Cyber Security Information Portal
Vulnerability Summary for the Week of August 21, 2023 08/28/2023 04:30 PM EDT The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. NVD is sponsored by CISA. In some cases, the vulnerabilities in the bulletin may not …
Continue reading “Vulnerability Summary for the Week of August 21, 2023”
Vulnerability Summary for the Week of August 29, 2022 09/06/2022 10:49 AM EDT Original release date: September 6, 2022 | Last revised: September 8, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info There were no high vulnerabilities recorded this week. Back to top Medium Vulnerabilities PrimaryVendor — …
Continue reading “Vulnerability Summary for the Week of August 29, 2022”
Vulnerability Summary for the Week of August 22, 2022 08/29/2022 10:01 AM EDT Original release date: August 29, 2022 | Last revised: August 30, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info There were no high vulnerabilities recorded this week. Back to top Medium Vulnerabilities PrimaryVendor — …
Continue reading “Vulnerability Summary for the Week of August 22, 2022”
Vulnerability Summary for the Week of June 27, 2022 07/04/2022 06:19 AM EDT Original release date: July 4, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info codesys — gateway In CODESYS Gateway Server V2 for versions prior to V2.3.9.38 only a part of the the specified password is …
Continue reading “Vulnerability Summary for the Week of June 27, 2022”
Vulnerability Summary for the Week of March 21, 2022 03/28/2022 10:52 AM EDT Original release date: March 28, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info adobe — acrobat_dc Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204 (and earlier) are affected by an out-of-bounds …
Continue reading “Vulnerability Summary for the Week of March 21, 2022”
Vulnerability Summary for the Week of March 14, 2022 03/21/2022 10:12 AM EDT Original release date: March 21, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info 10web — photo_gallery The Photo Gallery by 10Web WordPress plugin before 1.6.0 does not validate and escape the bwg_tag_id_bwg_thumbnails_0 parameter before using …
Continue reading “Vulnerability Summary for the Week of March 14, 2022”
Vulnerability Summary for the Week of February 28, 2022 03/07/2022 07:14 AM EST Original release date: March 7, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info jetbrains — teamcity In JetBrains TeamCity before 2021.1.4, GitLab authentication impersonation was possible. 2022-02-25 7.5 CVE-2022-24331MISCMISC jetbrains — teamcity In JetBrains TeamCity …
Continue reading “Vulnerability Summary for the Week of February 28, 2022”
Vulnerability Summary for the Week of January 31, 2022 02/07/2022 08:45 AM EST Original release date: February 7, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info advantech — deviceon/iedge A privilege escalation vulnerability exists in the installation of Advantech DeviceOn/iEdge Server 1.0.2. A specially-crafted file can be replaced …
Continue reading “Vulnerability Summary for the Week of January 31, 2022”
Vulnerability Summary for the Week of January 24, 2022 01/31/2022 10:21 AM EST Original release date: January 31, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info apache — shenyu Groovy Code Injection & SpEL Injection which lead to Remote Code Execution. This issue affected Apache ShenYu 2.4.0 and …
Continue reading “Vulnerability Summary for the Week of January 24, 2022”
Vulnerability Summary for the Week of September 20, 2021 09/27/2021 07:18 AM EDT Original release date: September 27, 2021 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info There were no high vulnerabilities recorded this week. Back to top Medium Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source …
Continue reading “Vulnerability Summary for the Week of September 20, 2021”