Original release date: September 22, 2021CISA, the Federal Bureau of Investigation (FBI), and the National Security Agency (NSA) have released a joint Cybersecurity Advisory (CSA) alerting organizations of increased Conti…
Original release date: September 21, 2021NETGEAR has released security updates to address a remote code execution vulnerability—CVE-2021-40847—in multiple NETGEAR routers. A remote attacker could exploit this vulnerability to take control…
Original release date: September 20, 2021 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info zohocorp -- manageengine_adselfservice_plus Zoho ManageEngine ADSelfService Plus 6111 and prior…
Original release date: September 16, 2021The Australian Cyber Security Centre (ACSC) has released its annual report on key cyber security threats and trends for the 2020–21 financial year. …
Original release date: September 16, 2021SummaryThis Joint Cybersecurity Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 8. See the ATT&CK for Enterprise for referenced threat…
Original release date: September 16, 2021The Federal Bureau of Investigation (FBI), CISA, and Coast Guard Cyber Command (CGCYBER) have released a Joint Cybersecurity Advisory (CSA) detailing the active exploitation of…
Original release date: September 16, 2021Microsoft has released an update to address a remote code execution vulnerability in Azure Linux Open Management Infrastructure (OMI). An attacker could use this vulnerability…
Original release date: September 16, 2021Drupal has released security updates to address multiple vulnerabilities affecting Drupal 8.9, 9.1, and 9.2. An attacker could exploit some of these vulnerabilities to take…
Original release date: September 13, 2021 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info adaptivescale -- lxdui A Hardcoded JWT Secret Key in metadata.py…
Original release date: September 13, 2021Apple has released security updates to address vulnerabilities—CVE-2021-30858 and CVE-2021-30860—in multiple products. An attacker could exploit these vulnerabilities to take control of an affected device.…
