Lucene search
K

221 matches found

CNVD
CNVD
added 2023/12/07 12:0 a.m.31 views

Dell DM5500 Operating System Command Injection Vulnerability

The Dell DM5500 is an integrated solution from Dell, Inc. It provides industry-leading deduplication, data protection solutions and multi-cloud capabilities. The Dell DM5500 suffers from an operating system command injection vulnerability that stems from a failure to properly filter construct...

7.2CVSS8.1AI score0.01589EPSS
Exploits0References1
Rapid7 Blog
Rapid7 Blog
added 2023/11/10 3:30 p.m.5 views

Be Empathetic and Hug Your CISO More!

In the rapidly evolving landscape of cloud computing, the adoption of multi-cloud environments has become a prevailing trend. Organizations increasingly turn to multiple cloud providers to harness diverse features, prevent vendor lock-in, and optimize costs. The multi-cloud approach offers...

7.4AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2023/11/10 3:30 p.m.23 views

Be Empathetic and Hug Your CISO More!

In the rapidly evolving landscape of cloud computing, the adoption of multi-cloud environments has become a prevailing trend. Organizations increasingly turn to multiple cloud providers to harness diverse features, prevent vendor lock-in, and optimize costs. The multi-cloud approach offers...

7.5AI score
Exploits0
RedHat Linux
RedHat Linux
added 2023/09/27 2:22 p.m.57 views

Important: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.13.3 security and bug fix update

Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.13.3 on Red Hat Enterprise Linux 8 from Red Hat Container Registry. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS ba...

9.8CVSS6.9AI score0.01709EPSS
Exploits1References13
Rapid7 Blog
Rapid7 Blog
added 2023/08/24 1:0 p.m.4 views

Why Your AWS Cloud Container Needs Client-Side Security

With increasingly complicated network infrastructure and organizations needing to deploy applications across various environments, cloud containers are necessary for companies to stay agile and innovative. Containers are packages of software that hold all of the necessary components for an app to...

6.2AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2023/08/24 1:0 p.m.43 views

Why Your AWS Cloud Container Needs Client-Side Security

With increasingly complicated network infrastructure and organizations needing to deploy applications across various environments, cloud containers are necessary for companies to stay agile and innovative. Containers are packages of software that hold all of the necessary components for an app to...

6.5AI score
Exploits0
The Hacker News
The Hacker News
added 2023/08/23 11:44 a.m.38 views

Agile Approach to Mass Cloud Credential Harvesting and Crypto Mining Sprints Ahead

Developers are not the only people who have adopted the agile methodology for their development processes. From 2023-06-15 to 2023-07-11, Permiso Security's p0 Labs team identified and tracked an attacker developing and deploying eight 8 incremental iterations of their credential harvesting malwa...

7.8AI score
Exploits0
RedHat Linux
RedHat Linux
added 2023/08/02 4:7 p.m.66 views

Moderate: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.13.1 security and bug fix update

Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.13.1 on Red Hat Enterprise Linux 8 from Red Hat Container Registry. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS bas...

7.5CVSS6.5AI score0.00442EPSS
Exploits0References10
Qualys Blog
Qualys Blog
added 2023/08/01 12:55 p.m.19 views

Beating the Challenge of Cloud Detection and Response with Qualys TotalCloud Deep Learning AI

Lets go beyond the limitations of configuration management-only, non-cloud-native EDR tools for threat detection & response using deep learning AI. The global adoption of cloud technology has supercharged agile innovation in virtually every business sector. As a result, organizations are now...

7.5AI score
Exploits0
RedHat Linux
RedHat Linux
added 2023/07/20 4:16 p.m.37 views

Moderate: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.10.14 security and bug fix update

Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.10.14 on Red Hat Enterprise Linux 8 from Red Hat Container Registry. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS ba...

7.5CVSS6.6AI score0.00442EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2023/07/20 4:12 p.m.49 views

Moderate: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.11.9 security and bug fix update

Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.11.9 on Red Hat Enterprise Linux 8 from Red Hat Container Registry. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS bas...

7.5CVSS6.5AI score0.00442EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2023/06/16 12:0 a.m.6 views

The vulnerability of the OpenAPI interface of the Cisco Secure Workload protection tool for multi-cloud data centers (previously known as Tetration) allows a malicious actor to escalate their privileges.

The vulnerability of the OpenAPI interface of the Cisco Secure Workload protection tool for multi-cloud data centers relates to shortcomings in role-based access control when performing operations. Exploiting this vulnerability allows a malicious actor to enhance their privileges remotely...

4.3CVSS6.5AI score0.00517EPSS
Exploits0References3Affected Software1
Malwarebytes
Malwarebytes
added 2023/05/24 5:0 a.m.15 views

CISA updates ransomware guidance

The Cybersecurity and Infrastructure Security Agency CISA has updated its StopRansomware guide to account for the fact that ransomware actors have accelerated their tactics and techniques since the original guide was released in September of 2020. The StopRansomware guide is set up as a one-stop...

7.5AI score
Exploits0
RedHat Linux
RedHat Linux
added 2023/05/23 9:17 a.m.51 views

Moderate: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.12.3 Security and Bug fix update

Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.12.3 on Red Hat Enterprise Linux 8 from Red Hat Container Registry. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS bas...

8.1CVSS6.8AI score0.14663EPSS
Exploits2References24
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/04/20 4:0 p.m.25 views

Microsoft Entra delivers 240 percent ROI, according to new Forrester study

Every day we easily move between apps and devices while identity professionals work hard behind the scenes to improve technologies that make this digital experience more secure. With nearly 50 percent of data breaches caused by stolen credentials, its important for identity professionals to arm...

6.3AI score
Exploits0
The Hacker News
The Hacker News
added 2023/03/30 11:17 a.m.39 views

Cyberstorage: Leveraging the Multi-Cloud to Combat Data Exfiltration

Multi-cloud data storage, once merely a byproduct of the great cloud migration, has now become a strategy for data management. "Multi-cloud by design," and its companion the supercloud, is an ecosystem in which several cloud systems work together to provide many organizational benefits, including...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/03/30 11:17 a.m.4 views

Cyberstorage: Leveraging the Multi-Cloud to Combat Data Exfiltration

Multi-cloud data storage, once merely a byproduct of the great cloud migration, has now become a strategy for data management. "Multi-cloud by design," and its companion the supercloud, is an ecosystem in which several cloud systems work together to provide many organizational benefits, including...

6.8AI score
Exploits0
NVD
NVD
added 2023/03/22 9:15 p.m.28 views

CVE-2023-28432

Minio is a Multi-Cloud Object Storage framework. In a cluster deployment starting with RELEASE.2019-12-17T23-16-33Z and prior to RELEASE.2023-03-20T20-16-18Z, MinIO returns all environment variables, including MINIOSECRETKEY and MINIOROOTPASSWORD, resulting in information disclosure. All users of...

7.5CVSS7.6AI score0.83957EPSS
Exploits13References6
Prion
Prion
added 2023/03/22 9:15 p.m.39 views

Code injection

Minio is a Multi-Cloud Object Storage framework. Prior to RELEASE.2023-03-20T20-16-18Z, an attacker can use crafted requests to bypass metadata bucket name checking and put an object into any bucket while processing PostPolicyBucket. To carry out this attack, the attacker requires credentials wit...

6.5CVSS8.5AI score0.06736EPSS
Exploits2References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/03/22 8:44 p.m.12 views

CVE-2023-28434 MinIO is vulnerable to privilege escalation on Linux/MacOS

Minio is a Multi-Cloud Object Storage framework. Prior to RELEASE.2023-03-20T20-16-18Z, an attacker can use crafted requests to bypass metadata bucket name checking and put an object into any bucket while processing PostPolicyBucket. To carry out this attack, the attacker requires credentials wit...

8.8CVSS8.3AI score0.06736EPSS
Exploits2References3
Rows per page
Query Builder