Log in to see all content. Some content is hidden to the public.
Can't find what you're looking for? Help us improve the search functionality by reporting the expected results.
2944 Results
Critical and High Vulnerabilities in VMware Products
VMware has released security updates to address Critical and High vulnerabilities affecting multiple VMware products. An attacker can exploit some of these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and affected systems go to VMware Security Advisories. IT Security
Vulnerabilities in Multiple Apple Products
Apple has released a security update to address vulnerabilities in multiple Apple Products. An attacker can exploit some of these vulnerabilities to take control of an affected system.
Vulnerabilities in Multiple Microsoft Products
Microsoft released their December Security Update to address vulnerabilities in multiple products.An attacker can exploit some of these vulnerabilities to take control of an affected system. For a complete description of the vulnerabilities and affected systems go to December 2022 Security Update. IT Security
High Vulnerabilities in Multiple Mozilla Products
Mozilla released security updates to address High vulnerabilities in Thunderbird, Firefox ESR, and Firefox. An attacker could exploit these vulnerabilities to cause user confusion or conduct spoofing attacks. For a complete description of the vulnerabilities and affected systems go to Mozilla Foundation Security Advisories. IT Security
Critical Vulnerability in Citrix Products Exploited in the Wild
Citrix has released security updates to address a Critical actively exploited vulnerability impacting Citrix ADC and Citrix Gateway. An attacker could exploit the vulnerability to take control of an affected system.
Vulnerability in MS Sysmon Weaponized
H-ISAC reported that a vulnerability in Sysmon was weaponized. Successful exploitation of this vulnerability can allow for privilege escalation. For a complete description of the vulnerabilities and affected systems go to Microsoft Windows Sysmon Elevation of Privilege Vulnerability CVE-2022-41120. IT Security
Vulnerability in VMWare vRealize Operations Likely Weaponized
H-ISAC reported that a vulnerability in VMWare vRealize Operations was likely weaponized. Successful exploitation of this vulnerability can allow an unauthenticated potential attacker to create a user with administrative privileges. For a complete description of the vulnerabilities and affected systems go to CVE-2022-31675 Detail. IT Security
Actively Exploited Critical Vulnerability in Fortinet FortiOS
Fortinet has released security updates to address a Critical actively exploited vulnerability in Fortinet FortiOS. An attacker could exploit this vulnerability to take control of an affected system. This vulnerability has been exploited in the wild.
REDCap, Twilio, and A2P10DLC compliance
Overview
A change to how SMS services work may interrupt how a number of UCSF research studies collect data starting Thursday, December 15, 2022. The REDCap team has developed a path for a short-term resolution and are working on the implementation process.
This page summarizes the UCSF REDCap team's strategy for helping studies work through the change.
Dec 2022: Phish Alarm-Themed Lures Used in Credential Phishing Attacks
Threat Alert: What to Watch For Cybercriminals have launched phishing attacks claiming to originate from a company help desk team.