-
CISA Publishes Twenty-One Advisories on Industrial Control Systems
On July 11, 2024, CISA published twenty-one advisories on industrial control systems (ICS). These advisories provide up-to-date information on current security issues, vulnerabilities, and exploits surrounding ICS. Siemens ICSA-24-193-01 Remote…
-
CISA Red Teams Operations Against a Federal Civilian Executive Branch Organization Highlights the Necessity of Defense-in-Depth
EXECUTIVE SUMMARY In early 2023, the Cybersecurity and Infrastructure Security Agency (CISA) conducted a SILENTSHIELD red team assessment against a Federal Civilian Executive Branch (FCEB) organization. During SILENTSHIELD assessments, the…
-
Peoples Republic of China (PRC) Ministry of State Security APT40 Tradecraft in Action
This advisory, authored by the Australian Signals Directorates Australian Cyber Security Centre (ASDs ACSC), the United States Cybersecurity and Infrastructure Security Agency (CISA), the United States National Security Agency (NSA),…
-
Juniper Networks Issues Security Bulletin for Junos OS: SRX Series
Juniper Networks has released a security bulletin to address a vulnerability in Junos OS: SRX Series. An attacker could exploit this vulnerability to cause a denial of service. Users and…
-
Vulnerability in OpenSSH could allow remote code execution
MS-ISAC NOTICE NUMBER: 2024-076 PUBLICATION DATES: 01/07/2024 PREVIEW: A vulnerability has been discovered in OpenSSH that could allow remote code execution. OpenSSH is a suite of secure network utilities based…
-
OMSA-2024-0001
Review ID: OMSA-2024-0001 CVSSv3 range: 6.8 Date of issue: 06/27/2024 Updated: 2024-06-27 (Initial notice) CVE(s): CVE-2024-22260 Synopsis: VMware Workspace One UEM Update Addresses Information Exposure Vulnerability (CVE-2024-22260)
-
Multiple Vulnerabilities in Progress MOVEit Products Could Allow Authentication Bypass
MS-ISAC NOTICE NUMBER: 2024-075 PUBLICATION DATES: 06/25/2024 PREVIEW: Several vulnerabilities have been discovered in MOVEit products, which could allow authentication to be bypassed. MOVEit Gateway acts as a proxy between…
-
Juniper Networks Releases Security Bulletin for Juniper Secure Analytics
Juniper Networks has released a security bulletin to address several vulnerabilities affecting Juniper Secure Analytics optional applications. A cyber threat actor could exploit one of these vulnerabilities to take control…
-
Several vulnerabilities in VMware products could allow remote code execution
Apply appropriate updates provided by Broadcom to vulnerable systems immediately after appropriate testing. (M1051: software update) Backup 7.1: Establish and maintain a vulnerability management process: Establish and maintain a documented…
Search
Recent Posts
- Vulnerability in Dell RecoverPoint for Virtual Machines could allow arbitrary code execution
- Multiple vulnerabilities in Ivanti Endpoint Manager Mobile could allow remote code execution
- A vulnerability in the WatchGuard Fireware operating system could allow arbitrary code execution.
- Vulnerability in Cisco AsyncOS Could Allow Remote Code Execution
