Lucene search
K

68 matches found

The Hacker News
The Hacker News
added 2021/09/08 7:27 a.m.24 views

[Ebook] The Guide for Speeding Time to Response for Lean IT Security Teams

Most cyber security today involves much more planning, and much less reacting than in the past. Security teams spend most of their time preparing their organizations' defenses and doing operational work. Even so, teams often must quickly spring into action to respond to an attack. Security teams...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/01 12:50 p.m.36 views

[LIVE WEBINAR] How Lean Security Teams Can Improve Their Time to Response

Cybersecurity could be described as a marathon for security teams that spend most of their time building sustained defenses that prevent threats day after day. However, they must be ready to hit a sprint whenever an attack succeeds since attack duration, and the resulting damages are directly...

0.4AI score
Exploits0
The Hacker News
The Hacker News
added 2021/07/21 9:52 a.m.51 views

[eBook] A Guide to Stress-Free Cybersecurity for Lean IT Security Teams

Today's cybersecurity landscape is enough to make any security team concerned. The rapid evolution and increased danger of attack tactics have put even the largest corporations and governments at heightened risk. If the most elite security teams can't prevent these attacks from happening, what ca...

Exploits0
Ivan 'd0znpp' Novikov
Ivan 'd0znpp' Novikov
added 2021/07/16 7:3 a.m.61 views

What is DevOps❓ Definition, Advantages, Practices

Introduction Inhabitants of the product world realize that new trendy expressions apparently show up out of the blue, and similarly as abruptly multiply news stories, water cooler chitchat and merchant FAQ areas. In the event that you’ve heard the term DevOps being thrown around, you may believe...

0.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/06/09 10:17 a.m.53 views

EBook – Creating a Large Company Security Stack on a Lean Company Budget

The speed at which malicious actors have improved their attack tactics and continue to penetrate security systems has made going bigger the major trend in cybersecurity. Facing an evolving threat landscape, organizations have responded by building bigger security stacks, adding more tools and...

6.7AI score
Exploits0
CVE
CVE
added 2021/05/12 1:18 p.m.70 views

CVE-2020-25242

CVE-2020-25242 affects Siemens SIMATIC NET CP 343-1 devices (Advanced/Lean/Standard, including SIPLUS variants) across all versions. The vulnerability is an Uncontrolled Resource Consumption issue triggered by specially crafted packets sent to TCP port 102, allowing a remote DoS that may require ...

7.8CVSS7.4AI score0.01269EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2020/12/18 12:0 a.m.3 views

QuantConnect Lean Code Issue Vulnerability

Quantconnect Lean is a cross-platform algorithmic trading engine for strategy research, backtesting and real-time trading based on the C language from Quantconnect. A security vulnerability exists in QuantConnect Lean versions 2.3.0.0 through 2.4.0.1, which stems from a failure to securely...

9.8CVSS6.9AI score0.01518EPSS
Exploits1References1
OSV
OSV
added 2020/12/14 7:15 p.m.8 views

CVE-2020-20136

QuantConnect Lean versions from 2.3.0.0 to 2.4.0.1 are affected by an insecure deserialization vulnerability due to insecure configuration of TypeNameHandling property in Json.NET library...

9.8CVSS6.8AI score0.01518EPSS
Exploits1References1
NVD
NVD
added 2020/12/14 7:15 p.m.22 views

CVE-2020-20136

QuantConnect Lean versions from 2.3.0.0 to 2.4.0.1 are affected by an insecure deserialization vulnerability due to insecure configuration of TypeNameHandling property in Json.NET library...

9.8CVSS9.4AI score0.01518EPSS
Exploits1References1
Prion
Prion
added 2020/12/14 7:15 p.m.22 views

Deserialization of untrusted data

QuantConnect Lean versions from 2.3.0.0 to 2.4.0.1 are affected by an insecure deserialization vulnerability due to insecure configuration of TypeNameHandling property in Json.NET library...

7.5CVSS9.4AI score0.01518EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/12/14 6:30 p.m.17 views

CVE-2020-20136

QuantConnect Lean versions from 2.3.0.0 to 2.4.0.1 are affected by an insecure deserialization vulnerability due to insecure configuration of TypeNameHandling property in Json.NET library...

9.5AI score0.01518EPSS
Exploits1References1
CVE
CVE
added 2020/12/14 6:30 p.m.42 views

CVE-2020-20136

CVE-2020-20136 affects QuantConnect Lean versions 2.3.0.0 through 2.4.0.1, due to an insecure deserialization vulnerability caused by insecure configuration of TypeNameHandling in Json.NET. The issue is documented across multiple sources (NVD entry, Red Hat advisory, GHSA, OSV) and has high/criti...

9.8CVSS9.4AI score0.01518EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2020/12/14 12:0 a.m.8 views

QuantConnect Lean versions from 代码问题漏洞

Quantconnect Lean is a cross-platform algorithmic trading engine for strategy research, backtesting and real-time trading based on the C language from Quantconnect. A security vulnerability exists in QuantConnect Lean versions 2.3.0.0 through 2.4.0.1, which stems from a failure to securely...

9.8CVSS7.3AI score0.01518EPSS
Exploits1References2
CNVD
CNVD
added 2020/10/13 12:0 a.m.3 views

SQL Injection Vulnerability in Lean Value Stream Management System (LVS) at Hangzhou Gila Technology Co.

Hangzhou Gila Technology Co., Ltd. is an enterprise network service provider, is committed to providing customized solutions based on the needs of the enterprise network, to create a cloud service cloud network platform. A SQL injection vulnerability exists in the Lean Value Stream Management...

7.9AI score
Exploits0
Akamai Blog
Akamai Blog
added 2020/02/13 4:0 p.m.15 views

Why You Need Cloud-Based Security for Agile, Innovative and Lean IT

Digital transformation isn't just a buzzworthy trend or a finite phase for today's businesses. Rolling adaptation to an ever-changing environment and continuous digital evolution has become the new normal for enterprises -- the key to success in this agile, demanding, and hyper-connected age. To...

7.5AI score
Exploits0
RedHat Linux
RedHat Linux
added 2019/10/17 2:54 p.m.114 views

Important: Red Hat Security Advisory: Red Hat JBoss Data Virtualization 6.4.8 security update

An update is now available for Red Hat JBoss Data Virtualization. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

9.8CVSS7.6AI score0.93972EPSS
Exploits10References16
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.10 views

Siemens CP 343-1 Lean Communications Adapter Detection

Binary data 750239.prm...

7.3AI score
Exploits0
RedHat Linux
RedHat Linux
added 2018/07/23 7:28 p.m.87 views

Low: Red Hat Security Advisory: Red Hat JBoss Data Virtualization 6.4 Update 3 security update

An update is now available for Red Hat JBoss Data Virtualization. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link...

6.5CVSS6.5AI score0.0148EPSS
Exploits0References4
NVD
NVD
added 2018/01/10 6:29 p.m.14 views

CVE-2014-4998

test/tcdatabase.rb in the lean-ruport gem 0.3.8 for Ruby places the mysql user password on the mysqldump command line, which allows local users to obtain sensitive information by listing the process...

7.8CVSS7.5AI score0.00522EPSS
Exploits1References3
Prion
Prion
added 2018/01/10 6:29 p.m.11 views

Command injection

test/tcdatabase.rb in the lean-ruport gem 0.3.8 for Ruby places the mysql user password on the mysqldump command line, which allows local users to obtain sensitive information by listing the process...

2.1CVSS6.6AI score0.00522EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder