Microsoft has released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. Users and…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info 8theme--XStore Core Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in 8theme XStore…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info ASKEY--5G NR Small Cell ASKEY 5G NR Small Cell fails to properly filter user input for…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info ASUS--ExpertWiFi ASUS routers supporting custom OpenVPN profiles are vulnerable to a code execution vulnerability. An authenticated and…
Cisco released a bundled publication for security advisories that address vulnerabilities in Cisco Adaptive Security Appliance (ASA), Firepower Management Center (FMC), and Firepower Threat Defense (FTD) software. A cyber threat…
Rockwell Automation has released guidance encouraging users to remove connectivity on all Industrial Control Systems (ICS) devices connected to the public-facing internet to reduce exposure to unauthorized or malicious cyber…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info 8theme--XStore Core Improper Privilege Management vulnerability in 8theme XStore Core allows Privilege Escalation.This issue affects XStore Core:…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info academy_lms -- academy_lms Missing Authorization vulnerability in Academy LMS.This issue affects Academy LMS: from n/a through 1.9.16.…
Today, CISA, in partnership with the Federal Bureau of Investigation (FBI), the Department of Health and Human Services (HHS), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) released joint…
SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These…
