AA23-025A: Protecting Against Malicious Use of Remote Monitoring and Management Software

Original release date: January 25, 2023SummaryThe Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Multi-State Information Sharing and Analysis Center (MS-ISAC) (hereafter referred to as the “authoring…

Comments Off on AA23-025A: Protecting Against Malicious Use of Remote Monitoring and Management Software

VMware Releases Security Updates for VMware vRealize Log Insight

Original release date: January 25, 2023VMware released security updates to address multiple vulnerabilities in VMware vRealize Log Insight. A remote attacker could exploit these vulnerabilities to take control of an…

Comments Off on VMware Releases Security Updates for VMware vRealize Log Insight

Vulnerability Summary for the Week of January 16, 2023

Original release date: January 23, 2023 | Last revised: January 24, 2023  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info adobe -- acrobat_reader Adobe…

Comments Off on Vulnerability Summary for the Week of January 16, 2023

Drupal Releases Security Advisories to Address Multiple Vulnerabilities

Original release date: January 20, 2023Drupal has released security advisories to address vulnerabilities affecting multiple products. An attacker could exploit these vulnerabilities to access sensitive information. CISA encourages users and…

Comments Off on Drupal Releases Security Advisories to Address Multiple Vulnerabilities

Cisco Releases Security Advisory for Unified CM and Unified CM SME

Original release date: January 20, 2023Cisco released a security advisory for a vulnerability affecting Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM…

Comments Off on Cisco Releases Security Advisory for Unified CM and Unified CM SME

Vulnerability Summary for the Week of January 9, 2023

Original release date: January 16, 2023 | Last revised: January 17, 2023  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info web-cyradm_project -- web-cyradm A…

Comments Off on Vulnerability Summary for the Week of January 9, 2023

Vulnerability Summary for the Week of January 2, 2023

Original release date: January 9, 2023 | Last revised: January 10, 2023  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info synology -- vpn_plus_server Out-of-bounds…

Comments Off on Vulnerability Summary for the Week of January 2, 2023

CISA Releases Three Industrial Systems Control Advisories

Original release date: January 5, 2023CISA released three Industrial Control Systems (ICS) advisories on January 5 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding…

Comments Off on CISA Releases Three Industrial Systems Control Advisories