Vulnerability Summary for the Week of October 9, 2023

 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info 3ds -- teamwork_cloud_no_magic_release A Cross-Site Request Forgery (CSRF) vulnerability affecting Teamwork Cloud from No Magic Release…

Comments Off on Vulnerability Summary for the Week of October 9, 2023

CISA Releases Nineteen Industrial Control Systems Advisories

CISA released nineteen Industrial Control Systems (ICS) advisories on October 12, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-285-01 Siemens SIMATIC CP…

Comments Off on CISA Releases Nineteen Industrial Control Systems Advisories

#StopRansomware: AvosLocker Ransomware (Update)

SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These…

Comments Off on #StopRansomware: AvosLocker Ransomware (Update)

CISA Adds Five Known Vulnerabilities to Catalog

CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation: CVE-2023-21608 Adobe Acrobat and Reader Use-After-Free Vulnerability CVE-2023-20109 Cisco IOS and IOS XE Group Encrypted…

Comments Off on CISA Adds Five Known Vulnerabilities to Catalog

Citrix Releases Security Updates for Multiple Products

Citrix has released security updates to address vulnerabilities affecting multiple products. A malicious cyber actor can exploit one of these vulnerabilities take control of an affected system. CISA encourages users and…

Comments Off on Citrix Releases Security Updates for Multiple Products

Vulnerability Summary for the Week of October 2, 2023

  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info acronis -- agent Local privilege escalation due to improper soft link handling. The following products…

Comments Off on Vulnerability Summary for the Week of October 2, 2023

Apple Releases Security Updates for iOS and iPadOS

Apple has released security updates to address vulnerabilities in iOS and iPadOS. A cyber threat actor could exploit these vulnerabilities to take control of an affected system. CISA encourages users…

Comments Off on Apple Releases Security Updates for iOS and iPadOS

NSA and CISA Red and Blue Teams Share Top Ten Cybersecurity Misconfigurations

A plea for network defenders and software manufacturers to fix common problems. EXECUTIVE SUMMARY The National Security Agency (NSA) and Cybersecurity and Infrastructure Security Agency (CISA) are releasing this joint…

Comments Off on NSA and CISA Red and Blue Teams Share Top Ten Cybersecurity Misconfigurations