Lucene search
K
CisaMost viewed

4188 matches found

CISA
CISA
added 2023/08/03 12:0 p.m.7 views

CISA, NSA, FBI, and International Partners Release Joint CSA on Top Routinely Exploited Vulnerabilities of 2022 

The U.S. Cybersecurity and Infrastructure Security Agency CISA, National Security Agency NSA, Federal Bureau of Investigation FBI, and international partners are releasing a joint Cybersecurity Advisory CSA, 2022 Top Routinely Exploited Vulnerabilities. This advisory provides details on the top...

7AI score
Exploits0References4
CISA
CISA
added 2023/07/21 12:0 p.m.7 views

Atlassian Releases Security Updates

Atlassian has released its Security Bulletin for July 2023link is external to address vulnerabilities in Confluence Data Center & Server CVE-2023-22505link is external and CVE-2023-22508link is external and Bamboo Data Center CVE-2023-22506link is external. An attacker can exploit these...

8.8CVSS7.6AI score0.02185EPSS
Exploits0References5
CISA
CISA
added 2023/07/11 12:0 p.m.7 views

CISA Releases Four Industrial Control Systems Advisories

CISA released four Industrial Control Systems ICS advisories on July 11, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-192-01 Rockwell Automation Enhanced HIM ICSA-23-192-02 Sensormatic Electronics iSTAR...

7AI score
Exploits0References4
CISA
CISA
added 2023/06/13 12:0 p.m.7 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-27997 Fortinet FortiOS Heap-Based Buffer Overflow Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose...

9.8CVSS7.3AI score0.85689EPSS
Exploits10References6
CISA
CISA
added 2023/06/12 12:0 p.m.7 views

Fortinet Releases Security Updates for FortiOS and FortiProxy

Fortinet has released security updates to address a heap-based buffer overflow vulnerability CVE-2023-27997 in FortiOS and FortiProxy. An attacker could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review Fortinet security advisory...

9.8CVSS7.8AI score0.85689EPSS
Exploits10References2
CISA
CISA
added 2023/04/27 12:0 p.m.7 views

CISA Releases One Industrial Control Systems Medical Advisory

CISA released one Industrial Control Systems Medical ICS medical advisory on April 27, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS medical...

7AI score
Exploits0References1
CISA
CISA
added 2023/04/17 12:0 p.m.7 views

IRS Warns of New Tax Scams

The Internal Revenue Service IRS has issued a reminder urging taxpayers to be vigilant and wary of new of tax-related scams. These include phishing and other fraudulent behaviors. The IRS recommends strengthening passwords, remaining vigilant against phishing attempts, and forwarding suspicious...

7.1AI score
Exploits0References6
CISA
CISA
added 2023/02/02 12:0 a.m.7 views

Cisco Releases Security Advisories for Multiple Products

Cisco released security updates for vulnerabilities affecting multiple products. A remote attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the Cisco Security Advisories page and apply the necessary updates. This...

2.3AI score
Exploits0References1
CISA
CISA
added 2023/01/31 12:0 a.m.7 views

CISA Releases One Industrial Control Systems Advisory

CISA released one Industrial Control Systems ICS advisory on January 31, 2023. This advisory provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisory for technical...

2.6AI score
Exploits0References1
CISA
CISA
added 2022/11/09 12:0 a.m.7 views

VMware Releases Security Updates

VMware has released security updates to address multiple vulnerabilities in VMware Workspace ONE Assist. A remote attacker could exploit one of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review VMware Security Advisory VMSA-2022-0028 a...

2.9AI score
Exploits0References1
CISA
CISA
added 2022/10/26 12:0 a.m.7 views

Apple Releases Security Updates for Multiple Products 

Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected device. CISA encourages users and administrators to review the Apple security updates page for the following products and app...

2.1AI score
Exploits0References8
CISA
CISA
added 2022/10/20 12:0 a.m.7 views

Mozilla Releases Security Updates for Firefox

Mozilla has released security updates to address vulnerabilities in Firefox ESR and Firefox. An attacker could exploit these vulnerabilities to cause denial-of-service conditions. CISA encourages users and administrators to review Mozilla’s security advisories for Firefox ESR 102.4 and Firefox 10...

2.7AI score
Exploits0References2
CISA
CISA
added 2022/10/06 12:0 a.m.7 views

CISA Releases Two Industrial Control Systems Advisories

CISA released two 2 Industrial Control Systems ICS advisories on October 06, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for...

1.7AI score
Exploits0References2
CISA
CISA
added 2022/09/06 12:0 a.m.7 views

#StopRansomware: Vice Society

CISA, the Federal Bureau of Investigation FBI, and the Multi-State Information Sharing and Analysis Center MS-ISAC have released a joint Cybersecurity Advisory CSA, StopRansomware: Vice Society, to disseminate tactics, techniques, and procedures TTPs and indicators of compromise IOCs associated...

2.3AI score
Exploits0References3
CISA
CISA
added 2022/08/22 12:0 a.m.7 views

CISA Adds One Known Exploited Vulnerabilities to Catalog

CISA has added a new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise. Note: to view the newly added...

1.7AI score
Exploits0References5
CISA
CISA
added 2022/08/22 12:0 a.m.7 views

CISA releases 7 Industrial Control Systems Advisories

CISA has released 7 Industrial Control Systems ICS advisories on August 23, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for...

1.4AI score
Exploits0References7
CISA
CISA
added 2022/08/22 12:0 a.m.7 views

CISA Updates Advisory on Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite

CISA and the Multi-State Information Sharing & Analysis Center MS-ISAC have updated joint Cybersecurity Advisory AA22-228A: Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite, originally released August 16, 2022. The advisory has been updated to include additional detection...

1.4AI score
Exploits0References2
CISA
CISA
added 2022/08/18 12:0 a.m.7 views

Apple Releases Security Updates for Multiple Products

Apple has released security updates to address vulnerabilities in macOS Monterey, iOS and iPadOS, and Safari. An attacker could exploit one of these vulnerabilities to take control of an affected device. CISA encourages users and administrators to review the Apple security updates page for the...

2AI score
Exploits0References4
CISA
CISA
added 2022/08/18 12:0 a.m.7 views

CISA Adds Seven Known Exploited Vulnerabilities to Catalog

CISA has added seven new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise. Note: to view the newly...

1.7AI score
Exploits0References5
CISA
CISA
added 2022/08/09 12:0 a.m.7 views

CISA Adds Two Known Exploited Vulnerabilities to Catalog 

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise. Note: to view the newly adde...

1.6AI score
Exploits0References5
CISA
CISA
added 2022/07/21 12:0 a.m.7 views

Drupal Releases Security Update 

Drupal has released security updates to address vulnerabilities affecting Drupal 9.3 and 9.4. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Drupal security advisory SA-CORE-2022-015 and apply the...

2.7AI score
Exploits0References1
CISA
CISA
added 2022/07/06 12:0 a.m.7 views

OpenSSL Releases Security Update

OpenSSL has released a security update to address a vulnerability affecting OpenSSL 3.0.4. An attacker could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review the OpenSSL advisory and upgrade to the appropriate version. This produ...

2.8AI score
Exploits0References1
CISA
CISA
added 2022/06/14 12:0 a.m.7 views

Citrix Releases Security Updates for Application Delivery Management

Citrix has released security updates to address vulnerabilities in Application Delivery Management. An attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Citrix Security Update CTX460016 and apply the necessary...

2.5AI score
Exploits0References1
CISA
CISA
added 2022/06/14 12:0 a.m.7 views

Adobe Releases Security Updates for Multiple Products

Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Adobe Security Bulletins and apply the necessary...

1.7AI score
Exploits0References6
CISA
CISA
added 2022/05/25 12:0 a.m.7 views

Google Releases Security Updates for Chrome

Google has released Chrome version 102.0.5005.61 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. CISA encourages users and administrators to review the Chrome Release Note and apply the necessary update. Thi...

2.2AI score
Exploits0References1
CISA
CISA
added 2022/05/04 12:0 a.m.7 views

Mozilla Releases Security Updates for Firefox and Firefox ESR

Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the Mozilla Security Advisory for Firefox 100 and Firefox...

2.7AI score
Exploits0References2
CISA
CISA
added 2022/04/27 12:0 a.m.7 views

2021 Top Routinely Exploited Vulnerabilities

CISA, the National Security Agency NSA, the Federal Bureau of Investigation FBI, the Australian Cyber Security Centre ACSC, the Canadian Centre for Cyber Security CCCS, the New Zealand National Cyber Security Centre NZ NCSC, and the United Kingdom’s National Cyber Security Centre NCSC-UK have...

2AI score
Exploits0References2
CISA
CISA
added 2022/04/21 12:0 a.m.7 views

Drupal Releases Security Updates

Drupal has released security updates to address vulnerabilities affecting Drupal 9.2 and 9.3. An attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Drupal security advisories SA-CORE-008 and SA-CORE-009 and apply...

2.8AI score
Exploits0References2
CISA
CISA
added 2022/04/14 12:0 a.m.7 views

Cisco Releases Security Updates for Multiple Products

Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the Cisco Security Advisories page and apply the necessary...

1.6AI score
Exploits0References1
CISA
CISA
added 2022/03/08 12:0 a.m.7 views

Mozilla Releases Security Updates

Mozilla has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the Mozilla security advisories for Firefox...

7.1AI score
Exploits0References3
CISA
CISA
added 2022/03/02 12:0 a.m.7 views

Google Releases Security Updates for Chrome

Google has released Chrome version 99.0.4844.51 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. CISA encourages users and administrators to review the Chrome Release Note and apply the necessary updates. Thi...

6.9AI score
Exploits0References1
CISA
CISA
added 2022/02/18 12:0 a.m.7 views

CISA Insights: Foreign Influence Operations Targeting Critical Infrastructure

CISA has released CISA Insights: Preparing for and Mitigating Foreign Influence Operations Targeting Critical Infrastructure, which provides proactive steps organizations can take to assess and mitigate risks from information manipulation. Malicious actors may use tactics—such as misinformation,...

6.9AI score
Exploits0References2
CISA
CISA
added 2022/02/02 12:0 a.m.7 views

Google Releases Security Updates for Chrome

Google has released Chrome versions 98.0.4758.80/81/82 for Windows and 98.0.4758.80 for Mac and Linux. These versions address vulnerabilities that an attacker could exploit to take control of an affected system. CISA encourages users and administrators to review the Chrome Release Note and apply...

6.9AI score
Exploits0References1
CISA
CISA
added 2022/01/20 12:0 a.m.7 views

Cisco Releases Security Updates for Multiple Products

Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page. CISA encourages...

7.5AI score
Exploits0References5
CISA
CISA
added 2021/11/09 12:0 a.m.7 views

CISA Releases Security Advisory on Siemens Nucleus Real-Time Operating Systems

CISA has released an Industrial Control Systems ICS advisory detailing multiple vulnerabilities found in Siemens Nucleus Real-Time Operating Systems RTOS and supporting libraries. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages...

7.1AI score
Exploits0References1
CISA
CISA
added 2021/11/09 12:0 a.m.7 views

Microsoft Releases November 2021 Security Updates

Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker can exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Microsoft’s November 2021 Security Update Summary and Deploymen...

7.1AI score
Exploits0References2
CISA
CISA
added 2021/11/03 12:0 a.m.7 views

FBI Releases PIN on Attacks Using Significant Financial Events for Extortion

The Federal Bureau of Investigation FBI has released a Private Industry Notification PIN on ransomware actors using significant financial events, such as mergers and acquisitions, to target and leverage victim companies. CISA encourages users and administrators to review Ransomware Actors Use...

6.9AI score
Exploits0References2
CISA
CISA
added 2021/09/09 12:0 a.m.7 views

Cisco Releases Security Updates for Multiple Products

Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page. CISA encourages...

7AI score
Exploits0References5
CISA
CISA
added 2021/03/26 12:0 a.m.7 views

Apple Releases Security Updates 

Apple has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected device. CISA encourages users and administrators to review the Apple security pages for the following products and apply the...

6.9AI score
Exploits0References3
CISA
CISA
added 2021/03/25 12:0 a.m.7 views

Cisco Releases Security Updates

Cisco has released security updates to address vulnerabilities in multiple Cisco products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the Cisco Security Advisories page and apply the necessary...

7.1AI score
Exploits0References1
CISA
CISA
added 2020/10/21 12:0 a.m.7 views

Google Releases Security Updates for Chrome

Google has released Chrome version 86.0.4240.111 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review the...

7AI score
Exploits0References1
CISA
CISA
added 2020/10/20 12:0 a.m.7 views

Oracle Releases October 2020 Security Bulletin

Oracle has released its Critical Patch Update for October 2020 to address 402 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users a...

7.1AI score
Exploits0References1
CISA
CISA
added 2020/07/29 12:0 a.m.7 views

Mozilla Releases Security Updates for Multiple Products

Mozilla has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators t...

6.9AI score
Exploits0References6
CISA
CISA
added 2020/07/08 12:0 a.m.7 views

VMware Releases Security Update for VeloCloud

VMware has released a security update to address a vulnerability in VeloCloud. An attacker could exploit this vulnerability to obtain sensitive information. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review VMware Security Advisory...

6.4AI score
Exploits0References1
CISA
CISA
added 2020/05/29 12:0 a.m.7 views

VMware Releases Security Updates for Multiple Products

VMware has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit one of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review the...

7.1AI score
Exploits0References1
CISA
CISA
added 2020/05/07 12:0 a.m.7 views

Cisco Releases Security Updates for Multiple Products

Cisco has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review the Cis...

7.1AI score
Exploits0References1
CISA
CISA
added 2020/03/19 12:0 a.m.7 views

Google Releases Security Updates for Chrome

Google has released Chrome version 80.0.3987.149 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review the...

7AI score
Exploits0References1
CISA
CISA
added 2020/03/16 12:0 a.m.7 views

VMware Releases Security Updates for Multiple Products

VMware has released security updates to address vulnerabilities in multiple products. An attacker could exploit these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review VMware Security...

7.1AI score
Exploits0References2
CISA
CISA
added 2020/02/12 12:0 a.m.7 views

New SchoolSafety.gov Provides Cyber Guidance for K-12 Schools

The Federal School Safety Clearinghouse just launched its website: SchoolSafety.gov. This website—a collaboration between the Department of Homeland Security and the U.S. Departments of Education, Justice, and Health and Human Services—features a fact sheet on Cyber Safety Considerations for K-12...

6.7AI score
Exploits0References6
CISA
CISA
added 2019/10/31 12:0 a.m.7 views

North Korean Malicious Cyber Activity

The Cybersecurity and Infrastructure Security Agency CISA, the Federal Bureau of Investigation FBI, and the Department of Defense DoD have identified a Trojan malware variant—referred to as HOPLIGHT—used by the North Korean government. The U.S. Government refers to malicious cyber activity by the...

6.8AI score
Exploits0References2
Total number of security vulnerabilities4188