Original release date: November 8, 2021 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info aaptjs_project -- aaptjs An issue was discovered in the crunch…
Original release date: November 4, 2021On November 1, 2021, researchers publicly released a BrakTooth proof-of-concept (PoC) tool to test Bluetooth-enabled devices against potential Bluetooth exploits using the researcher’s software tools.…
Original release date: November 3, 2021CISA has issued Binding Operational Directive (BOD) 22-01, Reducing the Significant Risk of Known Exploited Vulnerabilities, to addresses vulnerabilities that establishes specific timeframes for federal…
Original release date: November 3, 2021The Federal Bureau of Investigation (FBI) has released a Private Industry Notification (PIN) on ransomware actors using significant financial events, such as mergers and acquisitions,…
Original release date: November 3, 2021Mozilla has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. An attacker could exploit some of these vulnerabilities to take control of…
Original release date: November 1, 2021 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info apache -- storm An Unsafe Deserialization vulnerability exists in the…
Original release date: October 28, 2021The National Security Agency (NSA) and CISA have published the first of a four-part series, Security Guidance for 5G Cloud Infrastructures. Security Guidance for 5G…
Original release date: October 27, 2021The Federal Bureau of Investigation (FBI) has released a Flash report detailing indicators of compromise (IOCs) associated with attacks using Ranzy Locker, a ransomware variant…
Original release date: October 25, 2021 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info adobe -- ops-cli Ops CLI version 2.0.4 (and earlier) is…
Original release date: October 25, 2021Microsoft has released a blog on NOBELIUM attacks on cloud services and other technologies. CISA urges users and administrators to review [NOBELIUM targeting delegated administrative…
