Finding Rockwell Automation Allen-Bradley Communication Modules Affected by CVE-2023-3595 and CVE-2023-3596 in OT Environments
Identifying vulnerable systems in your industrial environment can be complex. 使用錯誤的工具可能會讓您沒有注意到受影響的裝置。Find out how Tenable OT Security is designed to give you in-depth asset visibility to address these new vulnerabilities without disrupting productivity....
Microsoft 2023 年 7 月公告的 Patch Tuesday 解決了 130 個 CVE (CVE-2023-36884)
Microsoft addresses 130 CVEs including five that were exploited in the wild as zero-day vulnerabilities and guidance on the malicious use of Microsoft signed drivers....
CVE-2023-33299: FortiNAC 出現嚴重的遠端程式碼執行弱點
Fortinet has released a patch fixing a remote code execution vulnerability in several versions of FortiNAC...
MOVEit Transfer 弱點及 CL0P 勒索軟體集團的常見問答集
Frequently asked questions relating to vulnerabilities in MOVEit Transfer, including one that was exploited by the prolific CL0P ransomware gang....
CVE-2023-20887:網路指令插入的 VMware Aria 作業
VMware issues advisory to address three flaws in its VMware Aria Operations for Networks solution, including a critical command injection flaw assigned a CVSSv3 score of 9.8....
Microsoft 的 2023 年 6 月份 Patch Tuesday 解決了 70 個 CVE (CVE-2023-29357)
Microsoft addresses 70 CVEs in its June 2023 Patch Tuesday update including six rated as critical....
CVE-2023-27997: Heap-Based Buffer Overflow in Fortinet FortiOS and FortiProxy SSL-VPN (XORtigate)
Fortinet says a critical flaw in its SSL-VPN product may have been exploited in the wild in a limited number of cases. Organizations are strongly encouraged to apply these patches immediately....
CVE-2023-34362:MOVEIt Transfer 重大零時差弱點遭到猖獗利用
Discovery of a new zero-day vulnerability in MOVEit Transfer becomes the second zero-day disclosed in a managed file transfer solution in 2023, with reports suggesting that threat actors have stolen data from a number of organizations....
Volt Typhoon:國際網路安全有關當局詳細說明與中國政府贊助的威脅執行者相關的活動
Several international cybersecurity authorities from the United States, United Kingdom, Australia, Canada and New Zealand issue a joint advisory detailing tactics, techniques and procedures used in recent attacks by a Chinese state-sponsored threat actor....
美國與澳洲政府機構發布有關 BianLian 勒索軟體集團的聯合網路安全公告
The FBI, ACSC and CISA have released a joint cybersecurity advisory discussing the BianLian ransomware group....
Microsoft 2023 年 5 月的 Patch Tuesday 解決了 38 個 CVE (CVE-2023-29336)
Microsoft addresses 38 CVEs including three zero-day vulnerabilities, two of which were exploited in the wild....
CVE-2023-20864:VMware Aria 作業的記錄檔還原序列化弱點
VMware issues advisory to address two flaws in its VMware Aria Operations for Logs solution, including a critical deserialization flaw assigned a CVSSv3 score of 9.8....