-
CISA adds known exploited vulnerability to its catalog
CISA has added a new vulnerability to its catalog of known exploited vulnerabilities, based on evidence of active exploitation. CVE-2024-3393 Palo Alto Networks PAN-OS Malformed DNS Packet Vulnerability These types…
-
Vulnerability in Apache Struts2 could allow remote code execution
MS-ISAC NOTICE NUMBER: 2024-141 ISSUE DATE(S): 12/23/2024 PREVIEW: A vulnerability has been discovered in Apache Struts2, which could allow remote code execution. Apache Struts2 is an open source web application…
-
Fortinet releases security updates for FortiManager
Fortinet has released a security update to address a vulnerability in FortiManager. A remote cyber threat actor could exploit this vulnerability to take control of an affected system. Users and…
-
Multiple vulnerabilities in Sophos Firewall could allow remote code execution
MS-ISAC NOTICE NUMBER: 2024-140 ISSUE DATE(S): 12/19/2024 PREVIEW: Several vulnerabilities have been discovered in Sophos Firewall, the most serious of which could allow remote code execution. Sophos Firewall is a…
-
Vulnerability in several Cleo products could allow remote code execution
MS-ISAC NOTICE NUMBER: 2024-139 ISSUE DATE(S): 12/12/2024 PREVIEW: A vulnerability has been discovered in several Cleo products that could allow remote code execution. Cleos LexiCom, VLTransfer and Harmony are commonly…
-
CISA adds known exploited vulnerability to its catalog
CISA has added a new vulnerability to its catalog of known exploited vulnerabilities, based on evidence of active exploitation. CVE-2024-49138 Microsoft Windows Common Log File System (CLFS) Driver Heap-Based Buffer…
-
Multiple vulnerabilities in Google Android operating system could allow remote code execution
Several vulnerabilities have been discovered in the Google Android operating system, the most serious of which could allow remote code execution in the context of the logged in user. Following…
-
CISA issues six opinions on industrial control systems
CISA released six advisories on industrial control systems (ICS) on November 26, 2024. These advisories provide timely information on current security issues, vulnerabilities, and exploits regarding ICS. ICSA-24-331-01 Schneider Electric…
-
USDA Releases Success Story Detailing Implementation of Phishing-Resistant Multi-Factor Authentication
The USDA turned to the capabilities of Fast IDentity Online (FIDO), a set of authentication protocols that use cryptographic keys on user devices, to provide a secure way to authenticate…
Search
Recent Posts
- CISA adds two known exploited vulnerabilities to its catalog
- Vulnerability in Dell RecoverPoint for Virtual Machines could allow arbitrary code execution
- Multiple vulnerabilities in Ivanti Endpoint Manager Mobile could allow remote code execution
- A vulnerability in the WatchGuard Fireware operating system could allow arbitrary code execution.
