‼ CVE-2021-34784 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network Manager (EPNM) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. This vulnerability exists because the web-based management interface does not properly validate user-supplied input. An attacker could exploit this vulnerability by persuading a user of an affected interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-21698 ‼
📖 Read
via "National Vulnerability Database".
Jenkins Subversion Plugin 2.15.0 and earlier does not restrict the name of a file when looking up a subversion key file on the controller from an agent.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40112 ‼
📖 Read
via "National Vulnerability Database".
Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive Optical Network (PON) Series Switches Optical Network Terminal (ONT) could allow an unauthenticated, remote attacker to perform the following actions: Log in with a default credential if the Telnet protocol is enabled Perform command injection Modify the configuration For more information about these vulnerabilities, see the Details section of this advisory.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40119 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability in the key-based SSH authentication mechanism of Cisco Policy Suite could allow an unauthenticated, remote attacker to log in to an affected system as the root user. This vulnerability is due to the re-use of static SSH keys across installations. An attacker could exploit this vulnerability by extracting a key from a system under their control. A successful exploit could allow the attacker to log in to an affected system as the root user.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40124 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability in the Network Access Manager (NAM) module of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to escalate privileges on an affected device. This vulnerability is due to incorrect privilege assignment to scripts executed before user logon. An attacker could exploit this vulnerability by configuring a script to be executed before logon. A successful exploit could allow the attacker to execute arbitrary code with SYSTEM privileges.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-40128 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability in the account activation feature of Cisco Webex Meetings could allow an unauthenticated, remote attacker to send an account activation email with an activation link that points to an arbitrary domain. This vulnerability is due to insufficient validation of user-supplied parameters. An attacker could exploit this vulnerability by sending a crafted HTTP request to the account activation page of Cisco Webex Meetings. A successful exploit could allow the attacker to send to any recipient an account activation email that contains a tampered activation link, which could direct the user to an attacker-controlled website.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-34773 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected device. This vulnerability is due to insufficient CSRF protections for the web-based management interface on an affected device. An attacker could exploit this vulnerability by persuading a user of the interface to click a malicious link. A successful exploit could allow the attacker to perform arbitrary actions with the privilege level of the targeted user. These actions could include modifying the device configuration and deleting (but not creating) user accounts.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-21693 ‼
📖 Read
via "National Vulnerability Database".
When creating temporary files, agent-to-controller access to create those files is only checked after they've been created in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-21696 ‼
📖 Read
via "National Vulnerability Database".
Jenkins 2.318 and earlier, LTS 2.303.2 and earlier does not limit agent read/write access to the libs/ directory inside build directories when using the FilePath APIs, allowing attackers in control of agent processes to replace the code of a trusted library with a modified variant. This results in unsandboxed code execution in the Jenkins controller process.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-21694 ‼
📖 Read
via "National Vulnerability Database".
FilePath#toURI, FilePath#hasSymlink, FilePath#absolutize, FilePath#isDescendant, and FilePath#get*DiskSpace do not check any permissions in Jenkins 2.318 and earlier, LTS 2.303.2 and earlier.📖 Read
via "National Vulnerability Database".
🦿 You can configure SSH to use a non-standard port with SELinux set to enforcing 🦿
📖 Read
via "Tech Republic".
Switching the SSH listening port is an easy way to help secure remote login on your Linux servers. Jack Wallen shows you how.📖 Read
via "Tech Republic".
TechRepublic
You can configure SSH to use a non-standard port with SELinux set to enforcing
Switching the SSH listening port is an easy way to help secure remote login on your Linux servers. Jack Wallen shows you how.
🔏 Latest National Data Privacy Legislation Aims to Protect Consumer Data 🔏
📖 Read
via "".
Legislation introduced last week would establish national data privacy standards, mirror elements of the CCPA and require companies to use high-quality data protection standards.📖 Read
via "".
Digital Guardian
Latest National Data Privacy Legislation Aims to Protect Consumer Data
Legislation introduced last week would establish national data privacy standards, mirror elements of the CCPA and require companies to use high-quality data protection standards.
🦿 Cybersecurity, the pandemic and the 2021 holiday shopping season: A perfect storm 🦿
📖 Read
via "Tech Republic".
Ping Identity executive advisor Aubrey Turner warns that eager cybercriminals are ready to exploit the current chaotic state of the world, and preparation is essential going into the holidays.📖 Read
via "Tech Republic".
TechRepublic
Cybersecurity, the pandemic and the 2021 holiday shopping season: A perfect storm
Ping Identity executive advisor Aubrey Turner warns that eager cybercriminals are ready to exploit the current chaotic state of the world, and preparation is essential going into the holidays.
‼ CVE-2021-41247 ‼
📖 Read
via "National Vulnerability Database".
JupyterHub is an open source multi-user server for Jupyter notebooks. In affected versions users who have multiple JupyterLab tabs open in the same browser session, may see incomplete logout from the single-user server, as fresh credentials (for the single-user server only, not the Hub) reinstated after logout, if another active JupyterLab session is open while the logout takes place. Upgrade to JupyterHub 1.5. For distributed deployments, it is jupyterhub in the _user_ environment that needs patching. There are no patches necessary in the Hub environment. The only workaround is to make sure that only one JupyterLab tab is open when you log out.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-43281 ‼
📖 Read
via "National Vulnerability Database".
MyBB before 1.8.29 allows Remote Code Injection by an admin with the "Can manage settings?" permission. The Admin CP's Settings management module does not validate setting types correctly on insertion and update, making it possible to add settings of supported type "php" with PHP code, executed on Change Settings pages.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-43293 ‼
📖 Read
via "National Vulnerability Database".
Sonatype Nexus Repository Manager 3.x before 3.36.0 allows a remote authenticated attacker to potentially perform network enumeration via Server Side Request Forgery (SSRF).📖 Read
via "National Vulnerability Database".
‼ CVE-2021-43389 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c.📖 Read
via "National Vulnerability Database".
🕴 Phishing Attack Blends Spoofed Amazon Order and Fraudulent Customer Service Agents 🕴
📖 Read
via "Dark Reading".
It's the latest in a series of clever brand impersonation scams that use multiple vectors to lure victims.📖 Read
via "Dark Reading".
Dark Reading
Phishing Attack Blends Spoofed Amazon Order and Fraudulent Customer Service Agents
It's the latest in a series of clever brand impersonation scams that use multiple vectors to lure victims.
🕴 Ripping Off the Blindfold: Illuminating OT Environments 🕴
📖 Read
via "Dark Reading".
A security tool monitoring OT devices needs to do so without disrupting operations, which is why the Self-Learning AI acts only on information obtained by passive monitoring of the network.📖 Read
via "Dark Reading".
Dark Reading
Ripping Off the Blindfold: Illuminating OT Environments
A security tool that monitors OT devices can't disrupt operations. This is why the Self-Learning AI acts only on information obtained by passive monitoring of the network.
🕴 US Offers $10M Reward For ID, Location of DarkSide Leadership 🕴
📖 Read
via "Dark Reading".
The State Department offers multimillion-dollar rewards for information related to the leaders and members involved in DarkSide ransomware.📖 Read
via "Dark Reading".
Darkreading
US Offers $10M Reward For ID, Location of DarkSide Leadership
The State Department offers multimillion-dollar rewards for information related to the leaders and members involved in DarkSide ransomware.
🕴 API Security Issues Hinder Application Delivery 🕴
📖 Read
via "Dark Reading".
A new survey explains why nearly all organizations experience API security problems to varying degrees.📖 Read
via "Dark Reading".
Darkreading
API Security Issues Hinder Application Delivery
A new survey explains why nearly all organizations experience API security problems to varying degrees.