CISA Announces Ransomware Vulnerability Warning Pilot

Today, CISA is announcing the creation of the Ransomware Vulnerability Warning Pilot (RVWP). Through the RVWP, CISA:      Proactively identifies information systems—belonging to critical infrastructure entities—that contain vulnerabilities commonly…

Comments Off on CISA Announces Ransomware Vulnerability Warning Pilot

Fortinet Releases March 2023 Vulnerability Advisories

Fortinet has released its March 2023 Vulnerability Advisories to address vulnerabilities affecting multiple products. An attacker could exploit one of these vulnerabilities to take control of an affected system.    CISA encourages…

Comments Off on Fortinet Releases March 2023 Vulnerability Advisories

Vulnerability Summary for the Week of February 6, 2017

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info dotnetnuke -- dotnetnuke The installation wizard in DotNetNuke (DNN) before 7.4.1 allows remote attackers to reinstall the…

Comments Off on Vulnerability Summary for the Week of February 6, 2017

Vulnerability Summary for the Week of January 8, 2018

  High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info advantech -- webaccess A SQL Injection issue was discovered in WebAccess versions prior to 8.3. WebAccess…

Comments Off on Vulnerability Summary for the Week of January 8, 2018

Vulnerability Summary for the Week of August 21, 2017

  High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info apache2triad -- apache2triad Session fixation vulnerability in Apache2Triad 1.5.4 allows remote attackers to hijack web sessions…

Comments Off on Vulnerability Summary for the Week of August 21, 2017

Vulnerability Summary for the Week of November 5, 2018

The NCCIC Weekly Vulnerability Summary Bulletin is created using information from the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD). In some cases, the vulnerabilities in the…

Comments Off on Vulnerability Summary for the Week of November 5, 2018

Vulnerability Summary for the Week of August 13, 2018

The NCCIC Weekly Vulnerability Summary Bulletin is created using information from the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD). In some cases, the vulnerabilities in the…

Comments Off on Vulnerability Summary for the Week of August 13, 2018

#StopRansomware: Royal Ransomware

SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These…

Comments Off on #StopRansomware: Royal Ransomware

Vulnerability Summary for the Week of October 22, 2012

High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info 2daybiz -- video_community_portal_script SQL injection vulnerability in index.php in Video Community Portal allows remote attackers to execute…

Comments Off on Vulnerability Summary for the Week of October 22, 2012

Vulnerability Summary for the Week of April 30, 2007

"> High Vulnerabilities PrimaryVendor -- Product Description Discovered Published CVSS Score Source & Patch Info Adobe -- PhotoshopAdobe -- Photoshop Elements Buffer overflow in Adobe Photoshop CS2 and CS3, and…

Comments Off on Vulnerability Summary for the Week of April 30, 2007