-
CISA Issues Seven Opinions on Industrial Control Systems
CISA released seven advisories on industrial control systems (ICS) on October 17, 2024. These advisories provide timely information on current security issues, vulnerabilities, and exploits regarding ICS. CISA encourages users…
-
Vulnerability in Mozilla Firefox could allow execution of arbitrary code
MS-ISAC NOTICE NUMBER: 2024-115 ISSUE DATE(S): 10/10/2024 PREVIEW: A vulnerability has been discovered in Mozilla Firefox that could allow arbitrary code execution. Mozilla Firefox is a web browser used to…
-
CISA adds three known exploited vulnerabilities to its catalog
CISA has added three new vulnerabilities to its catalog of known exploited vulnerabilities, based on evidence of active exploitation. CVE-2024-23113 Format string vulnerability of several Fortinet products CVE-2024-9379 Ivanti Cloud…
-
Several vulnerabilities in Google Chrome could allow arbitrary code execution
MS-ISAC NOTICE NUMBER: 2024-109 ISSUE DATE(S): 02/10/2024 PREVIEW: Several vulnerabilities have been discovered in Google Chrome, the most serious of which could allow the execution of arbitrary code. Successful exploitation…
-
Iranian Cyber Actors Brute Force and Credential Access Activity Compromises Critical Infrastructure Organizations
Summary The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), the Communications Security Establishment Canada (CSE), the Australian Federal Police (AFP),…
-
CISA adds four known exploited vulnerabilities to its catalog
CISA has added four new vulnerabilities to its catalog of known exploited vulnerabilities, based on evidence of active exploitation. CVE-2023-25280 D-Link DIR-820 Router OS Command Injection Vulnerability CVE-2020-15415 Vigor DrayTek…
-
Several vulnerabilities in PHP could allow remote code execution
MS-ISAC NOTICE NUMBER: 2024-106 ISSUE DATE(S): 09/27/2024 PREVIEW: Several vulnerabilities have been discovered in PHP, the most serious of which could allow remote code execution. PHP is a programming language…
-
CISA Adds Known, Exploited Vulnerability to Its Catalog
CISA has added a new vulnerability to its catalog of known exploited vulnerabilities, based on evidence of active exploitation. CVE-2024-8963 Ivanti Cloud Services Appliance (CSA) Path Traversal Vulnerability These types…
-
CISA Adds Five Known and Exploited Vulnerabilities to Its Catalog
CISA has added five new vulnerabilities to its catalog of known exploited vulnerabilities, based on evidence of active exploitation. CVE-2024-27348 Apache HugeGraph Server Improper Access Control Vulnerability CVE-2020-0618 Microsoft SQL…
Search
Recent Posts
- How to Align AI Initiatives with Cybersecurity Policies in 2025
- Vulnerability in Microsoft Windows Server Update Services (WSUS) could allow remote code execution
- Several vulnerabilities in Ivanti products could allow remote code execution
- Several vulnerabilities in Aria VMware operations and VMware tools could allow a climbing of privileges
