Category Archives: Vulnerabilities
Microsoft Patch Tuesday – August 2017

This month the vendor has patched 48 vulnerabilities, 26 of which are rated Critical.Read More Source: U Chicago Edu Microsoft Patch Tuesday – August 2017

Microsoft Patch Tuesday – July 2017

This month the vendor has patched 54 vulnerabilities, 19 of which are rated Critical.Read More Source: U Chicago Edu Microsoft Patch Tuesday – July 2017

TA17-181A: Petya Ransomware

Original release date: July 01, 2017 Systems Affected Microsoft Windows operating systems Overview On June 27, 2017, NCCIC was notified of Petya ransomware events occurring in multiple countries and affecting…

Microsoft Patch Tuesday – June 2017

This month the vendor has released 94 vulnerabilities, 18 of which are rated Critical.Read More Source: U Chicago Edu Microsoft Patch Tuesday – June 2017

TA17-164A: HIDDEN COBRA – North Korea’s DDoS Botnet Infrastructure

Original release date: June 13, 2017 Systems Affected Networked Systems Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and…

TA17-163A: CrashOverride Malware

Original release date: June 12, 2017 Systems Affected Industrial Controls Systems Overview The National Cybersecurity and Communications Integration Center (NCCIC) is aware of public reports from ESET and Dragos outlining…

TA17-156A: Reducing the Risk of SNMP Abuse

Original release date: June 05, 2017 Systems Affected SNMP enabled devices Overview The Simple Network Management Protocol (SNMP) may be abused to gain unauthorized access to network devices. SNMP provides…

TA17-132A: Indicators Associated With WannaCry Ransomware

Original release date: May 12, 2017 | Last revised: May 13, 2017 Systems Affected Microsoft Windows operating systems Overview According to numerous open-source reports, a widespread ransomware campaign is affecting…

Microsoft Patch Tuesday – May 2017

This month the vendor has released 56 vulnerabilities, 17 of which are rated Critical.Read More Source: U Chicago Edu Microsoft Patch Tuesday – May 2017

Android App Permission in Google Play Contains Security Flaw

Android’s app permission mechanisms could allow malicious apps in Google Play to download directly onto the device. Source: Darkreading Attacks Breaches Android App Permission in Google Play Contains Security…

Microsoft Releases Emergency Patch For RCE Vuln

Flaw in Microsoft Malware Protection Engine called ‘crazy bad’ by researchers who discovered it. Source: Darkreading Attacks Breaches Microsoft Releases Emergency Patch For RCE Vuln

Aflac CISO: Insurance Sector Ramps Up Cyber Defenses

Aflac CISO Tim Callahan discusses ongoing initiatives to stay secure as hackers ramp up attacks on financial services. Source: Darkreading Attacks Breaches Aflac CISO: Insurance Sector Ramps Up Cyber…

CVE-2017-8848

Allen Disk 1.6 has CSRF in setpass.php with an impact of changing a password. Source: NIST Vulnerability CVE-2017-8848

CVE-2017-6953

Gemalto SmartDiag Diagnosis Tool v2.5 has a stack-based Buffer Overflow with SEH Overwrite via long “Register a new card” input fields. There may be a risk of local code execution…

CVE-2017-6051

An Uncontrolled Search Path Element issue was discovered in BLF-Tech LLC VisualView HMI Version 9.9.14.0 and prior. The uncontrolled search path element vulnerability has been identified, which may allow an…

Next Page