Log in to see all content. Some content is hidden to the public.
Can't find what you're looking for? Help us improve the search functionality by reporting the expected results.
3052 Results
Critical Vulnerability in Microsoft Outlook Likely to be Exploited in Zero-Day
Mandiant reported a Critical vulnerability in Microsoft Outlook. This vulnerability requires no user interaction and for which proof of concept exploits are now widely available. There is a possibility of privilege escalation with no user interaction or privileges required for exploitation. Following exploitation an attacker could authenticate to multiple services and move laterally. Exploitation of the zero-day is trivial, and it will likely be leveraged imminently by actors for espionage purposes or financial gain.
Vulnerability in Microsoft Windows Server 2022 Internet Control Message Protocol (ICMP)
Mandiant reported a vulnerability in Microsoft Windows Server 2022 Internet Control Message Protocol (ICMP). An attacker who successfully exploited the vulnerability could run arbitrary code on the affected system. For a complete description of the vulnerabilities and affected systems go to CVE-2023-23415 Detail. IT Security
Vulnerabilities in Multiple Adobe products
Adobe has released security updates to address vulnerabilities in multiple Adobe products. An attacker can exploit some of these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and affected systems go to Adobe Security Bulletins. IT Security
High Vulnerabilities in Multiple Mozilla Products
Mozilla has released security updates to address High vulnerabilities in multiple Mozilla products. An attacker can exploit some of these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and affected systems go to Mozilla Foundation Security Advisories. IT Security
Vulnerabilities in Multiple Microsoft Products
Microsoft released their March Security Update to address vulnerabilities in multiple products. An attacker can exploit some of these vulnerabilities to take control of an affected system.
Mar 2023: Invoice-Themed Phishing Lures Spreading Malware
Threat Alert: What to Watch For Cybercriminals have launched phishing attacks using malicious invoice-themed attachments to spread malicious software (malware). The phishing attacks hijack legitimate email threads to deliver the phishing lures to further increase the believability of the attacks.
Vulnerabilities in Chrome
Google released Chrome 111.0.5563.64 (Linux and Mac) and 111.0.5563.64/.65( Windows) to address vulnerabilities in Chrome. For a complete description of the vulnerabilities and affected systems go to Chrome Stable Channel Update IT Security
High Vulnerability in Cisco IOS XR Software
Cisco released a security update to address a High vulnerability in Cisco IOS XR Software. A remote attacker could exploit this vulnerability to cause a a denial of service (DoS) condition.
Vulnerabilities in Dell EMC PowerScale OneFS 9.4.0.2
Mandiant reported vulnerabilities in Dell EMC PowerScale OneFS 9.4.0.2. A remote attacker could exploit these vulnerabilities to take over the system, disclose information, or perform remote code execution.
Vulnerability in GitHub Enterprise Server 3.7.0
Mandiant reported a vulnerability in GitHub Enterprise Server 3.7.0. A remote attacker could exploit this vulnerability to perform remote code execution. For a complete description of the vulnerabilities and affected systems go to CVE-2022-46255 Detail IT Security Read more about IT Security service offerings.