Active Exploitation of SolarView Compact Command Injection Vulnerabilities (CVE-2022-40881, CVE-2022-29303)
What is SolarView Compact? SolarView Compact is a photovoltaic (PV) power generation measurement and monitoring device developed by Contec. What is the Attack? CVE-2022-29303 is...
iPhone Update — Apply It Now If You Haven’t Already
Apple recently issued an urgent iPhone update, iOS version 16.5.1. If you haven’t updated yet, you should. Owners of iPads should update to iOS 16.5.1...
USN-6208-1: Gorilla WebSocket vulnerability
It was discovered that Gorilla WebSocket incorrectly handled decoding WebSocket frames. An attacker could possibly use this issue to cause a crash, resulting in a...
Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution
Multiple vulnerabilities have been discovered in Mozilla products, the most severe of which could allow for arbitrary code execution. Mozilla Firefox is a web browser...
USN-6207-1: Linux kernel (Intel IoTG) vulnerabilities
It was discovered that the TUN/TAP driver in the Linux kernel did not properly initialize socket data. A local attacker could use this to cause...
USN-6206-1: Linux kernel (OEM) vulnerabilities
Hangyu Hua discovered that the Flower classifier implementation in the Linux kernel contained an out-of-bounds write vulnerability. An attacker could use this to cause a...
USN-6205-1: Linux kernel (GKE) vulnerabilities
Hangyu Hua discovered that the Flower classifier implementation in the Linux kernel contained an out-of-bounds write vulnerability. An attacker could use this to cause a...
CIS Controls Ambassador Spotlight: Vilius Benetis
Vilius Benetis has done a lot to support cyber defense as an ambassador and volunteer in the CIS Controls Community. Hear his story. Read More
Ongoing Incident Prompts JumpCloud to Reset API Keys
To assist customers in the process, JumpCloud provided a guide for resetting affected API keys Read More
Cisco Enterprise Switch Flaw Exposes Encrypted Traffic
The vulnerability affects Cisco Nexus 9000 Series Fabric Switches Read More