CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ThreatPost•added 2018/08/08 8:24 p.m.•10 views

Black Hat 2018: Google’s Tabriz Talks Complex Security Landscapes

LAS VEGAS – The complexity of the cybersecurity landscape is at an all-time high, with security researchers, vendors, third-party ecosystems and even governments all trying to come to a consensus for making the cyber-world a safer place. For security experts, navigating these choppy and crowded...

8.2AI score

Exploits0References5

Carbon Black Blog•added 2018/08/07 3:40 p.m.•45 views

Partner Perspectives: Security Orchestration as a Catalyst for Proactive Incident Response

Meny Har is the VP of Product for Siemplify. Benjamin Franklin famously advised the fire-threatened residents of Philadelphia, “An ounce of prevention is worth a pound of cure.” And while being proactive may have been effective for fire prevention, the approach does not translate into the impendi...

0.2AI score

Carbon Black Blog•added 2018/07/03 3:0 p.m.•70 views

10 Endpoint Security Problems Solved by the Cloud – Managing Multiple Agents

So far in this blog series, we’ve discussed the state of endpoint security, and the challenges of keeping systems up to date and integrating multiple products. This installment will take a look at how the cloud solves our third challenge: managing multiple agents. Too Much To Keep Track Of A good...

7.4AI score

Qualys Blog•added 2018/06/29 4:0 p.m.•57 views

QSC18 Virtual Edition: Vulnerability Risk Management

When vulnerability risk management is proactive, organizations don’t have to hurriedly react to attacks that exploit bugs for which patches are available, as happened with WannaCry. “The vast majority of WannaCry remediation took place as an emergency type process,” Jimmy Graham, a Qualys Directo...

7.1AI score

The Hacker News•added 2018/06/11 1:45 p.m.•1 views

A New Paradigm For Cyber Threat Hunting

It's no secret that expecting security controls to block every infection vector is unrealistic. For most organizations, the chances are very high that threats have already penetrated their defenses and are lurking in their network. Pinpointing such threats quickly is essential, but traditional...

6.7AI score

n0where•added 2018/04/08 3:0 p.m.•18 views

Network Security Monitoring: Security Onion

Network Security Monitoring NSM is, put simply, monitoring your network for security related events. It might be proactive, when used to identify vulnerabilities or expiring SSL certificates, or it might be reactive, such as in incident response and network forensics. Whether you’re tracking an...

7AI score

Exploits0References2

Imperva Blog•added 2018/03/07 3:0 p.m.•20 views

2018 Cyberthreat Defense Report: Where IT Security Is Going

What keeps you awake at night? We asked IT security professionals the same question and found that these issues are top of mind: malware and spear phishing, securing mobile devices, employee security awareness and new technologies that detect threats capable of bypassing traditional signature-bas...

6.8AI score

CNVD•added 2018/02/06 12:0 a.m.•2 views

Micropoint Proactive Defense Software Denial of Service Vulnerability

Micropoint proactive defense software is a set of third-generation anti-virus software from China's Oriental Micropoint Micropoint Company. The software uses proactive defense technology to analyze and judge to achieve the purpose of defense against viruses. A security vulnerability exists in the...

7.8CVSS6.5AI score0.00406EPSS

CNVD•added 2018/02/06 12:0 a.m.•4 views

Micropoint Proactive Defense Software Denial of Service Vulnerability (CNVD-2018-02956)

7.8CVSS6.5AI score0.00406EPSS

CNVD•added 2018/02/06 12:0 a.m.•2 views

Micropoint Proactive Defense Software Denial of Service Vulnerability (CNVD-2018-02978)

7.8CVSS6.5AI score0.00406EPSS

Prion•added 2018/02/05 6:29 p.m.•13 views

Input validation

In Micropoint proactive defense software 2.0.20266.0146, the driver file mp110005.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x80000035...

Prion•added 2018/02/05 6:29 p.m.•13 views

Input validation

Prion•added 2018/02/05 6:29 p.m.•11 views

Input validation

Prion•added 2018/02/05 6:29 p.m.•15 views

Input validation

In Micropoint proactive defense software 2.0.20266.0146, the driver file mp110009.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x80000170...

NVD•added 2018/02/05 6:29 p.m.•15 views

CVE-2018-6628

7.8CVSS8AI score0.00406EPSS

Prion•added 2018/02/05 6:29 p.m.•14 views

Input validation

CVE•added 2018/02/05 6:0 p.m.•41 views

CVE-2018-6626

CVE-2018-6626 affects Micropoint Proactive Defense Software 2.0.20266.0146 via the mp110005.sys driver. The issue stems from a lack of input validation for IOCTL 0x80000035, allowing a local attacker to trigger a denial-of-service (BSOD) and potentially other impacts. The vulnerability is documen...

7.8CVSS7.9AI score0.00406EPSS

CVE•added 2018/02/05 6:0 p.m.•42 views

CVE-2018-6628

CVE-2018-6628 affects Micropoint proactive defense software 2.0.20266.0146, specifically the mp110005.sys driver. The issue is due to not validating input values from IOCTL 0x8000010c, allowing local users to cause a denial of service (BSOD) or potentially other impacts. Publicly available source...

7.8CVSS7.9AI score0.00406EPSS

CVE•added 2018/02/05 6:0 p.m.•37 views

CVE-2018-6629

CVE-2018-6629 affects Micropoint proactive defense software 2.0.20266.0146. The vulnerability resides in the mp110005.sys driver, where IOCTL 0x80000118 input values are not validated, enabling a local attacker to trigger a denial of service (BSOD) and potentially other impact. Connected sources ...

7.8CVSS7.9AI score0.00406EPSS