βΌ CVE-2023-32012 βΌ
π Read
via "National Vulnerability Database".
Windows Container Manager Service Elevation of Privilege Vulnerabilityπ Read
via "National Vulnerability Database".
βΌ CVE-2023-29365 βΌ
π Read
via "National Vulnerability Database".
Windows Media Remote Code Execution Vulnerabilityπ Read
via "National Vulnerability Database".
βΌ CVE-2023-29358 βΌ
π Read
via "National Vulnerability Database".
Windows GDI Elevation of Privilege Vulnerabilityπ Read
via "National Vulnerability Database".
βΌ CVE-2023-33139 βΌ
π Read
via "National Vulnerability Database".
Visual Studio Information Disclosure Vulnerabilityπ Read
via "National Vulnerability Database".
βΌ CVE-2023-29361 βΌ
π Read
via "National Vulnerability Database".
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerabilityπ Read
via "National Vulnerability Database".
βΌ CVE-2023-33126 βΌ
π Read
via "National Vulnerability Database".
.NET and Visual Studio Remote Code Execution Vulnerabilityπ Read
via "National Vulnerability Database".
βΌ CVE-2023-33142 βΌ
π Read
via "National Vulnerability Database".
Microsoft SharePoint Server Elevation of Privilege Vulnerabilityπ Read
via "National Vulnerability Database".
βΌ CVE-2023-32022 βΌ
π Read
via "National Vulnerability Database".
<div data-wrapper="true" style="font-family:'Segoe UI','Helvetica Neue',sans-serif; font-size:9pt"><div>Windows Server Service Security Feature Bypass Vulnerability</div></div>π Read
via "National Vulnerability Database".
βΌ CVE-2023-32018 βΌ
π Read
via "National Vulnerability Database".
Windows Hello Remote Code Execution Vulnerabilityπ Read
via "National Vulnerability Database".
βΌ CVE-2023-32009 βΌ
π Read
via "National Vulnerability Database".
Windows Collaborative Translation Framework Elevation of Privilege Vulnerabilityπ Read
via "National Vulnerability Database".
βΌ CVE-2023-32008 βΌ
π Read
via "National Vulnerability Database".
Windows Resilient File System (ReFS) Remote Code Execution Vulnerabilityπ Read
via "National Vulnerability Database".
βΌ CVE-2023-29346 βΌ
π Read
via "National Vulnerability Database".
NTFS Elevation of Privilege Vulnerabilityπ Read
via "National Vulnerability Database".
βΌ CVE-2023-32029 βΌ
π Read
via "National Vulnerability Database".
Microsoft Excel Remote Code Execution Vulnerabilityπ Read
via "National Vulnerability Database".
βΌ CVE-2023-3203 βΌ
π Read
via "National Vulnerability Database".
The MStore API plugin for WordPress is vulnerable to Cross-Site Request Forgery due to missing nonce validation on the mstore_update_limit_product function. This makes it possible for unauthenticated attackers to update limit the number of product per category to use cache data in home screen via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.π Read
via "National Vulnerability Database".
βΌ CVE-2023-3229 βΌ
π Read
via "National Vulnerability Database".
Business Logic Errors in GitHub repository fossbilling/fossbilling prior to 0.5.0.π Read
via "National Vulnerability Database".
βΌ CVE-2022-47184 βΌ
π Read
via "National Vulnerability Database".
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: 8.0.0 to 9.2.0.π Read
via "National Vulnerability Database".
π’ Dragosβ new partner program aims to turn resellers into OT experts π’
π Read
via "ITPro".
The initiative will help partners fully manage customer deployments with Dragosβ ISC/OT security offerings π Read
via "ITPro".
channelpro
Dragosβ new partner program aims to turn resellers into OT experts
The initiative will help partners fully manage customer deployments with Dragosβ ISC/OT security offerings
βΌ CVE-2023-35144 βΌ
π Read
via "National Vulnerability Database".
Jenkins Maven Repository Server Plugin 1.10 and earlier does not escape project and build display names on the Build Artifacts As Maven Repository page, resulting in a stored cross-site scripting (XSS) vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2023-35149 βΌ
π Read
via "National Vulnerability Database".
A missing permission check in Jenkins Digital.ai App Management Publisher Plugin 2.6 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL, capturing credentials stored in Jenkins.π Read
via "National Vulnerability Database".
π΄ How Popular Messaging Tools Instill a False Sense of Security π΄
π Read
via "Dark Reading".
It's time to include messaging tool security in your cloud security program. Good first steps include tightening filter parameters on Slack and Teams.π Read
via "Dark Reading".
Dark Reading
How Popular Messaging Tools Instill a False Sense of Security
It's time to include messaging tool security in your cloud security program. Good first steps include tightening filter parameters on Slack and Teams.
π΄ Microsoft Fixes 69 Bugs, but None Are Zero-Days π΄
π Read
via "Dark Reading".
The June 2023 Patch Tuesday security update included fixes for a bypass for two previously addressed issues in Microsoft Exchange and a critical elevation of privilege flaw in SharePoint Server.π Read
via "Dark Reading".
Dark Reading
Microsoft Fixes 69 Bugs, but None Are Zero-Days
The June 2023 Patch Tuesday security update included fixes for a bypass for two previously addressed issues in Microsoft Exchange and a critical elevation of privilege flaw in SharePoint Server.