Mitigating Log4Shell and Other Log4j-Related Vulnerabilities

Original release date: December 22, 2021CISA, the Federal Bureau of Investigation (FBI), the National Security Agency (NSA), and the cybersecurity authorities of Australia, Canada, New Zealand, and the United Kingdom…

Comments Off on Mitigating Log4Shell and Other Log4j-Related Vulnerabilities

Vulnerability Summary for the Week of December 13, 2021

Original release date: December 21, 2021  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info abb -- omnicore_c30_firmware A Missing Authentication vulnerability in RobotWare for…

Comments Off on Vulnerability Summary for the Week of December 13, 2021

CISA Adds Two Known Exploited Vulnerabilities to Catalog

Original release date: December 15, 2021CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence that threat actors are actively exploiting the vulnerabilities listed in…

Comments Off on CISA Adds Two Known Exploited Vulnerabilities to Catalog

SAP Releases December 2021 Security Updates

Original release date: December 14, 2021SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected…

Comments Off on SAP Releases December 2021 Security Updates

Microsoft Releases December 2021 Security Updates

Original release date: December 14, 2021Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an…

Comments Off on Microsoft Releases December 2021 Security Updates

CISA Creates Webpage for Apache Log4j Vulnerability CVE-2021-44228

Original release date: December 13, 2021CISA and its partners, through the Joint Cyber Defense Collaborative, are tracking and responding to active, widespread exploitation of a critical remote code execution vulnerability…

Comments Off on CISA Creates Webpage for Apache Log4j Vulnerability CVE-2021-44228

Vulnerability Summary for the Week of December 6, 2021

Original release date: December 13, 2021  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info accops -- hyworks_dvm_tools A Buffer Overflow vulnerability exists in Accops…

Comments Off on Vulnerability Summary for the Week of December 6, 2021