero-day exploited since April to hack trading accounts
A WinRar zero-day vulnerability tracked as CVE-2023-38831 was actively exploited to install malware when clicking on harmless files in an...
The MOVEit hack and what it taught us about application security
When a cyberattack like the 2023 MOVEit hack makes global news headlines, attention often focuses on the names of the...
Hosting firm says it lost all customer data after ransomware attack
Danish hosting firms CloudNordic and AzeroCloud have suffered ransomware attacks, causing the loss of the majority of customer data and...
FBI: Lazarus hackers readying to cash out $41 million in stolen crypto
The FBI warned that North Koreans are likely readying to cash out tens of millions worth of stolen cryptocurrency out...
