Today, the National Security Agency’s Artificial Intelligence Security Center (NSA AISC) published the joint Cybersecurity Information Sheet Deploying AI Systems Securely in collaboration with CISA, the Federal Bureau of Investigation…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info adobe -- adobe_commerce Adobe Commerce versions 2.4.6-p4, 2.4.5-p6, 2.4.4-p7, 2.4.7-beta3 and earlier are affected by an Improper…
Juniper has released security updates to address multiple vulnerabilities in Junos OS, Junos OS Evolved, Paragon Active Assurance and Junos OS: EX4300 Series. A cyber threat actor could exploit some of these…
Palo Alto Networks has released workaround guidance for a command injection vulnerability (CVE-2024-3400) affecting PAN-OS versions 10.2, 11.0, and 11.1. Palo Alto Networks has reported active exploitation of this vulnerability…
Citrix released security updates to address multiple vulnerabilities in XenServer and Citrix Hypervisor. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system. …
Microsoft released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. Users and administrators…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info abb -- symphony_plus_s+_operations ABB has internally identified a vulnerability in the ABB VPNI feature of the S+…
Ivanti has released security updates to address vulnerabilities in all supported versions (9.x and 22.x) of Ivanti Connect Secure and Policy Secure gateways. A cyber threat actor could exploit one of…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info acowebs -- pdf_invoices_and_packing_slips_for_woocommerce Deserialization of Untrusted Data vulnerability in Acowebs PDF Invoices and Packing Slips For…
CISA and the open source community are responding to reports of malicious code being embedded in XZ Utils versions 5.6.0 and 5.6.1. This activity was assigned CVE-2024-3094. XZ Utils is…
