Cyber Security Information Portal
Vulnerability Summary for the Week of August 1, 2022 08/08/2022 08:33 AM EDT Original release date: August 8, 2022 | Last revised: August 9, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info There were no high vulnerabilities recorded this week. Back to top Medium Vulnerabilities PrimaryVendor — …
Continue reading “Vulnerability Summary for the Week of August 1, 2022”
Vulnerability Summary for the Week of July 4, 2022 07/11/2022 09:09 AM EDT Original release date: July 11, 2022 | Last revised: July 12, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info gitlab — gitlab A critical issue has been discovered in GitLab affecting all versions starting from …
Continue reading “Vulnerability Summary for the Week of July 4, 2022”
Vulnerability Summary for the Week of June 27, 2022 07/04/2022 06:19 AM EDT Original release date: July 4, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info codesys — gateway In CODESYS Gateway Server V2 for versions prior to V2.3.9.38 only a part of the the specified password is …
Continue reading “Vulnerability Summary for the Week of June 27, 2022”
Vulnerability Summary for the Week of April 25, 2022 05/02/2022 06:16 AM EDT Original release date: May 2, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info jfinalcms_project — jfinalcms JFinalCMS v2.0 was discovered to contain a SQL injection vulnerability via the Article Management function. 2022-04-22 7.5 CVE-2022-27341MISC link-admin_project …
Continue reading “Vulnerability Summary for the Week of April 25, 2022”
Vulnerability Summary for the Week of March 7, 2022 03/14/2022 01:00 PM EDT Original release date: March 14, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info a3rev — page_view_count The Page View Count WordPress plugin before 2.4.15 does not sanitise and escape the post_ids parameter before using it …
Continue reading “Vulnerability Summary for the Week of March 7, 2022”
Vulnerability Summary for the Week of February 28, 2022 03/07/2022 07:14 AM EST Original release date: March 7, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info jetbrains — teamcity In JetBrains TeamCity before 2021.1.4, GitLab authentication impersonation was possible. 2022-02-25 7.5 CVE-2022-24331MISCMISC jetbrains — teamcity In JetBrains TeamCity …
Continue reading “Vulnerability Summary for the Week of February 28, 2022”
McAfee Releases Security Update for McAfee Agent for Windows 01/21/2022 01:32 PM EST Original release date: January 21, 2022 Note: the broken links are corrected in the below notification. McAfee has released McAfee Agent for Windows version 5.7.5, which addresses vulnerabilities CVE-2021-31854 and CVE-2022-0166. An attacker could exploit these vulnerabilities to take control of an …
Continue reading “[Correction] McAfee Releases Security Update for McAfee Agent for Windows “
McAfee Releases Security Update for McAfee Agent for Windows 01/21/2022 01:32 PM EST Original release date: January 21, 2022 McAfee has released McAfee Agent for Windows version 5.7.5, which addresses vulnerabilities CVE-2021-31854 and CVE-2022-0166. An attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review McAfee …
Continue reading “McAfee Releases Security Update for McAfee Agent for Windows “
Vulnerability Summary for the Week of January 3, 2022 01/10/2022 11:30 AM EST Original release date: January 10, 2022 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info beyondtrust — appliance_base_software BeyondTrust Secure Remote Access Base Software through 6.0.1 allows an attacker to achieve full admin access to the appliance, …
Continue reading “Vulnerability Summary for the Week of January 3, 2022”
Vulnerability Summary for the Week of November 29, 2021 12/06/2021 07:57 AM EST Original release date: December 6, 2021 High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source & Patch Info abb — rtu500_firmware Improper Input Validation vulnerability in the APDU parser in the Bidirectional Communication Interface (BCI) IEC 60870-5-104 function of Hitachi …
Continue reading “Vulnerability Summary for the Week of November 29, 2021”