78 matches found
Changing the physics of cyber defense
The Deputy CISO blog series is whereMicrosoft Deputy Chief Information Security Officers CISOs share their thoughts on what is most important in their respective domains. In this series, you will get practical advice, tactics to start and stop deploying, forward-looking commentary on where the...
EUVD-2024-48494
Malicious code in bioql PyPI...
EUVD-2024-47125
Malicious code in bioql PyPI...
EUVD-2024-47127
Malicious code in bioql PyPI...
EUVD-2024-48465
Malicious code in bioql PyPI...
EUVD-2025-1978
Malicious code in bioql PyPI...
EUVD-2024-48493
Malicious code in bioql PyPI...
EUVD-2024-50298
Malicious code in bioql PyPI...
EUVD-2024-47126
Malicious code in bioql PyPI...
EUVD-2024-47129
Malicious code in bioql PyPI...
CVE-2025-1044
Logsign Unified SecOps Platform Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Logsign Unified SecOps Platform. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2025-1044
Logsign Unified SecOps Platform Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Logsign Unified SecOps Platform. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2025-1044 Logsign Unified SecOps Platform Authentication Bypass Vulnerability
Logsign Unified SecOps Platform Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Logsign Unified SecOps Platform. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2025-1044 Logsign Unified SecOps Platform Authentication Bypass Vulnerability
Logsign Unified SecOps Platform Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Logsign Unified SecOps Platform. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
PT-2025-5793 · Logsign · Logsign Unified Secops Platform
Name of the Vulnerable Software and Affected Versions: Logsign Unified SecOps Platform versions prior to 6.4.32 Description: This issue allows remote attackers to bypass authentication on affected installations of Logsign Unified SecOps Platform. The specific flaw exists within the web service,...
Logsign Unified SecOps Platform Authentication Bypass Vulnerability
This vulnerability allows remote attackers to bypass authentication on affected installations of Logsign Unified SecOps Platform. Authentication is not required to exploit this vulnerability. The specific flaw exists within the web service, which listens on TCP port 443 by default. The issue...
CVE-2024-9257
Logsign Unified SecOps Platform deletegsuitekeyfile Input Validation Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files within sensitive directories on affected installations of Logsign Unified SecOps Platform. Authentication is required to...
CVE-2024-9257 Logsign Unified SecOps Platform delete_gsuite_key_file Input Validation Arbitrary File Deletion Vulnerability
Logsign Unified SecOps Platform deletegsuitekeyfile Input Validation Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files within sensitive directories on affected installations of Logsign Unified SecOps Platform. Authentication is required to...
CVE-2024-9257
CVE-2024-9257 affects Logsign Unified SecOps Platform. The flaw is in the delete_gsuite_key_file endpoint where user-supplied filenames aren’t properly validated before file operations, enabling a remote attacker to delete arbitrary files in sensitive directories. Authentication is required to ex...
CVE-2024-9257 Logsign Unified SecOps Platform delete_gsuite_key_file Input Validation Arbitrary File Deletion Vulnerability
Logsign Unified SecOps Platform deletegsuitekeyfile Input Validation Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files within sensitive directories on affected installations of Logsign Unified SecOps Platform. Authentication is required to...