-
Multiple Vulnerabilities in ChromeOS Could Allow for Arbitrary Code Execution
MS-ISAC ADVISORY NUMBER: 2023-095 DATE(S) ISSUED: 08/28/2023 OVERVIEW: Multiple vulnerabilities have been discovered in ChromeOS, the most severe of which could allow for arbitrary code execution. ChromeOS is a Linux-based…
-
Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution
MS-ISAC ADVISORY NUMBER: 2023-094 DATE(S) ISSUED: 08/23/2023 OVERVIEW: Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Google Chrome is…
-
VMSA-2023-0017
Moderate Advisory ID: VMSA-2023-0017 CVSSv3 Range: 5.3 Issue Date: 2023-08-03 Updated On: 2023-08-03 (Initial Advisory) CVE(s): CVE-2023-34037, CVE-2023-34038 Synopsis: VMware Horizon Server updates address multiple security vulnerabilities (CVE-2023-34037, CVE-2023-34038) 1.…
-
2022 Top Routinely Exploited Vulnerabilities
SUMMARY The following cybersecurity agencies coauthored this joint Cybersecurity Advisory (CSA): United States: The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Federal Bureau of Investigation (FBI)…
-
Threat Actors Exploiting Ivanti EPMM Vulnerabilities
SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA) and the Norwegian National Cyber Security Centre (NCSC-NO) are releasing this joint Cybersecurity Advisory (CSA) in response to active exploitation of CVE-2023-35078…
-
Critical vulnerabilities in Microsoft Windows operating systems
Summary New vulnerabilities continually emerge, but the best defense against attackers exploiting patched vulnerabilities is simple: keep software up to date. Rapid patching is one of the most effective and…
-
Potential for Iranian Cyber Response to U.S. Military Strike in Baghdad
Summary The Cybersecurity and Infrastructure Security Agency (CISA) is sharing the following information with the cybersecurity community as a primer for assisting in the protection of our Nation’s critical infrastructure…
-
Continued exploitation of Pulse Secure VPN vulnerability
Summary Unpatched Pulse Secure VPN servers continue to be an attractive target for bad actors. Affected organizations that have not applied the hotfix to address an arbitrary file reading vulnerability,…
-
Microsoft ends support for Windows 7 and Windows Server 2008 R2
Summary Note: This alert does not apply to federally certified voting systems running Windows 7. Microsoft will continue to provide free security updates for these systems until the 2020 elections.…
Search
Recent Posts
- Vulnerability in Dell RecoverPoint for Virtual Machines could allow arbitrary code execution
- Multiple vulnerabilities in Ivanti Endpoint Manager Mobile could allow remote code execution
- A vulnerability in the WatchGuard Fireware operating system could allow arbitrary code execution.
- Vulnerability in Cisco AsyncOS Could Allow Remote Code Execution
