Skip to main content

Security Bulletin

2 Nov 2023
Biztonsági szemle

Don’t shy away from talking about mental health

Between the World Mental Health Day and Movember, I had a chat with Mario Sebastian, VP at Cisco CX EMEA South. I really appreciated his authenticity sharing his journey.
blogs.cisco.com
Read more
2 Nov 2023
Biztonsági szemle

Celebrating Latinas in Tech

Learn about the professional journeys of Latina leaders, Cindy Valladares and Laura Elena Garza, and how culture has impacted their lives.
blogs.cisco.com
Read more
2 Nov 2023
Biztonsági szemle

Red Lion Crimson

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Red Lion Equipment: FlexEdge Gateway, DA50A, DA70A running Crimson Vulnerability: Improper Neutralization of Null Byte or NUL Character 2. RISK...
cisa.gov
Read more
2 Nov 2023
Biztonsági szemle

Mitsubishi Electric MELSEC iQ-F Series CPU Module

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION: Exploitable remotely/low attack complexity Equipment: MELSEC iQ-F Series Vulnerability: Improper Restriction of Excessive Authentication Attempts 2. RISK EVALUATION Successful exploitation of this...
cisa.gov
Read more
2 Nov 2023
Biztonsági szemle

Mitsubishi Electric MELSEC Series

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Corporation Equipment: MELSEC Series Vulnerability: Insufficient Verification of Data Authenticity 2. RISK EVALUATION...
cisa.gov
Read more
2 Nov 2023
Biztonsági szemle

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-46604 Apache ActiveMQ Deserialization of Untrusted Data Vulnerability These types of vulnerabilities are frequent...
cisa.gov
Read more
2 Nov 2023
Biztonsági szemle

Schneider Electric SpaceLogic C-Bus Toolkit

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Schneider Electric Equipment: SpaceLogic C-Bus Toolkit Vulnerabilities: Improper Privilege Management, Path Traversal 2. RISK EVALUATION...
cisa.gov
Read more
2 Nov 2023
Biztonsági szemle

Franklin Fueling System TS-550

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.3 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available Vendor: Franklin Fueling System Equipment: TS-550 Vulnerability: Use of Password Hash with Insufficient Computational...
cisa.gov
Read more
2 Nov 2023
Biztonsági szemle

CISA Releases Six Industrial Control Systems Advisories

CISA released six Industrial Control Systems (ICS) advisories on November 2, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-306-01 Red Lion Crimson ICSA-23-306...
cisa.gov
Read more
2 Nov 2023
Biztonsági szemle

Weintek EasyBuilder Pro

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Weintek Equipment: EasyBuilder Pro Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability...
cisa.gov
Read more
2 Nov 2023
Biztonsági szemle

Atlassian Releases Security Advisory for Confluence Data Center and Server

Atlassian released a security advisory to address a vulnerability (CVE-2023-22518) affecting Confluence Data Center and Server. A cyber actor could exploit this vulnerability to obtain sensitive information. CISA encourages users and administrators...
cisa.gov
Read more
2 Nov 2023
Biztonsági szemle

Middle East Advances in Generative AI Hold Promise

Gulf countries are heavily invested in GenAI, but security is still a concern.
darkreading.com
Read more
Language
Audience