Lucene search
K

162 matches found

GithubExploit
GithubExploit
added 2024/08/06 7:49 a.m.456 views

Exploit for Improper Restriction of Excessive Authentication Attempts in Logsign Unified_Secops_Platform

Logsign SIEM RCE Exploit CVE-2024-5716 & CVE-2024-5717 This...

9.8CVSS9.6AI score0.02973EPSS
Exploits1
Zero Day Initiative
Zero Day Initiative
added 2024/07/30 12:0 a.m.11 views

Logsign Unified SecOps Platform Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Logsign Unified SecOps Platform. Authentication is required to exploit this vulnerability. The specific flaw exists within the getresponsejsonresult endpoint. The issue results from the lack ...

4.3CVSS6.2AI score0.01184EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/06/12 12:0 a.m.20 views

Logsign Unified SecOps Platform Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of Logsign Unified SecOps Platform. Authentication is not required to exploit this vulnerability. The specific flaw exists within the password reset mechanism. The issue results from the lack of...

8.6CVSS7.4AI score0.01602EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/06/12 12:0 a.m.6 views

PT-2024-37095 · Logsign · Logsign Unified Secops Platform

Name of the Vulnerable Software and Affected Versions: Logsign Unified SecOps Platform affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of Logsign Unified SecOps Platform without requiring authentication. The flaw...

8.1CVSS7.9AI score0.01445EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/06/12 12:0 a.m.6 views

PT-2024-37099 · Logsign · Logsign Unified Secops Platform

Name of the Vulnerable Software and Affected Versions: Logsign Unified SecOps Platform affected versions not specified Description: This issue allows network-adjacent attackers to execute arbitrary code on affected installations. The flaw exists within the HTTP API and results from using a...

8.8CVSS7.5AI score0.01072EPSS
Exploits0References6
Zero Day Initiative
Zero Day Initiative
added 2024/06/12 12:0 a.m.29 views

Logsign Unified SecOps Platform Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Logsign Unified SecOps Platform. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

8.8CVSS7.8AI score0.02585EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/06/12 12:0 a.m.22 views

Logsign Unified SecOps Platform Missing Authentication Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Logsign Unified SecOps Platform. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the cluster HTTP API, which listens on TCP port 19...

8.1CVSS7.9AI score0.0583EPSS
Exploits0References1
Trend Micro Simply Security
Trend Micro Simply Security
added 2024/06/03 12:0 a.m.5 views

Guide to Better Extended Threat Detection and Response (XDR)

Discover how XDR can enhance threat detection and response to improve a SecOps team’s efficiency and outcomes...

7.2AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2024/06/03 12:0 a.m.7 views

It's Time to Up-Level Your EDR Solution

You may have EDR, but did you know you can add threat detection and response to improve a SecOps team’s efficiency and outcomes - read more...

7.2AI score
Exploits0
Wiz blog
Wiz blog
added 2024/05/28 2:11 p.m.14 views

Empowering SecOps in the cloud: enhancing threat detection with Wiz and Google Security Operations

Wiz announces integration with Google Security Operations to help SecOps teams identify critical cloud security issues...

7.3AI score
Exploits0
Wallarm Lab
Wallarm Lab
added 2024/01/25 12:55 p.m.21 views

Security Operations (SecOps)

Understanding the Basics of Security Operations SecOps SecOps represents the blending of cybersecurity proficiency with operational domains, forming a powerful bulwark. Its primary mission lies in safeguarding the fundamental data assets and technological infrastructures of an organization. More...

7AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2023/12/14 12:0 a.m.10 views

Modern Attack Surface Management (ASM) for SecOps

Today’s attack surface requires modern processes and security solutions. Explore the tenants of modern attack surface management ASM and what SecOps need to look for in an ASM solution...

7.4AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2023/11/21 3:30 p.m.19 views

When Maximum Effort Doesn't Equate to Maximum Results

It’s no secret that security teams are feeling beleaguered as a result of the barrage of data, events, and alerts generated by their security tools, to say nothing of the increased budget scrutiny and constrained staff resources that continue to plague cybersecurity practitioners. The trick is...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2023/11/10 9:0 a.m.53 views

The New 80/20 Rule for SecOps: Customize Where it Matters, Automate the Rest

There is a seemingly never-ending quest to find the right security tools that offer the right capabilities for your organization. SOC teams tend to spend about a third of their...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/08/22 11:20 a.m.37 views

CISOs Tout SaaS Cybersecurity Confidence, But 79% Admit to SaaS Incidents, New Report Finds

A new State of SaaS Security Posture Management Report from SaaS cybersecurity provider AppOmni indicates that Cybersecurity, IT, and business leaders alike recognize SaaS cybersecurity as an increasingly important part of the cyber threat landscape. And at first glance, respondents appear...

6.7AI score
Exploits0
Trellix
Trellix
added 2023/08/05 12:0 a.m.8 views

Resilient Security Requires Mature Cyber Threat Intelligence Capabilities

Resilient Security Requires Mature Cyber Threat Intelligence Capabilities By Trellix Advanced Research Center · August 5, 2023 Threat intelligence and the ability to add context to each technology environment to global threats has never been more important to the role of the CISO, or to the board...

7.4AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2023/08/01 1:0 p.m.14 views

How To Present SecOps Metrics (The Right Way)

SecOps metrics can be a gold mine of potential for informing better business decisions, but 78% of CEOs say they don’t have adequate data on risk exposure to make good decisions. Even when they do see the right data, 82% are inclined to “trust their gut” anyway. Here lies the disconnect between...

6.6AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2023/07/06 5:39 p.m.10 views

Showcasing SecOps Metrics That Matter

This year, new rules from the Security and Exchange Commission SEC about board-level expertise, risk management, and public disclosures will take effect. The European Union is updating its regulations, as well. To meet these new requirements, organizations will need to explain to shareholders...

6.9AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2023/06/28 4:18 p.m.19 views

Rapid7 Solutions for Partners

Central to our mission at Rapid7 is building long-term relationships with partners who deliver valuable security solutions to customers. As customers increasingly seek managed services to meet their security needs, we've eagerly expanded our partner ecosystem to support a rapidly growing body of...

6.8AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/06/28 4:0 p.m.10 views

How automation is evolving SecOps—and the real cost of cybercrime

This post is coauthored by Rob May, Founder and Managing Director, ramsac The security community is continuously changing, growing, and learning from each other to better position the world against cyberthreats. In the latest post of our Community Voices blog series, Microsoft Security Senior...

6.9AI score
Exploits0
Rows per page
Query Builder