Log in to see all content. Some content is hidden to the public.
Can't find what you're looking for? Help us improve the search functionality by reporting the expected results.
3056 Results
MyPPM: OKR - Tiered Goal Deployment
- Staff
Zero-day Windows AD Authentication Vulnerabilities
Microsoft released emergency updates to fix 0-day Windows AD authentication vulnerabilities. After installing updates released May 10, 2022 on domain controllers, authentication failures may occur on the server or client for services such as Network Policy Server (NPS), Routing and Remote access Service (RRAS), Radius, Extensible Authentication Protocol (EAP), and Protected Extensible Authentication Protocol (PEAP). For a complete description of the vulnerabilities and affected systems:
Moderately Critical Vulnerability May Affect Drupal Sites
Drupal has released security updates to address a Moderately Critical vulnerability affecting some contributed projects or custom code on Drupal sites. A remote attacker could exploit this vulnerability to take control of an affected website. For a complete description of the vulnerabilities and affected systems Drupal core - Moderately critical - Third-party libraries - SA-CORE-2022-010.
Purported Actively Exploited Vulnerability in Trend Micro Consumer-Based Products
Trend Micro released a security update for a purported actively exploited vulnerability in its consumer-based products. Attackers are trying to hijack various popular security products, including one from Trend Micro. For a complete description of the vulnerabilities and affected systems SECURITY ADVISORY: Trend Micro Response to Moshen Dragon Abuse. IT Security
Chrome Version 102.0.5005.61 for Windows, Mac, and Linux Released
Google has released Chrome version 102.0.5005.61 for Windows, Mac, and Linux. An attacker could exploit these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and affected systems Chrome Release Note. IT Security Read more about IT Security service offerings.
High Vulnerabilities in Citrix ADC and Gateway
Citrix has released a security update to address High vulnerabilities in in ADC and Gateway. An attacker could exploit one of these vulnerabilities to cause a denial-of-service condition. For a complete description of the vulnerabilities and affected systems Citrix Security Update CTX457048. IT Security
Critical Vulnerabilities in Multiple Firefox Products
Mozilla has released security updates to address critical vulnerabilities in multiple firefox products. An attacker could exploit these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and affected systems Mozilla Foundation Security Advisories. IT Security
Zero-day vulnerabilities on Android Used for Cyber Surveillance Attacks
Google recommends using good hygiene to address campaigns targeting Google Products for cyber surveillance attacks. Exploitation of some of these vulnerabilities could allow a remote attacker to perform surveillance from the affected device. For a complete description of the vulnerabilities and affected systems googleapis / google-oauth-java-client.
High Vulnerability in Red Hat OpenShift GitOps
Red Hat released security updates to address a vulnerability in Red Hat OpenShift GitOps. A flaw was found in the ArgoCD component of Red Hat GitOps, where an unauthenticated attacker can craft a malicious JWT token while ArgoCD's anonymous access is enabled and gains full access to the ArgoCD instance. This flaw allows the attacker to impersonate any ArgoCD user or role, fully compromising the targeted cluster's confidentiality, integrity, and availability. For a complete description of the vulnerabilities and affected systems: