Drupal Releases Security Advisory for Drupal Core

Drupal released a security advisory to address a vulnerability affecting multiple Drupal core versions. A cyber threat actor could exploit this vulnerability to cause a denial-of-service condition. CISA encourages users and…

Comments Off on Drupal Releases Security Advisory for Drupal Core

Vulnerability Summary for the Week of January 8, 2024

  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info abocms -- abo.cms SQL Injection vulnerability in ABO.CMS v.5.9.3, allows remote attackers to execute arbitrary…

Comments Off on Vulnerability Summary for the Week of January 8, 2024

Known Indicators of Compromise Associated with Androxgh0st Malware

SUMMARY The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are releasing this joint Cybersecurity Advisory (CSA) to disseminate known indicators of compromise (IOCs) and…

Comments Off on Known Indicators of Compromise Associated with Androxgh0st Malware

Vulnerability Summary for the Week of January 1, 2024

 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info 7-card -- fakabao A vulnerability has been found in 7-card Fakabao up to 1.0_build20230805 and classified…

Comments Off on Vulnerability Summary for the Week of January 1, 2024

Vulnerability Summary for the Week of December 25, 2023

 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info awslabs -- sandbox-accounts-for-events "Sandbox Accounts for Events" provides multiple, temporary AWS accounts to a number of…

Comments Off on Vulnerability Summary for the Week of December 25, 2023

Vulnerability Summary for the Week of December 18, 2023

 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info 52north -- 52north_wps An XXE (XML External Entity) vulnerability has been detected in 52North WPS affecting…

Comments Off on Vulnerability Summary for the Week of December 18, 2023

#StopRansomware: ALPHV Blackcat

SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These…

Comments Off on #StopRansomware: ALPHV Blackcat

Vulnerability Summary for the Week of December 11, 2023

 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info acronis -- cyber_protect_home_office Local privilege escalation due to DLL hijacking vulnerability. The following products are affected:…

Comments Off on Vulnerability Summary for the Week of December 11, 2023