Log in to see all content. Some content is hidden to the public.
Can't find what you're looking for? Help us improve the search functionality by reporting the expected results.
617 Results
- Other Content
04/03/25: Vulnerabilities in Splunk Products
Splunk released security updates to address vulnerabilities in Splunk products. An attacker could exploit these vulnerabilities to perform remote code execution (RCE).For a complete description of the vulnerabilities and affected systems, go to Splunk Security Advisories Archive.IT Security Read more about IT Security service offerings.
04/03/25: Vulnerabilities in Mozilla Firefox
Mozilla released security updates to address vulnerabilities in Firefox products.For a complete description of the vulnerabilities and affected systems, go to Security Vulnerabilities fixed in Firefox.IT Security Read more about IT Security service offerings.
Mar 2025: CRITICAL UPDATES “REQUIRED” LURE
03/27/25: Critical Vulnerability Kubernetes Nginx Controller
VMware has released security updates to address vulnerabilities in VMware Tools for Windows. An attacker could exploit this vulnerability to bypass authentication.For a complete description of the vulnerabilities and affected systems, go to Ingress Nightmare: 9.8 Critical Unauthenticated Remote Code Execution Vulnerabilities in Ingress NGINX.IT Security
03/27/25: Critical Vulnerability in Next.js
A security update was released to address a Critical vulnerability in Next.js. An attacker could exploit this vulnerability to bypass authorization checks.For a complete description of the vulnerabilities and affected systems, go to Next.js and the corrupt middleware: the authorizing artifact.IT Security Read more about IT Security service offerings.
03/27/25: Vulnerabilities in Google Chrome
Google has released new versions of Chrome to address vulnerabilities in Google Chrome.For a complete description of the vulnerabilities and affected systems, go toIT Security Read more about IT Security service offerings.
03/27/25: Critical Vulnerability in Veeam Backup & Replication
A security update was released to address a Critical vulnerability in Veeam Backup & Replication. An attacker could exploit this vulnerability to perform remote code execution (RCE).For a complete description of the vulnerabilities and affected systems, go to KB 4724 CVE-2025-23120.IT Security Read more about IT Security service offerings.
03/27/25: Supply Chain Compromise of Third-Party GitHub Action
A security update was released to address a vulnerability in Github Action, tj-actions/changed-files. An attacker could exploit this vulnerability to disclosure of Github Personal Access Tokens (PATs), npm tokens, and private RSA keys.For a complete description of the vulnerabilities and affected systems, go toIT Security Read more about IT Security service offerings.
03/27/25: Vulnerability in SAML
A new version of the OpenSAML library package has been released to address vulnerabilities. If exploited, this vulnerability could enable full account takeovers across organizations relying on SAML-based single sign-on (SSO).For a complete description of the vulnerabilities and affected systems, go to Shibboleth Service Provider Security Advisory.IT Security