CVE-2020-18327
Cross Site Scripting (XSS) vulnerability exists in Alfresco Alfresco Community Edition v5.2.0 via the action parameter in the alfresco/s/admin/admin-nodebrowser API. Fixed in v6.2 Read More
CVE-2020-18326
Cross Site Request Forgery (CSRF) vulnerability exists in Intelliants Subrion CMS v4.2.1 via the Members administrator function, which could let a remote unauthenticated malicious user...
CVE-2020-18325
Multilple Cross Site Scripting (XSS) vulnerability exists in Intelliants Subrion CMS v4.2.1 in the Configuration panel. Read More
CVE-2020-18324
Cross Site Scripting (XSS) vulnerability exists in Subrion CMS 4.2.1 via the q parameter in the Kickstart template. Read More
Samsung Encryption Flaw
Researchers have found a major encryption flaw in 100 million Samsung Galaxy phones. From the abstract: In this work, we expose the cryptographic design and...
Attivo Networks expands Active Directory protection
A popular target of attackers, Microsoft Active Directory will receive an extra measure of protection under a new offering announced Thursday by Attivo Networks. The...
CIS Benchmarks March 2022 Update
The following CIS Benchmarks have been updated or released for March 2022. We've highlighted the major updates below. Each Benchmark includes a full changelog that...
Nearly All Cybersecurity Companies Expose AWS Assets – Report
Study uncovers 200,000 such assets across 35 vendors Read More
Over 60% of SOC Analysts Are Planning to Quit Next Year
Report reveals SecOps teams are overworked and understaffed Read More
What is RBAC? Role-based access control explained
Role-based access control, or RBAC, is an approach for restricting access to digital resources based on a user’s role in an organization. For instance, under...