CISA: CISA Requests Public Comment for Draft National Cyber Incident Response Plan Update
CISA Requests Public Comment for Draft National Cyber Incident Response Plan Update Today, CISA—through the Joint Cyber Defense Collaborative and...
threatintel
CISA: CISA Releases Five Industrial Control Systems Advisories
CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on December 17, 2024. These...
CISA: CISA and ONCD Release Playbook for Strengthening Cybersecurity in Federal Grant Programs for Critical Infrastructure
CISA and ONCD Release Playbook for Strengthening Cybersecurity in Federal Grant Programs for Critical Infrastructure Today, CISA and the Office...
CISA: CISA Issues BOD 25-01, Implementing Secure Practices for Cloud Services
CISA Issues BOD 25-01, Implementing Secure Practices for Cloud Services Today, CISA issued Binding Operational Directive (BOD) 25-01, Implementing Secure...
CISA: CISA Releases Best Practice Guidance for Mobile Communications
CISA Releases Best Practice Guidance for Mobile Communications Today, CISA released Mobile Communications Best Practice Guidance. The guidance was crafted...
CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Eight Industrial Control Systems Advisories
CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on December 19, 2024. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: Fortinet Releases Security Updates for FortiManager
Fortinet Releases Security Updates for FortiManager Fortinet released a security update to address a vulnerability in FortiManager. A remote cyber...
US-CERT Vulnerability Summary for the Week of December 23, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded in the past week. In some...
CVE Alert: CVE-2024-50701
Vulnerability Summary: CVE-2024-50701 TeamPass before 3.1.3.1, when retrieving information about access rights for a folder, does not properly check whether...
CVE Alert: CVE-2024-54181
Vulnerability Summary: CVE-2024-54181 IBM WebSphere Automation 1.7.5 could allow a remote privileged user, who has authorized access to the swagger...
CVE Alert: CVE-2024-50702
Vulnerability Summary: CVE-2024-50702 TeamPass before 3.1.3.1 does not properly check whether a mail_me (aka action_mail) operation is on behalf of...
CVE Alert: CVE-2024-10044
Vulnerability Summary: CVE-2024-10044 A Server-Side Request Forgery (SSRF) vulnerability exists in the POST /worker_generate_stream API endpoint of the Controller API...
CVE Alert: CVE-2024-50703
Vulnerability Summary: CVE-2024-50703 TeamPass before 3.1.3.1 does not properly prevent a user from acting with the privileges of a different...
CVE Alert: CVE-2024-12835
Vulnerability Summary: CVE-2024-12835 Delta Electronics DRASimuCAD ICS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers...
CVE Alert: CVE-2024-12754
Vulnerability Summary: CVE-2024-12754 AnyDesk Link Following Information Disclosure Vulnerability. This vulnerability allows local attackers to disclose sensitive information on affected...
CVE Alert: CVE-2024-12834
Vulnerability Summary: CVE-2024-12834 Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers...
CVE Alert: CVE-2024-12836
Vulnerability Summary: CVE-2024-12836 Delta Electronics DRASimuCAD STP File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers...
CVE Alert: CVE-2024-12828
Vulnerability Summary: CVE-2024-12828 Webmin CGI Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code...
[FUNKSEC] – Ransomware Victim: RaaS Open
Ransomware Group: FUNKSEC VICTIM NAME: RaaS Open NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2024-56733
Vulnerability Summary: CVE-2024-56733 Password Pusher is an open source application to communicate sensitive information over the web. A vulnerability has...
