Author: Nabil Anine

CVE-2023-32828 Detail Description In vpu, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of…

Continue Reading

Executive Summary The United States National Security Agency (NSA), the U.S. Federal Bureau of Investigation (FBI), the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the Japan National Police Agency (NPA),…

Continue Reading

Moderate Advisory ID: VMSA-2023-0020 CVSSv3 Range: 6.7 Issue Date: 2023-09-26 Updated On: 2023-09-26 (Initial Advisory) CVE(s): CVE-2023-34043 Synopsis: VMware Aria Operations updates address local privilege escalation vulnerability. (CVE-2023-34043) 1. Impacted…

Continue Reading

Apple has released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected device. CISA encourages…

Continue Reading

SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These…

Continue Reading

Apply appropriate updates provided by Mozilla to vulnerable systems immediately after appropriate testing. (M1051: Update Software) Safeguard 7.1: Establish and Maintain a Vulnerability Management Process: Establish and maintain a documented…

Continue Reading

Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

Continue Reading

SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and Cyber National Mission Force (CNMF) identified the presence of indicators of compromise (IOCs) at an Aeronautical…

Continue Reading

Important Advisory ID: VMSA-2023-0019.1 CVSSv3 Range: 7.5 Issue Date: 2023-08-31 Updated On: 2023-09-05 CVE(s): CVE-2023-20900 Synopsis: VMware Tools updates address a SAML Token Signature Bypass Vulnerability (CVE-2023-20900) 1. Impacted Products…

Continue Reading