#ITSecurityAdvisory

Cisco SSM On-Prem bug lets hackers change any user’s password

by

July 17, 2024 at 01:34PM Cisco has fixed a critical vulnerability in its Smart Software Manager On-Prem, allowing potential attackers to change user passwords without authentication. The flaw affects earlier releases and can be exploited remotely. To address the issue, administrators are advised to upgrade to the fixed release as there are no workarounds available. … Read more

JetBrains warns of IntelliJ IDE bug exposing GitHub access tokens

by

June 11, 2024 at 03:02PM JetBrains has issued a security warning concerning a critical vulnerability in its IntelliJ integrated development environment (IDE) apps, CVE-2024-37051. The flaw, affecting versions 2023.1 onwards with the GitHub plugin, exposes access tokens. Security updates have been released for affected IDEs, and customers are advised to update and revoke GitHub tokens. … Read more