Vulnerability Summary for the Week of August 28, 2023

 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info earcms -- ear_app An issue found in Earcms Ear App v.20181124 allows a remote cyber threat…

Comments Off on Vulnerability Summary for the Week of August 28, 2023

VMware Releases Security Update for Tools

VMware has released a security update to address a vulnerability in VMware Tools. A cyber threat actor can exploit this vulnerability to obtain sensitive information. CISA encourages users and administrators…

Comments Off on VMware Releases Security Update for Tools

Infamous Chisel Malware Analysis Report

Infamous Chisel–A collection of components associated with Sandworm designed to enable remote access and exfiltrate information from Android phones. Executive Summary Infamous Chisel is a collection of components targeting Android…

Comments Off on Infamous Chisel Malware Analysis Report

Identification and Disruption of QakBot Infrastructure

SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) are releasing this joint Cybersecurity Advisory (CSA) to disseminate QakBot infrastructure indicators of compromise (IOCs) identified…

Comments Off on Identification and Disruption of QakBot Infrastructure

Vulnerability Summary for the Week of August 21, 2023

  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info qemu -- qemu The hardware emulation in the of_dpa_cmd_add_l2_flood of rocker device model in QEMU,…

Comments Off on Vulnerability Summary for the Week of August 21, 2023

CISA’s VDP Platform 2022 Annual Report Showcases Success

Today, the Cybersecurity and Infrastructure Security Agency (CISA) released its inaugural Vulnerability Disclosure Policy (VDP) Platform 2022 Annual Report, highlighting the service’s progress supporting vulnerability awareness and remediation across the Federal…

Comments Off on CISA’s VDP Platform 2022 Annual Report Showcases Success

Vulnerability Summary for the Week of August 14, 2023

High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info foldingathome -- client_advanced_control An issue was discovered in FoldingAtHome Client Advanced Control GUI before commit 9b619ae64443997948a36dda01b420578de1af77,…

Comments Off on Vulnerability Summary for the Week of August 14, 2023