Drupal released a security advisory to address a vulnerability affecting multiple Drupal core versions. A cyber threat actor could exploit this vulnerability to cause a denial-of-service condition. CISA encourages users and…
Oracle released its Critical Patch Update Advisory for January 2024 to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of…
High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info abocms -- abo.cms SQL Injection vulnerability in ABO.CMS v.5.9.3, allows remote attackers to execute arbitrary…
SUMMARY The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are releasing this joint Cybersecurity Advisory (CSA) to disseminate known indicators of compromise (IOCs) and…
Juniper Networks has released a security advisory to address a vulnerability (CVE-2024-21611) in Junos OS and Junos OS Evolved. A cyber threat actor could exploit this vulnerability to cause a denial-of-service…
High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info 7-card -- fakabao A vulnerability has been found in 7-card Fakabao up to 1.0_build20230805 and classified…
High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info awslabs -- sandbox-accounts-for-events "Sandbox Accounts for Events" provides multiple, temporary AWS accounts to a number of…
High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info 52north -- 52north_wps An XXE (XML External Entity) vulnerability has been detected in 52North WPS affecting…
SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These…
High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info acronis -- cyber_protect_home_office Local privilege escalation due to DLL hijacking vulnerability. The following products are affected:…
