Category: Insights

CVE-2023-21380Detail Amended This CVE file has been updated once NVD enrichment efforts are completed. The enrichment data provided by the NVD may…

Continue Reading

CVE-2023-21397Detail Amended This CVE file has been updated once NVD enrichment efforts are completed. The enrichment data provided by the NVD may…

Continue Reading

CVE-2023-21377Detail Amended This CVE record was updated after NVD enrichment efforts were completed. The enrichment data provided by the NVD may require…

Continue Reading

VMware released a security advisory addressing multiple vulnerabilities (CVE-2023-34057, CVE-2023-34058) in VMware Tools. A cyber actor could exploit one of these vulnerabilities to take control of an affected system. CISA…

Continue Reading

Critical Advisory ID: VMSA-2023-0023 CVSSv3 Range: 4.3-9.8 Issue Date: 2023-10-25 Updated On: 2023-10-25 (Initial Advisory) CVE(s): CVE-2023-34048, CVE-2023-34056 Synopsis: VMware vCenter Server updates address out-of-bounds write and information disclosure vulnerabilities…

Continue Reading

CVE-2023-41715 Detail Description SonicOS post-authentication Improper Privilege Management vulnerability in the SonicOS SSL VPN Tunnel allows users to elevate their privileges inside the tunnel. Severity…

Continue Reading

SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and Multi-State Information Sharing and Analysis Center (MS-ISAC) are releasing this joint Cybersecurity Advisory (CSA) in response…

Continue Reading

Today, as part of the Ransomware Vulnerability Warning Pilot (RVWP), CISA launched two new resources for combating ransomware campaigns: A Known to be Used in Ransomware Campaigns column in the…

Continue Reading

SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These…

Continue Reading