Lucene search
K

2317 matches found

Veeam
Veeam
added 2019/10/28 12:0 a.m.39 views

Managed Veeam Agent backup job fails with "Unknown invoker method: 2757" error

A Veeam Agent backup job managed by the backup server fails with the following error: Failed to start backup job Error: Unknown invoker method: 2757...

2.6AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2019/10/25 6:5 p.m.79 views

3 Ways for MSPs to Increase Their Managed Security Footprint

Managed service providers looking to increase their business often face the choice of whether to focus on finding new customers or expanding their existing base. But there’s a growing opportunity making the latter option especially appealing. The small and midsize businesses that comprise the bul...

0.1AI score
Exploits0
Trellix
Trellix
added 2019/10/20 12:0 a.m.12 views

McAfee ATR Analyzes Sodinokibi aka REvil Ransomware-as-a-Service - Crescendo

McAfee ATR Analyzes Sodinokibi aka REvil Ransomware-as-a-Service – Crescendo By Jessica Saavedra-Morales · October 20, 2019 Episode 4: Crescendo This is the final installment of the McAfee Advanced Threat Research ATR analysis of Sodinokibi and its connections to GandGrab, the most prolific...

0.9AI score
Exploits0
CISA
CISA
added 2019/10/17 12:0 a.m.11 views

Cisco Releases Security Updates

Cisco has released security updates to address vulnerabilities in Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities see the Cisco Security Advisories page. The Cybersecurity an...

7.7AI score
Exploits0References7
Prion
Prion
added 2019/10/16 7:15 p.m.20 views

Cross site scripting

A vulnerability in the web-based interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based interface. The vulnerability is due to insufficient validation of user-supplie...

4.3CVSS6AI score0.00801EPSS
Exploits0References1Affected Software108
CVE
CVE
added 2019/10/16 6:36 p.m.82 views

CVE-2019-12718

The CVE-2019-12718 vulnerability affects Cisco Small Business Smart and Managed Switches with a flaw in the web-based interface that fails to properly validate user input, enabling unauthenticated remote XSS. An attacker could entice a user to click a malicious link and reach a specific web page,...

6.1CVSS6AI score0.00801EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/10/16 6:36 p.m.71 views

CVE-2019-12636

Cisco CVE-2019-12636 is a CSRF vulnerability in the web-based management interface of Cisco Small Business Smart and Managed Switches (250, 350, 550X series). The issue stems from insufficient CSRF protections, enabling an unauthenticated, remote attacker to trick a user into visiting a malicious...

8.8CVSS8.6AI score0.00645EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/10/16 6:36 p.m.21 views

CVE-2019-12636 Cisco Small Business Smart and Managed Switches Cross-Site Request Forgery Vulnerability

A vulnerability in the web-based management interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack on an affected system. The vulnerability is due to insufficient CSRF protections for the...

8.1CVSS9.1AI score0.00645EPSS
Exploits0References1
Cisco
Cisco
added 2019/10/16 4:0 p.m.78 views

Cisco Small Business Smart and Managed Switches Cross-Site Scripting Vulnerability

A vulnerability in the web-based interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based interface. The vulnerability is due to insufficient validation of user-supplie...

6.1CVSS1.4AI score0.00801EPSS
Exploits0References1
Cisco
Cisco
added 2019/10/16 4:0 p.m.59 views

Cisco Small Business Smart and Managed Switches Cross-Site Request Forgery Vulnerability

A vulnerability in the web-based management interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack on an affected system. The vulnerability is due to insufficient CSRF protections for the...

8.1CVSS2.4AI score0.00645EPSS
Exploits0References1
CVE
CVE
added 2019/10/16 2:16 p.m.74 views

CVE-2019-6334

CVE-2019-6334 affects HP LaserJet, PageWide, OfficeJet Enterprise, and LaserJet Managed Printers. The issue concerns a signature-check mechanism for installed applications that may allow arbitrary code execution. The HP advisory (HP C06447795) confirms a risk of execution of arbitrary code and pr...

9.8CVSS9.5AI score0.03618EPSS
Exploits0References1Affected Software1
Symantec
Symantec
added 2019/10/16 12:0 a.m.25 views

Cisco Small Business Smart and Managed Switches CVE-2019-12718 Cross Site Scripting Vulnerability

Description Cisco Small Business Smart and Managed Switches are prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of th...

6.5AI score0.00801EPSS
Exploits0References1Affected Software2
RedHat Linux
RedHat Linux
added 2019/10/14 6:59 p.m.3 views

keycloak: script execution via UMA policy trigger

A flaw was found in Keycloak’s user-managed access interface, where it would permit a script to be set in the UMA policy. This flaw allows an authenticated attacker with UMA permissions to configure a malicious script to trigger and execute arbitrary code with the permissions of the user running...

7.2CVSS6.1AI score0.01283EPSS
Exploits0References4
Malwarebytes
Malwarebytes
added 2019/10/14 3:30 p.m.38 views

A week in security (October 7 – 13)

Last week on Malwarebytes Labs, we peered into the possible future of cybersecurity insurance, described the process for securing today’s managed service provider, and provided an in-depth explainer on the business espionage tactic known as “war shipping.” Further, in considering the intersection...

7.7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/10/11 6:4 p.m.70 views

Securing the managed service provider (MSP)

Managed service providers MSPs have been a boon to midsize enterprise. They allow for offloading technical debt to an agent with the skills and resources to manage it, thereby giving an organization room to focus on growing a business, rather than the particulars of infrastructure. For a long...

8.5CVSS0.7AI score0.01533EPSS
Exploits0
OSV
OSV
added 2019/10/09 4:15 p.m.40 views

CVE-2018-5745

"managed-keys" is a feature which allows a BIND resolver to automatically maintain the keys used by trust anchors which operators configure for use in DNSSEC validation. Due to an error in the managed-keys feature it is possible for a BIND server which uses managed-keys to exit due to an assertio...

4.9CVSS7.4AI score0.02264EPSS
Exploits0References2
NVD
NVD
added 2019/10/09 4:15 p.m.17 views

CVE-2018-5745

"managed-keys" is a feature which allows a BIND resolver to automatically maintain the keys used by trust anchors which operators configure for use in DNSSEC validation. Due to an error in the managed-keys feature it is possible for a BIND server which uses managed-keys to exit due to an assertio...

4.9CVSS6AI score0.02264EPSS
Exploits0References2
OSV
OSV
added 2019/10/09 4:15 p.m.2 views

DEBIAN-CVE-2018-5745

"managed-keys" is a feature which allows a BIND resolver to automatically maintain the keys used by trust anchors which operators configure for use in DNSSEC validation. Due to an error in the managed-keys feature it is possible for a BIND server which uses managed-keys to exit due to an assertio...

4.9CVSS6.6AI score0.02264EPSS
Exploits0References1
OSV
OSV
added 2019/10/09 4:15 p.m.6 views

ALPINE-CVE-2018-5745

"managed-keys" is a feature which allows a BIND resolver to automatically maintain the keys used by trust anchors which operators configure for use in DNSSEC validation. Due to an error in the managed-keys feature it is possible for a BIND server which uses managed-keys to exit due to an assertio...

4.9CVSS6.6AI score0.02264EPSS
Exploits0References1
Prion
Prion
added 2019/10/09 4:15 p.m.35 views

Design/Logic Flaw

"managed-keys" is a feature which allows a BIND resolver to automatically maintain the keys used by trust anchors which operators configure for use in DNSSEC validation. Due to an error in the managed-keys feature it is possible for a BIND server which uses managed-keys to exit due to an assertio...

3.5CVSS6AI score0.02264EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder