ACSC and CISA Release Business Continuity in a Box

Today, the Australian Signals Directorate’s Australian Cyber Security Centre (ASD's ACSC) and CISA released Business Continuity in a Box. Business Continuity in a Box, developed by ACSC with contributions from…

Comments Off on ACSC and CISA Release Business Continuity in a Box

CISA Published When to Issue VEX Information

Today, CISA published When to Issue Vulnerability Exploitability eXchange (VEX) Information, developed by a community of industry and government experts with the goal to offer some guidance and structure for…

Comments Off on CISA Published When to Issue VEX Information

Vulnerability Summary for the Week of October 30, 2023

  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info contec -- solarview_compact_firmware An issue in Contec SolarView Compact v.6.0 and before allows an attacker…

Comments Off on Vulnerability Summary for the Week of October 30, 2023

VMware Releases Advisory for VMware Tools Vulnerabilities

VMware released a security advisory addressing multiple vulnerabilities (CVE-2023-34057, CVE-2023-34058) in VMware Tools. A cyber actor could exploit one of these vulnerabilities to take control of an affected system. CISA…

Comments Off on VMware Releases Advisory for VMware Tools Vulnerabilities

Vulnerability Summary for the Week of October 23, 2023

  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info projectworlds_pvt._limited -- online_art_gallery   Online Art Gallery v1.0 is vulnerable to multiple Unauthenticated SQL Injection…

Comments Off on Vulnerability Summary for the Week of October 23, 2023

CISA Announces Launch of Logging Made Easy

Today, CISA announces the launch of a new version of Logging Made Easy (LME), a straightforward log management solution for Windows-based devices that can be downloaded and self-installed for free. CISA’s version…

Comments Off on CISA Announces Launch of Logging Made Easy

Mozilla Releases Security Advisories for Multiple Products

Mozilla has released security updates to address vulnerabilities in Firefox and Thunderbird. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system. CISA…

Comments Off on Mozilla Releases Security Advisories for Multiple Products

Vulnerability Summary for the Week of October 16, 2023

High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info 1e -- platform Affected 1E Platform versions have a Blind SQL Injection vulnerability that can lead…

Comments Off on Vulnerability Summary for the Week of October 16, 2023