CIS Benchmarks November 2021 Update
The following CIS Benchmark updates have been released. We’ve highlighted the major updates below. Each Benchmark includes a full changelog that can be referenced to...
FreeBSD-EN-21:29.tzdata
Post Content Read More
FreeBSD-EN-21:26.libevent
Post Content Read More
[R1] Nessus 10.0.0 Fixes One Vulnerability
Nessus versions 8.15.2 and earlier were found to contain a local privilege escalation vulnerability which could allow an authenticated, local administrator to run specific executables...
CIS Risk Assessment Method (RAM) v2.0 for CIS Controls v8
Risk assessments are valuable tools for understanding the threats enterprises face, allowing them to organize a strategy and build better resiliency and business continuity, all...
Oracle Critical Patch Update Advisory – October 2021
Post Content Read More
[R1] Stand-alone Security Patch Available for Tenable.sc versions 5.16.0 to 5.19.1: Patch 202110.1
Tenable.sc leverages third-party software to help provide underlying functionality. One of the third-party components (Apache) was found to contain vulnerabilities, and updated versions have been...
[R2] Stand-alone Security Patch Available for Tenable.sc versions 5.16.0 to 5.19.1: Patch 202109.1
Tenable.sc leverages third-party software to help provide underlying functionality. One of the third-party components (OpenSSL) was found to contain vulnerabilities, and updated versions have been...
Drupal core – Moderately critical – Access Bypass – SA-CORE-2021-010
Project: Drupal core Date: 2021-September-15 Security risk: Moderately critical 12∕25 AC:Basic/A:None/CI:Some/II:None/E:Theoretical/TD:Default Vulnerability: Access Bypass CVE IDs: CVE-2020-13677 Description: Under some circumstances, the Drupal core JSON:API...
Drupal core – Moderately critical – Access bypass – SA-CORE-2021-009
Project: Drupal core Date: 2021-September-15 Security risk: Moderately critical 10∕25 AC:Basic/A:User/CI:Some/II:None/E:Theoretical/TD:Default Vulnerability: Access bypass CVE IDs: CVE-2020-13676 Description: The QuickEdit module does not properly check...