The Hacker News20 小时
NachoVPN Tool Exploits Flaws in Popular VPN Clients for System Compromise
Critical flaws in Palo Alto GlobalProtect and SonicWall NetExtender VPNs enable remote code execution. Patch now!
The Hacker News1 小时
Critical SailPoint IdentityIQ Vulnerability Exposes Files to Unauthorized Access
A critical security vulnerability has been disclosed in SailPoint's IdentityIQ identity and access management (IAM) software ...
Exploit released for critical WhatsUp Gold RCE flaw, patch now
A proof-of-concept (PoC) exploit for a critical-severity remote code execution flaw in Progress WhatsUp Gold has been ...
Cloud Security Alliance12 天
A Vulnerability Management Crisis: The Issues with CVE
Get an overview of the major challenges that the Common Vulnerabilities and Exposures (CVE) program faces in today’s ...
Security Boulevard26 天
Understand CVE vs CVSS for Improved Cybersecurity
CVSS scoring helps organizations make informed decisions about vulnerability management by enabling them to prioritize remediation efforts according to the risk associated with each vulnerability. For ...
Cyber Wire28 天
Common Vulnerability Scoring System definition
A qualitative public framework for rating the severity of security vulnerabilities in software. The acronym CVSS is commonly used. "Common Vulnerability Scoring System" on the Word Notes podcast.
SecurityWeek1 天
Critical Vulnerability Found in Zabbix Network Monitoring Tool
A critical-severity vulnerability in open source enterprise network monitoring tool Zabbix could lead to full system compromise.
CSOonline18 小时
SmokeLoader picks up ancient MS Office bugs to pack fresh credential stealer
Threat actors are using a well-known modular malware loader, SmokeLoader, to exploit known Microsoft Office vulnerabilities ...
it-daily.net25 天
Vulnerability with high CVSS score in Palo Alto Networks software
The authority classifies the vulnerability as particularly critical with a CVSS score of 9.3 out of 10 possible points. The vulnerability affects all versions of Expedition prior to version 1.2.92, ...