CVE-2019-6609

CVE-2019-6609 affects BIG-IP on iSeries (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) where the secureKeyCapable attribute is not set. This prevents Secure Vault from using F5 hardware support to protect the unit key, causing the unit key ...

About the security content of Texture 5.11.10 for iOS

About the security content of Texture 5.11.10 for iOS This document describes the security content of Texture 5.11.10 for iOS. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or...

Carbon Black Awarded 5-Star Rating in CRN’s 2019 Partner Program Guide for the Third Consecutive Year

We are proud to announce that CRN®, a brand of The Channel Company, has given Carbon Black a 5-Star rating in its 2019 Partner Program Guide for the third consecutive year! According to CRN, this annual guide identifies the strongest and most successful partner programs in the channel today,...

Design/Logic Flaw

Analytics data was sent using HTTP rather than HTTPS. This was addressed by sending analytics data using HTTPS. This issue affected versions prior to Apple Support 2.4 for iOS...

CVE-2018-4397

Analytics data was sent using HTTP rather than HTTPS. This was addressed by sending analytics data using HTTPS. This issue affected versions prior to Apple Support 2.4 for iOS...

Security Bulletin: API Connect V5 is impacted by weak cryptographic algorithms (CVE-2018-2007)

Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2018-2007 DESCRIPTION: IBM API Connect uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. CVSS Base Score: 5.9 CVSS Temporal...

Call for Papers | Microsoft BlueHat Shanghai 2019

The Microsoft Security Response Center MSRC recently announced our first BlueHat security conference in Shanghai which will take place on May 29-30, 2019. After 15 years of BlueHat events in Redmond, Washington and Israel, we are thrilled to expand to a new location. We work with many talented...

Ad Network Sizmek Probes Account Breach

Online advertising firm Sizmek Inc. NASDAQ: SZMK says it is investigating a security incident in which a hacker was reselling access to a user account with the ability to modify ads and analytics for a number of big-name advertisers. In a recent posting to a Russian-language cybercrime forum, an...

Security Bulletin: API Connect V2018 is impacted by weak cryptographic algorithms (CVE-2018-2007)

Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2018-2007 DESCRIPTION: IBM API Connect uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. CVSS Base Score: 5.9 CVSS Temporal...

Partner Perspectives: Endpoint Security Analytics with Sumo Logic and Carbon Black

The post Partner Perspectives: Endpoint Security Analytics with Sumo Logic and Carbon Black appeared first on Carbon Black...

Carbon Black and Chronicle: Stronger Cybersecurity through Big Data and Analytics

This is another exciting day for cybersecurity professionals, for Carbon Black and for me personally. It’s also a very exciting way to kick of RSA 2019! Earlier today, we announced an exciting new integration with Chronicle Security to harness the power of big data and analytics. Our goal is to...

CVE-2018-18813

CVE-2018-18813 affects TIBCO Spotfire components: Spotfire Analytics Platform for AWS Marketplace (up to 10.0.0) and Spotfire Server (up to 7.10.1; 7.11.0/7.11.1; 7.12.0; 7.13.0; 7.14.0; 10.0.0). The Spotfire web server component contains multiple persistent and reflected cross-site scripting (XS...

CVE-2019-2397

Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Food and Beverage Applications. The supported version that is affected is 9.1.0. Easily exploitable vulnerability allows low privileged attacker having Report privilege with logon to the infrastructure where Oracl...

Buffer overflow

Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Food and Beverage Applications. The supported version that is affected is 9.1.0. Easily exploitable vulnerability allows low privileged attacker having Report privilege with logon to the infrastructure where Oracl...

Buffer overflow

Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Food and Beverage Applications. The supported version that is affected is 9.1.0. Easily exploitable vulnerability allows low privileged attacker having Report privilege with logon to the infrastructure where Oracl...

Buffer overflow

Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Food and Beverage Applications. The supported version that is affected is 9.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Hospitality...

CVE-2019-2397

CVE-2019-2397 affects the Oracle Hospitality Reporting and Analytics component of Oracle Food and Beverage Applications, specifically version 9.1.0. The vulnerability, described as easily exploitable, permits a low-privileged attacker with Report privilege to log on to the infrastructure where Or...

CVE-2019-2397

Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Food and Beverage Applications. The supported version that is affected is 9.1.0. Easily exploitable vulnerability allows low privileged attacker having Report privilege with logon to the infrastructure where Oracl...

CVE-2019-2407

The CVE-2019-2407 entry pertains to Oracle Hospitality Reporting and Analytics in Oracle Food and Beverage Applications, affected version 9.1.0. The vulnerability is exploitable by a low-privilege attacker with Report privileges who can log on to the infrastructure hosting the component, potentia...

CVE-2019-2401

Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Food and Beverage Applications. The supported version that is affected is 9.1.0. Easily exploitable vulnerability allows low privileged attacker having Admin privilege with network access via HTTP to compromise...