EUVD-2022-15239

Malicious code in bioql PyPI...

CVE-2024-13980

H3C Intelligent Management Center IMC versions up to and including E0632H07 contains a remote command execution vulnerability in the /byod/index.xhtml endpoint. Improper handling of JSF ViewState allows unauthenticated attackers to craft POST requests with forged javax.faces.ViewState parameters,...

CVE-2024-13980

H3C Intelligent Management Center IMC versions up to and including E0632H07 contains a remote command execution vulnerability in the /byod/index.xhtml endpoint. Improper handling of JSF ViewState allows unauthenticated attackers to craft POST requests with forged javax.faces.ViewState parameters,...

PT-2025-15395 · Siemens · Scalance Lpe9413 +9

Name of the Vulnerable Software and Affected Versions: Industrial Edge Device Kit - arm64 versions V1.17 through V1.20.2-1, V1.21 versions prior to V1.21.1-1 Industrial Edge Device Kit - x86-64 versions V1.17 through V1.20.2-1, V1.21 versions prior to V1.21.1-1 Industrial Edge Own Device IEOD...

CVE-2022-0018

An information exposure vulnerability exists in the Palo Alto Networks GlobalProtect app on Windows and MacOS where the credentials of the local user account are sent to the GlobalProtect portal when the Single Sign-On feature is enabled in the GlobalProtect portal configuration. This product...

New insights on cybersecurity in the age of hybrid work

As we approach the last week of Cybersecurity Awareness Month, I think about what is top of mind for myself and my peers in security. The past year has continued the 2020s major shift in the way organizations operate. Recent data shows that 81 percent of enterprise organizations have begun the mo...

How COVID-19 Reinforced the Need for Mobile Device Management

How many of you got that call at the beginning of the pandemic to make your company’s workforce 100% capable for remote work? How many of you had no idea how to make that happen, seemingly and sometimes literally overnight? How many of you were already prepared for such an event? Remote workforce...

Aruba Networks ClearPass Policy Manager Cross-Site Request Forgery Vulnerability

Aruba Networks ClearPass Policy Manager CPPM is a BYOD Bring Your Own Device network access control policy enforcement platform from Aruba Networks. A cross-site request forgery vulnerability exists in Aruba Networks CPPM versions prior to 6.4.7 and 6.5.x versions prior to 6.5.2. A remote attacke...

Bizztrust : The Most Secure Android Phone

Bizztrust : The Most Secure Android Phone With companies these days justifiably concerned about the security of the mobile devices provided to their workforce, many workers find themselves carrying around two mobile phones - one for personal use and another for business. Sure, mobile phones aren'...