Original release date: May 6, 2021CISA is aware of a recent, successful cyberattack against an organization using a new ransomware variant, known as FiveHands, that has been used to successfully…
Original release date: May 3, 2021Ivanti has released a security update to address vulnerabilities affecting Pulse Connect Secure (PCS) software outlined in CVE-2021-22893. An attacker could exploit these vulnerabilities to…
Original release date: May 3, 2021  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info avaya -- session_border_controller_for_enterprise A command injection vulnerability in Avaya Session…
Original release date: April 30, 2021CISA is aware of a compromise of the Codecov software supply chain in which a malicious threat actor made unauthorized alterations of Codecov’s Bash Uploader…
Original release date: April 29, 2021CISA has released Industrial Control Systems Advisory ICSA-21-119-04 Multiple RTOS to provide notice of multiple vulnerabilities found in real-time operating systems (RTOS) and supporting libraries.…
Original release date: April 26, 2021A software supply chain attack—such as the recent SolarWinds Orion attack—occurs when a cyber threat actor infiltrates a software vendor’s network and employs malicious code…
Original release date: April 26, 2021The Federal Bureau of Investigation (FBI), Department of Homeland Security, and CISA have released a Joint Cybersecurity Advisory (CSA) addressing Russian Foreign Intelligence Service (SVR) cyber…
Original release date: April 26, 2021 High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info adobe -- robohelp Adobe Robohelp version 2020.0.3 (and earlier) is…
Original release date: April 26, 2021SummaryThe Federal Bureau of Investigation (FBI), Department of Homeland Security (DHS), and Cybersecurity and Infrastructure Security Agency (CISA) assess Russian Foreign Intelligence Service (SVR) cyber…
AR21-112A
