Log in to see all content. Some content is hidden to the public.
Can't find what you're looking for? Help us improve the search functionality by reporting the expected results.
1509 Results
Vulnerabilities Affecting Multiple Adobe Products
Adobe has released security updates to address vulnerabilities affecting multiple products. These updates protect against an attacker using these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and effected systems, visit Adobe Latest Product Security Updates. IT Security Read more about IT Security service offerings.
NOBELIUM (Nation-State Threat Actor) Attacks Cloud Services and other Technologies
Microsoft has released a blog on NOBELIUM (nation-state threat actor) attacks on cloud services and other technologies. This blog is to protect against NOBELIUM gaining access to downstream customers of multiple cloud service providers (CSP), managed service providers (MSP), and other IT services organizations.
Critical Vulnerability in the NPM Package ua-parser-js
GitHub has released an advisory about a Critical vulnerability in the NPM package ua-parser-js. This advisory is to protect against remote attackers using the vulnerabilities to obtain sensitive information or take control of the system. Any computer that has this package installed or running should be considered fully compromised
Vulnerability in Trane HVAC Systems Controls
CISA released an ICS Advisory on a vulnerability in Trane HVAC Systems Controls. This advisory is to protect against remote attackers using the vulnerabilities to redirect a user to a malicious webpage and steal the user’s cookie. For a complete description of the vulnerabilities and effected systems, visit ICS Advisory (ICSA-21-292-02) Trane HVAC Systems Controls.
Vulnerability in AUVESY Versiondog
CISA released an ICS Advisory on a vulnerability in AUVESY Versiondog. This advisory is to protect against remote attackers using the vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and effected systems, visit ICS Advisory (ICSA-21-292-01) AUVESY Versiondog. IT Security Read more about IT Security service offerings.
Vulnerability in Cisco IOS XE SD-WAN Software
CISCO has released a High security update to address a vulnerability in Cisco IOS XE SD-WAN Software. This update protects against remote attackers using the vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and effected systems, visit Cisco IOS XE SD-WAN Software Command Injection Vulnerability.
Chrome Version 95.0.4638.54 Released
Google has released Chrome version 95.0.4638.54 to address vulnerabilities for Windows, Mac, and Linux. These updates protect against remote attackers using the vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and effected systems, visit Stable Channel Update for Desktop.
Vulnerabilities Across Multiple Oracle Products
Oracle has released its Critical Patch Update for October 2021 to address vulnerabilities across multiple products This update protects against an an attacker exploiting these vulnerabilities to bto take control of an affected system. For a complete description of the vulnerabilities and effected systems, visit Oracle Critical Patch Update Advisory - October 2021.
Important Vulnerabilities in MS PowerShell
Microsoft released a security update to address Important vulnerabilities in PowerShell. This update protects against an an attacker exploiting these vulnerabilities to bypass Windows Defender Application Control (WDAC) enforcements and gain access to plain text credentials.
Multiple Vulnerabilities in the Popular WordPress Plugin WP Fastest Cache
WordPress released a security update to address multiple vulnerabilities have been found in the popular WordPress plugin WP Fastest Cache. These updates protect against an Authenticated SQL Injection vulnerability and a Stored XSS (Cross-Site Scripting) via Cross-Site Request Forgery (CSRF) issue.