Lucene search
K

280 matches found

Talos Blog
Talos Blog
added 2023/07/20 6:0 p.m.36 views

The federal government’s cybersecurity policies are falling into place just in time to be stalled again

Welcome to this weeks edition of the Threat Source newsletter. Last week, the Biden administration released its formal roadmap for its national cybersecurity initiative meant to encourage greater investment in cybersecurity and strengthen the U.S.s critical infrastructure security and more. The...

6.8CVSS7.8AI score0.18185EPSS
Exploits0
CISA
CISA
added 2023/06/08 12:0 p.m.3 views

VMware Releases Security Update for Aria Operations for Networks

VMware has released a security update to address multiple vulnerabilities in Aria Operations for Networks Formerly vRealize Network Insight. The vulnerabilities were evaluated to fall within the critical severity range, as a malicious actor with network access may be able to perform a command...

8.9AI score
Exploits0References1
The Hacker News
The Hacker News
added 2023/05/31 5:25 a.m.73 views

Alert: Hackers Exploit Barracuda Email Security Gateway 0-Day Flaw for 7 Months

Enterprise security firm Barracuda on Tuesday disclosed that a recently patched zero-day flaw in its Email Security Gateway ESG appliances had been abused by threat actors since October 2022 to backdoor the devices. The latest findings show that the critical vulnerability, tracked as CVE-2023-286...

7.8AI score0.86956EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2023/05/24 12:0 a.m.16 views

Rockwell ArmorStart Improper Input Validation (CVE-2023-29025)

A cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user with admin privileges and network access to view user data and modify the web interface. Additionally, a malicious user could potentially cause...

5.9CVSS5.7AI score0.0062EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/05/24 12:0 a.m.21 views

Rockwell ArmorStart Improper Input Validation (CVE-2023-29026)

A cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user with admin privileges and network access to view user data and modify the web interface. Additionally, a malicious user could potentially cause...

5.9CVSS5.8AI score0.0062EPSS
Exploits0References4
CISA
CISA
added 2023/05/23 12:0 p.m.5 views

CISA and Partners Update the #StopRansomware Guide, Developed through the Joint Ransomware Task Force (JRTF)

Today, CISA, the Federal Bureau of Investigation FBI, the National Security Agency NSA, and the Multi-State Information Sharing and Analysis Center MS-ISAC published an updated version of the StopRansomware Guide, as ransomware actors have accelerated their tactics and techniques since its initia...

6.9AI score
Exploits0References8
The Hacker News
The Hacker News
added 2023/05/10 5:34 a.m.146 views

Microsoft's May Patch Tuesday Fixes 38 Flaws, Including 2 Exploited Zero-Day Bugs

Microsoft has rolled out Patch Tuesday updates for May 2023 to address 38 security flaws, including two zero-day bugs that it said are being actively exploited in the wild. Trend Micro's Zero Day Initiative ZDI said the volume is the lowest since August 2021, although it pointed out that "this...

8.1CVSS8.2AI score0.84386EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2023/05/02 12:0 a.m.39 views

Siemens SCALANCE XCM332 Allocation of Resources Without Limits or Throttling (CVE-2021-46828)

In libtirpc before 1.3.3rc1, remote attackers could exhaust the file descriptors of a process that uses libtirpc because idle TCP connections are mishandled. This can, in turn, lead to an svcrun infinite loop without accepting new connections. This plugin only works with Tenable.ot. Please visit...

7.5CVSS7.7AI score0.02088EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2023/05/02 12:0 a.m.18 views

Siemens Industrial Products Intel CPUs Missing Encryption of Sensitive Data (CVE-2020-12360)

Out of bounds read in the firmware for some IntelR Processors may allow an authenticated user to potentially enable escalation of privilege via local access. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 ...

7.8CVSS7.7AI score0.00347EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2023/04/19 9:30 a.m.79 views

U.S. and U.K. Warn of Russian Hackers Exploiting Cisco Router Flaws for Espionage

U.K. and U.S. cybersecurity and intelligence agencies have warned of Russian nation-state actors exploiting now-patched flaws in networking equipment from Cisco to conduct reconnaissance and deploy malware against select targets. The intrusions, per the authorities, took place in 2021 and targete...

9CVSS9.4AI score0.21424EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2023/04/18 8:15 p.m.27 views

CVE-2023-22000

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.44 and Prior to 7.0.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

4.6CVSS6.6AI score0.00309EPSS
Exploits0References2
CVE
CVE
added 2023/04/18 7:54 p.m.121 views

CVE-2023-21896

CVE-2023-21896 affects Oracle Solaris NSSwitch on Solaris 10 and 11. The vulnerability, described as difficult to exploit, allows a low-privileged attacker with logon to compromise Solaris and can lead to a full takeover. The CVSS v3.1 base score is 7.0 (Impact: Confidentiality, Integrity, Availa...

7CVSS6.7AI score0.00169EPSS
Exploits0References1Affected Software1
Wallarm Lab
Wallarm Lab
added 2023/03/23 1:13 p.m.20 views

Insights into the New OWASP API Security Top-10 for CISOs

ICYMI, we recently presented A CISOs Guide to the New 2023 OWASP API Security Update. In this first of two planned webinars, Stepan Ilyin and Tim Ebbers provided an overview of what’s in and what’s out in the planned update and had a lively discussion about how this impacts your API security plan...

7AI score
Exploits0
CVE
CVE
added 2023/01/17 11:35 p.m.81 views

CVE-2023-21898

CVE-2023-21898 affects Oracle VM VirtualBox (Core). Affected: VirtualBox versions prior to 6.1.42 and prior to 7.0.6. A low-privilege, local attacker with logon can exploit this to cause a hang or a frequent crash of Oracle VM VirtualBox (complete DOS) on Windows guests (noted for VirtualBox VMs ...

5.5CVSS5.4AI score0.00334EPSS
Exploits0References2Affected Software1
Rapid7 Blog
Rapid7 Blog
added 2023/01/12 2:20 p.m.70 views

Recog Release v3.0.3

Recog Release v3.0.3, which is available now, includes updated fingerprints for Zoho ManageEngine PAM360, Password Manager Pro, and Access Manager Plus; Atlassian Bitbucket Server; and Supervisord Supervisor. It also includes new fingerprints and a number of bug fixes, all of which are detailed...

0.1AI score0.9994EPSS
Exploits29
The Hacker News
The Hacker News
added 2022/12/17 6:54 a.m.91 views

Samba Issues Security Updates to Patch Multiple High-Severity Vulnerabilities

Samba has released software updates to remediate multiple vulnerabilities that, if successfully exploited, could allow an attacker to take control of affected systems. The high-severity flaws, tracked as CVE-2022-38023, CVE-2022-37966, CVE-2022-37967, and CVE-2022-45141, have been patched in...

9.8CVSS3AI score0.04488EPSS
Exploits0
Debian CVE
Debian CVE
added 2022/10/18 12:0 a.m.24 views

CVE-2022-39423

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.38. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...

6CVSS5.8AI score0.00503EPSS
Exploits0
The Hacker News
The Hacker News
added 2022/08/25 1:24 p.m.30 views

U.S. Government Spending Billions on Cybersecurity

In recent months, the House of Representatives has been hard at work drafting various spending bills for the 2023 fiscal year. While these bills provide funding for a vast array of government programs and agencies, there was one thing that really stands out. Collectively, the bills that are makin...

7.4AI score
Exploits0
Securelist
Securelist
added 2022/08/17 1:0 p.m.15 views

Black Hat USA 2022 and DEF CON 30

Black Hat 2022 USA Briefings wrapped up this past week, along with its sister conference DEF CON 30. The DEF CON theme was a "Hacker Homecoming", and it really was a fun one. Coming back from the COVID hiatus, the conferences were enthusiastically full compared to the 2021 ghost town. Many of the...

7.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/08/17 9:0 a.m.20 views

Ransomwater confusion, does the criminal know who the victim is?

When we say that attribution is always tricky, we are obviously only seeing the half of it. Apparently sometimes even the cybercriminals are not always clear on which company they breached. Clop ransomware put out a statement that they breached Thames Water when in reality their victim was South...

Exploits0
Rows per page
Query Builder