Vulnerability Summary for the Week of September 27, 2021

Original release date: October 4, 2021  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info adobe -- digital_editions Adobe Digital Editions 4.5.11.187646 (and earlier) are…

Comments Off on Vulnerability Summary for the Week of September 27, 2021

CISA and NSA Release Guidance on Selecting and Hardening VPNs

Original release date: September 28, 2021The National Security Agency (NSA) and CISA have released the cybersecurity information sheet Selecting and Hardening Standards-based Remote Access VPN Solutions to address the potential security…

Comments Off on CISA and NSA Release Guidance on Selecting and Hardening VPNs

RCE Vulnerability in Hikvision Cameras (CVE-2021-36260)

Original release date: September 28, 2021Hikvision has released updates to mitigate a command injection vulnerability—CVE-2021-36260—in Hikvision cameras that use a web server service. A remote attacker could exploit this vulnerability…

Comments Off on RCE Vulnerability in Hikvision Cameras (CVE-2021-36260)

Vulnerability Summary for the Week of September 20, 2021

Original release date: September 27, 2021  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info There were no high vulnerabilities recorded this week. Back to…

Comments Off on Vulnerability Summary for the Week of September 20, 2021

AA21-265A: Conti Ransomware

Original release date: September 22, 2021SummaryImmediate Actions You Can Take Now to Protect Against Conti Ransomware • Use multi-factor authentication. • Segment and segregate networks and functions. • Update your…

Comments Off on AA21-265A: Conti Ransomware

NETGEAR Releases Security Updates for RCE Vulnerability

Original release date: September 21, 2021NETGEAR has released security updates to address a remote code execution vulnerability—CVE-2021-40847—in multiple NETGEAR routers. A remote attacker could exploit this vulnerability to take control…

Comments Off on NETGEAR Releases Security Updates for RCE Vulnerability

Vulnerability Summary for the Week of September 13, 2021

Original release date: September 20, 2021  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info zohocorp -- manageengine_adselfservice_plus Zoho ManageEngine ADSelfService Plus 6111 and prior…

Comments Off on Vulnerability Summary for the Week of September 13, 2021

ACSC Releases Annual Cyber Threat Report

Original release date: September 16, 2021The Australian Cyber Security Centre (ACSC) has released its annual report on key cyber security threats and trends for the 2020–21 financial year.    …

Comments Off on ACSC Releases Annual Cyber Threat Report