Skip to main content

Security Bulletin

13 Aug 2024
Biztonsági szemle

Rockwell Automation GuardLogix/ControlLogix 5580 Controller

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: ControlLogix 5580, GuardLogix 5580 Vulnerability: Improper Check for Unusual or Exceptional Conditions 2. RISK...
cisa.gov
Read more
13 Aug 2024
Biztonsági szemle

Rockwell Automation FactoryTalk View Site Edition

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION: Low attack complexity Vendor: Rockwell Automation Equipment: FactoryTalk View Site Edition Vulnerability: Incorrect Permission Assignment for Critical Resource 2. RISK EVALUATION Successful...
cisa.gov
Read more
13 Aug 2024
Biztonsági szemle

CISA Adds Six Known Exploited Vulnerabilities to Catalog

CISA has added six new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-38189 Microsoft Project Remote Code Execution Vulnerability CVE-2024-38178 Microsoft Windows Scripting Engine...
cisa.gov
Read more
13 Aug 2024
Biztonsági szemle

Rockwell Automation ControlLogix, GuardLogix 5580, CompactLogix, Compact GuardLogix 5380

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: ControlLogix, GuardLogix 5580, CompactLogix, Compact GuardLogix 5380 Vulnerability: Improper Input Validation 2...
cisa.gov
Read more
13 Aug 2024
Biztonsági szemle

Microsoft Releases August 2024 Security Updates

Microsoft released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the...
cisa.gov
Read more
13 Aug 2024
Biztonsági szemle

Ivanti Releases Security Updates for Avalanche, Neurons for ITSM, and Virtual Traffic Manager

Ivanti released security updates to address multiple vulnerabilities in Ivanti Avalanche, Neurons for ITSM, and Virtual Traffic Manager (vTM). A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system...
cisa.gov
Read more
13 Aug 2024
Biztonsági szemle

Here’s why it's important to take CISA’s ‘Secure by Design Pledge’ seriously

There’s a reason more than half the goals in CISA’s pledge focus on vulnerability management.
scmagazine.com
Read more
13 Aug 2024
Biztonsági szemle

ISC Stormcast For Tuesday, August 13th, 2024 https://isc.sans.edu/podcastdetail/9094, (Tue, Aug 13th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
isc.sans.edu
Read more
Featured image for {“vendor”:”ppworks”,”type”:”segment”,”id”:”12973″} podcast from PPWorks
13 Aug 2024
Biztonsági szemle

Security Money: Crowdstrike Crashes the Index - BSW #360

scmagazine.com
Read more
Magnifying glass found the Russia map among computer binary code
12 Aug 2024
Biztonsági szemle

Google deactivates AdSense for Russian websites

Google has cut off business ties with Russian websites by deactivating AdSense accounts effective in August.
scmagazine.com
Read more
12 Aug 2024
Biztonsági szemle

CrowdStrike Tries to Patch Things Up With Cybersecurity Industry

CrowdStrike's president and CEO were both at Black Hat and DEF CON to face direct questions from customers and cybersecurity professionals.
darkreading.com
Read more
AdobeStock_116304969
12 Aug 2024
Biztonsági szemle

FreeBSD releases new patch for regreSSHion-related RCE flaw

The OpenSSH vulnerability in the operating system could enable remote code execution with root privileges.
scmagazine.com
Read more
Language
Audience