December 3, 2024 at 06:55PM SailPoint reported a critical vulnerability (CVE-2024-10905) in its IdentityIQ IAM platform, classified as a directory traversal flaw. Customers are urged to upgrade to versions 8.4p2, 8.3p5, and 8.2p8. No advisory has been issued, and the company did not respond to inquiries about possible exploits. **Meeting Takeaways: Major Vulnerability in SailPoint … Read more
December 3, 2024 at 01:14PM Veeam has issued security updates for two critical vulnerabilities in its Service Provider Console (VSPC), including a high-severity remote code execution flaw (CVE-2024-42448). Users of VSPC versions 7 and 8 are urged to upgrade to the latest patch to prevent exploitation, which has already been linked to ransomware attacks. ### … Read more
December 2, 2024 at 07:25AM Zabbix has announced a critical vulnerability (CVE-2024-42327) in its monitoring solution, allowing SQL injection attacks through API access for non-admin users. Affected versions include 6.0.0 to 6.0.31, 6.4.0 to 6.4.16, and 7.0.0. Patches are available in recent releases. Users are urged to update promptly. ### Meeting Takeaways on Zabbix Vulnerabilities … Read more
November 29, 2024 at 12:00PM Unofficial security patches have been released on the 0patch platform to fix a two-year-old zero-day vulnerability in the Windows Mark of the Web (MotW) security mechanism. **Meeting Takeaways:** 1. **Security Update Release**: Free unofficial security patches are now available via the 0patch platform. 2. **Vulnerability Addressed**: These patches target a … Read more
November 27, 2024 at 10:04AM Join a webinar on December 9th at 9 AM PT to explore efficient endpoint management with Harman Kaur from Tanium and Tim Phillips from The Register. The discussion will cover challenges in endpoint security, the benefits of automation, and how to implement autonomous solutions to enhance protection against security threats. … Read more
November 27, 2024 at 06:23AM VulnCheck warns that threat actors are exploiting a severe vulnerability (CVE-2024-11680) in unpatched ProjectSend servers, allowing remote unauthorized access. Despite a patch released in May 2023, most servers remain unupdated, with 55% still vulnerable, leading to widespread exploitation and potential webshell installations. ### Meeting Takeaways: 1. **Vulnerability Overview**: – The … Read more
November 26, 2024 at 09:39AM VMware released a high-severity bulletin addressing five security vulnerabilities in its Aria Operations product, affecting versions 8.x and VMware Cloud Foundation 4.x and 5.x. Patches are available to fix local privilege escalation and cross-site scripting exploits. Users are urged to apply patches urgently as no workarounds exist. ### Meeting Takeaways … Read more
November 26, 2024 at 09:01AM IBM announced patches for multiple vulnerabilities, including two severe remote code execution issues in Data Virtualization Manager and Security SOAR. These flaws could allow unauthorized code execution. Users are advised to update their systems promptly. Additional vulnerabilities in other IBM products were also addressed. Details are available on IBM’s security … Read more
November 26, 2024 at 07:22AM CISA has warned about a critical vulnerability (CVE-2023-28461) in Array Networks’ secure access gateways that allows remote code execution without authentication. Exploited by the group Earth Kasha, patching is crucial; federal agencies must address it by December 16. Organizations should review CISA’s KEV list and apply fixes promptly. ### Meeting … Read more
November 26, 2024 at 12:48AM The U.S. CISA added a critical vulnerability (CVE-2023-28461) affecting Array Networks AG to its KEV catalog due to active exploitation. The flaw allows remote code execution without authentication. Agencies are urged to apply patches by December 16, 2024, as the China-linked group Earth Kasha exploits similar vulnerabilities. ### Meeting Takeaways … Read more