‼ CVE-2023-5847 ‼
📖 Read
via "National Vulnerability Database".
Under certain conditions, a low privileged attacker could load a specially crafted file during installation or upgrade to escalate privileges on Windows and Linux hosts.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20086 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability in ICMPv6 processing of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. This vulnerability is due to improper processing of ICMPv6 messages. An attacker could exploit this vulnerability by sending crafted ICMPv6 messages to a targeted Cisco ASA or FTD system with IPv6 enabled. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-33227 ‼
📖 Read
via "National Vulnerability Database".
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability This vulnerability allows a low level user to perform the actions with SYSTEM privileges.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-33226 ‼
📖 Read
via "National Vulnerability Database".
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-33228 ‼
📖 Read
via "National Vulnerability Database".
The SolarWinds Network Configuration Manager was susceptible to the Exposure of Sensitive Information Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to obtain sensitive information.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20155 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability in a logging API in Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to cause the device to become unresponsive or trigger an unexpected reload. This vulnerability could also allow an attacker with valid user credentials, but not Administrator privileges, to view a system log file that they would not normally have access to. This vulnerability is due to a lack of rate-limiting of requests that are sent to a specific API that is related to an FMC log. An attacker could exploit this vulnerability by sending a high rate of HTTP requests to the API. A successful exploit could allow the attacker to cause a denial of service (DoS) condition due to the FMC CPU spiking to 100 percent utilization or to the device reloading. CPU utilization would return to normal if the attack traffic was stopped before an unexpected reload was triggered.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-5178 ‼
📖 Read
via "National Vulnerability Database".
A use-after-free vulnerability was found in drivers/nvme/target/tcp.c` in `nvmet_tcp_free_crypto` due to a logical bug in the NVMe-oF/TCP subsystem in the Linux kernel. This issue may allow a malicious user to cause a use-after-free and double-free problem, which may permit remote code execution or lead to local privilege escalation in case that the attacker already has local privileges.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20005 ‼
📖 Read
via "National Vulnerability Database".
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface of an affected device. These vulnerabilities are due to insufficient validation of user-supplied input by the web-based management interface. An attacker could exploit these vulnerabilities by inserting crafted input into various data fields in an affected interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface, or access sensitive, browser-based information. In some cases, it is also possible to cause a temporary availability impact to portions of the FMC Dashboard.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-40062 ‼
📖 Read
via "National Vulnerability Database".
SolarWinds Platform Incomplete List of Disallowed Inputs Remote Code Execution Vulnerability. If executed, this vulnerability would allow a low-privileged user to execute commands with SYSTEM privileges.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20213 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability in the CDP processing feature of Cisco ISE could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition of the CDP process on an affected device. This vulnerability is due to insufficient bounds checking when an affected device processes CDP traffic. An attacker could exploit this vulnerability by sending crafted CDP traffic to the device. A successful exploit could cause the CDP process to crash, impacting neighbor discovery and the ability of Cisco ISE to determine the reachability of remote devices. After a crash, the CDP process must be manually restarted using the cdp enable command in interface configuration mode.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-40061 ‼
📖 Read
via "National Vulnerability Database".
 Insecurejob execution mechanism vulnerability. Thisvulnerability can lead to other attacks as a result.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20245 ‼
📖 Read
via "National Vulnerability Database".
Multiple vulnerabilities in the per-user-override feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass a configured access control list (ACL) and allow traffic that should be denied to flow through an affected device. These vulnerabilities are due to a logic error that could occur when the affected software constructs and applies per-user-override rules. An attacker could exploit these vulnerabilities by connecting to a network through an affected device that has a vulnerable configuration. A successful exploit could allow the attacker to bypass the interface ACL and access resources that would should be protected.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20177 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability in the SSL file policy implementation of Cisco Firepower Threat Defense (FTD) Software that occurs when the SSL/TLS connection is configured with a URL Category and the Snort 3 detection engine could allow an unauthenticated, remote attacker to cause the Snort 3 detection engine to unexpectedly restart. This vulnerability exists because a logic error occurs when a Snort 3 detection engine inspects an SSL/TLS connection that has either a URL Category configured on the SSL file policy or a URL Category configured on an access control policy with TLS server identity discovery enabled. Under specific, time-based constraints, an attacker could exploit this vulnerability by sending a crafted SSL/TLS connection through an affected device. A successful exploit could allow the attacker to trigger an unexpected reload of the Snort 3 detection engine, resulting in either a bypass or denial of service (DoS) condition, depending on device configuration. The Snort 3 detection engine will restart automatically. No manual intervention is required.📖 Read
via "National Vulnerability Database".
👍1🔥1
🕴 Graylog Secures $39 Million Investment to Accelerate Growth and Security Product Line Expansion 🕴
📖 Read
via "Dark Reading".
📖 Read
via "Dark Reading".
Dark Reading
Graylog Secures $39 Million Investment to Accelerate Growth and Security Product Line Expansion
PRESS RELEASE
🕴 One Ukraine Company Shares Lessons in Prepping for Wartime Cyber Resilience 🕴
📖 Read
via "Dark Reading".
The CTO of MacPaw provides a case study in planning for cybersecurity and uptime in the face of armed conflict.📖 Read
via "Dark Reading".
Dark Reading
One Ukraine Company Shares Lessons in Prepping for Wartime Cyber Resilience
The CTO of MacPaw provides a case study in planning for cybersecurity and uptime in the face of armed conflict.
‼ CVE-2023-5765 ‼
📖 Read
via "National Vulnerability Database".
Improper access control in the password analyzer feature in Devolutions Remote Desktop Manager 2023.2.33 and earlier on Windows allows an attacker to bypass permissions via data source switching.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-5859 ‼
📖 Read
via "National Vulnerability Database".
Incorrect security UI in Picture In Picture in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform domain spoofing via a crafted local HTML page. (Chromium security severity: Low)📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20219 ‼
📖 Read
via "National Vulnerability Database".
Multiple vulnerabilities in the web management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system. The attacker would need valid device credentials but does not require administrator privileges to exploit this vulnerability. These vulnerabilities are due to insufficient validation of user-supplied input for certain configuration options. An attacker could exploit these vulnerabilities by using crafted input within the device configuration GUI. A successful exploit could allow the attacker to execute arbitrary commands on the device including the underlying operating system which could also affect the availability of the device.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-5358 ‼
📖 Read
via "National Vulnerability Database".
Improper access control in Report log filters feature in Devolutions Server 2023.2.10.0 and earlier allows attackers to retrieve logs from vaults or entries they are not allowed to access via the report request url query parameters.📖 Read
via "National Vulnerability Database".