Cyber Security Information Portal
Vulnerability Summary for the Week of November 13, 2023 11/21/2023 11:00 AM EST The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. NVD is sponsored by CISA. In some cases, the vulnerabilities in the bulletin may not …
Continue reading “Vulnerability Summary for the Week of November 13, 2023”
Vulnerability Summary for the Week of July 17, 2023 07/24/2023 03:00 PM EDT High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info oliva_expertise — oliva_expertise_eks Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Oliva Expertise Oliva Expertise EKS allows SQL Injection.This issue affects Oliva …
Continue reading “Vulnerability Summary for the Week of July 17, 2023”
Vulnerability Summary for the Week of September 19, 2022 09/26/2022 10:09 AM EDT Original release date: September 26, 2022 | Last revised: September 27, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info There were no high vulnerabilities recorded this week. Back to top Medium Vulnerabilities PrimaryVendor — …
Continue reading “Vulnerability Summary for the Week of September 19, 2022”
Vulnerability Summary for the Week of July 18, 2022 07/26/2022 02:59 PM EDT Original release date: July 26, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info infiray — iray-a8z3_firmware An issue was discovered in Infiray IRAY-A8Z3 1.0.957. The firmware contains a potential buffer overflow by calling strcpy() without …
Continue reading “Vulnerability Summary for the Week of July 18, 2022”
Vulnerability Summary for the Week of July 11, 2022 07/18/2022 07:52 AM EDT Original release date: July 18, 2022 | Last revised: July 19, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info ceneo-web-scrapper_project — ceneo-web-scrapper The adriankoczuruek/ceneo-web-scrapper repository through 2021-03-15 on GitHub allows absolute path traversal because the …
Continue reading “Vulnerability Summary for the Week of July 11, 2022”
Vulnerability Summary for the Week of June 13, 2022 06/20/2022 10:49 AM EDT Original release date: June 20, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info citrix — application_delivery_management Corruption of the system by a remote, unauthenticated user. The impact of this can include the reset of the …
Continue reading “Vulnerability Summary for the Week of June 13, 2022”
Atlassian Releases New Versions of Confluence Server and Data Center to Address CVE-2022-26134 06/03/2022 01:42 PM EDT Original release date: June 3, 2022 Atlassian has released new Confluence Server and Data Center versions to address remote code execution vulnerability CVE-2022-26134 affecting these products. An unauthenticated remote attacker could exploit this vulnerability to execute code remotely. Atlassian …
CISA Releases Security Advisory on Illumina Local Run Manager 06/02/2022 01:43 PM EDT Original release date: June 2, 2022 CISA has released an Industrial Controls Systems Advisory (ICSA) detailing multiple vulnerabilities in Illumina Local Run Manager. Successful exploitation of these vulnerabilities may allow an unauthenticated malicious actor to take control of the affected product remotely …
Continue reading “CISA Releases Security Advisory on Illumina Local Run Manager”
Vulnerability Summary for the Week of May 2, 2022 05/09/2022 06:20 AM EDT Original release date: May 9, 2022 | Last revised: May 11, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info N/A — N/A On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, …
Continue reading “Vulnerability Summary for the Week of May 2, 2022”
Vulnerability Summary for the Week of February 14, 2022 02/21/2022 09:20 AM EST Original release date: February 21, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info accel-ppp — accel-ppp The rad_packet_recv function in opt/src/accel-pppd/radius/packet.c suffers from a buffer overflow vulnerability, whereby user input len is copied into a …
Continue reading “Vulnerability Summary for the Week of February 14, 2022”