Schweitzer Engineering Laboratories Software-Defined Network Switch Detection

Binary data 755350.prm...

Moderate: Red Hat Security Advisory: Red Hat Ceph Storage 2.5 security and bug fix update

An update for ceph and grafana is now available for Red Hat Ceph Storage 2.5 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

The vulnerability of the programmatically defined Cisco SD-WAN network, related to lack of access control, allows a hacker to bypass authentication procedures and gain access to system files.

The vulnerability of the programmatically defined Cisco SD-WAN network is related to lack of access control. Exploiting this vulnerability could allow a attacker to bypass authentication procedures and gain access to system files...

The vulnerability of the Command Line Interface (CLI) of Cisco SD-WAN-enabled software-defined networks allows attackers to elevate their privileges and modify device configuration files.

The vulnerability of the Command Line Interface CLI of Cisco SD-WAN software-defined networks is related to access control violations. Exploiting this vulnerability can allow attackers to enhance their privileges and modify device configuration files by sending specially crafted commands to the...

Cisco SD-WAN Solution Privilege Permission and Access Control Vulnerability

Cisco vBond Orchestrator Software and other products are from Cisco. cisco vBond Orchestrator Software is a set of security network extension management software. vEdge 100 Series Routers is a 100 series router product. SD-WAN Solution is a set of network extension solution running in it. A...

The vulnerability of the vContainer component in the programmatically defined Cisco SD-WAN network allows a attacker to trigger a service failure or execute arbitrary code with root privileges.

The vulnerability of the vContainer component in the programmatically defined Cisco SD-WAN network is caused by buffer overflow. Exploiting this vulnerability can allow a malicious actor to cause service failures or execute arbitrary code with root privileges by sending a specially crafted file...

Product release: Virtuozzo Infrastructure Platform 2.5

This product is formerly known as Virtuozzo Storage. With this release, Virtuozzo Infrastructure Platform offers a wide range of new features for compute virtualization and software-defined networking, as well as enhancements and stability improvements. It also addresses issues found in the...

App Security and PCI; Are you ready for the audit?

As most people know, merchants, financial institutions and anybody else who is involved in processing credit cards are subject to the PCI DSS compliance to reduce fraud and cybersecurity risks. This affects both brick-n-mortar stores and banks as well as card-not-present CNP transactions that...

Six Xmas Gifts for the Pentester in your Life

Some of my best friends are ethical hackers. With the holidays approaching, these special people in my life will need special presents. Whether they are bounty hunting, pentesting as a part of a consulting project, doing security research to advance the field or working on a Red Team, they will...

Citrix SD-WAN and NetScaler SD-WAN SQL Injection Vulnerabilities

Citrix SD-WAN and NetScaler SD-WAN are both software-defined WAN solutions from Citrix Systems USA. The products support real-time path selection, edge routing, stateful firewalls, end-to-end Qos and WANs. A SQL injection vulnerability exists in Citrix SD-WAN and NetScaler SD-WAN, which can be...

Security Bulletin: A security vulnerability has been identified in IBM Spectrum Scale bundled with IBM Cloud PowerVC Manager for Software Defined Infrastructure (CVE-2018-1782)

Summary IBM Spectrum Scale v5.0.0 bundled with IBM Cloud PowerVC Manager for Software Defined Infrastructure SDI v1.1.0 can be upgraded to v5.0.1.X. IBM Spectrum Scale v5.0.1 is bundled with IBM Cloud PowerVC Manager for Software Defined Infrastructure SDI v1.1.1. Information about a security...

Zero Trust Security Architectures - Software Defined Perimeter

By Jano van Deventer and Andrew Terranova This is Part 3 of a 5 part blog series. Jump to Part 1: Introduction Jump to Part 2: Network Micro-Segmentation Jump to Part 4: Identity Aware Proxy Jump to Part 5: Akamai's Approach to Zero Trust Introduction In the first part of this blog series, we...

Micronet INplc-RT Privilege Vulnerability

Micronet INplc-RT is a software-defined PLC Programmable Logic Controller from Micronet Japan. A privilege-lifting vulnerability exists in Micronet INplc-RT version 3.08 and earlier. An attacker can exploit this vulnerability to perform operations with administrative privileges...

RHEL 7 : Red Hat Ceph Storage 1.3.3 (RHSA-2016:1972)

Red Hat Ceph Storage 1.3.3 that fixes one security issue, multiple bugs, and adds various enhancements is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score,...

CVE-2018-0346

A vulnerability in the Zero Touch Provisioning service of the Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to incorrect bounds checks for certain values in packets that are sent to...

CVE-2018-0344

A vulnerability in the vManage dashboard for the configuration and management service of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject and execute arbitrary commands with vmanage user privileges on an affected system. The vulnerability is due to insufficient...

Security Bulletin: Security vulnerabilities have been identified in IBM Spectrum Scale v5.0.0 shipped with IBM Cloud PowerVC Manager for Software Defined Infrastructure (SDI) v1.1.0 (CVE-2017-14746, CVE-2017-15275)

Summary IBM Spectrum Scale v5.0.0 is shipped with IBM Cloud PowerVC Manager for Software Defined Infrastructure SDI v1.1.0. Information about security vulnerabilities affecting IBM Spectrum Scale v5.0.0 have been published in a security bulletin. Vulnerability Details Refer to the security bullet...

Security Bulletin: A Security Vulnerability has Been Identified in IBM Spectrum Scale v5.0.0 shipped with IBM Cloud PowerVC Manager for Software Defined Infrastructure (SDI) v1.1.0 (CVE-2017-1654)

Summary IBM Spectrum Scale v5.0.0 is shipped with IBM Cloud PowerVC Manager for Software Defined Infrastructure SDI v1.1.0. Information about a security vulnerability affecting IBM Spectrum Scale v5.0.0 has been published in a security bulletin. Vulnerability Details Refer to the security bulleti...

Remote access in a software defined world

When I first ventured into technology, I wish someone gave me a heads-up about the bevy of acronyms to remember. It feels like every day a new acronym related to technology is formed. It's hard enough remembering names within my family. During Thanksgiving with a full house, I struggle to remembe...

A New Paradigm For Cyber Threat Hunting

It's no secret that expecting security controls to block every infection vector is unrealistic. For most organizations, the chances are very high that threats have already penetrated their defenses and are lurking in their network. Pinpointing such threats quickly is essential, but traditional...