October 16, 2024 at 03:57PM CISA added three vulnerabilities to its ‘Known Exploited Vulnerabilities’ catalog, including a critical SolarWinds flaw (CVE-2024-28987) due to hardcoded credentials, actively exploited by attackers. Federal agencies must update by November 5, 2024. Additional flaws in Windows and Mozilla Firefox are also noted, with active exploitation confirmed. ### Meeting Takeaways 1. … Read more
October 16, 2024 at 02:26PM VMware has patched CVE-2024-38814, a high-severity SQL injection vulnerability in its HCX platform. The company warns that attackers with non-administrator privileges can exploit this flaw to execute remote code on the HCX manager. **Meeting Takeaways:** 1. **Vulnerability Addressed**: VMware has patched a high-severity SQL injection vulnerability identified as CVE-2024-38814. 2. … Read more
October 15, 2024 at 08:56AM Splunk has issued patches for several vulnerabilities in Splunk Enterprise, addressing two high-severity remote code execution flaws. This update aims to enhance security and mitigate risks associated with these vulnerabilities. The announcement was reported by SecurityWeek. **Meeting Takeaways:** 1. **Patch Release**: Splunk has released patches addressing multiple vulnerabilities in Splunk … Read more
October 14, 2024 at 09:15AM Juniper Networks has released patches addressing numerous vulnerabilities found in Junos OS, Junos OS Evolved, and various third-party components. This update aims to enhance security and protect users from potential threats. **Meeting Notes Takeaways:** 1. **Announcement**: Juniper Networks has released patches addressing multiple vulnerabilities. 2. **Affected Systems**: The vulnerabilities are … Read more
October 10, 2024 at 02:50PM U.S. and U.K. cyber agencies have warned that APT29 hackers linked to Russia are targeting unpatched Zimbra and JetBrains TeamCity servers worldwide. A joint advisory urges network defenders to deploy security patches to prevent attacks exploiting multiple vulnerabilities, highlighting ongoing threats to both government and private sectors. ### Meeting Takeaways: … Read more
October 10, 2024 at 09:39AM The US CISA has added vulnerabilities in Fortinet and Ivanti products to its Known Exploited Vulnerabilities catalog. Fortinet’s critical CVE-2024-23113 affects multiple products, allowing remote code execution. Ivanti faces issues with CVE-2024-9379 and CVE-2024-9380 related to its Cloud Services Application, prompting security recommendations for users. ### Meeting Takeaways **1. Fortinet … Read more
October 10, 2024 at 07:08AM The CVE program, celebrating 25 years, has significantly advanced vulnerability management despite persistent challenges like inconsistency in CVE issuance, subjective severity scoring, and the automation of CVE creation. Effective patching requires a nuanced approach, prioritizing critical systems to mitigate risks from potential attacks across all system layers. ### Meeting Takeaways … Read more
October 8, 2024 at 05:52PM Microsoft’s October security update addressed 117 vulnerabilities, ranking as the third largest release this year. Of these, two actively exploited flaws require immediate attention. One, CVE-2024-43573, is a spoofing vulnerability in MSHTML, while the other, CVE-2024-43572, is a remote code execution (RCE) flaw in Microsoft Management Console. Three publicly known … Read more
October 8, 2024 at 02:17PM CrowdStrike’s software update caused 8 million Windows devices to go offline, impacting hospitals, airlines, payment platforms, and emergency services. The issue stemmed from poor patch management and violated risk management policies. Experts recommend staged rollout of patches and diversifying operating systems to mitigate vulnerabilities, and note potential implications for cyber … Read more
October 3, 2024 at 05:25PM The Cybersecurity and Infrastructure Security Agency has added CVE-2024-29824, an SQL Injection vulnerability in Ivanti Endpoint Manager, to its Known Exploited Vulnerabilities Catalog. Rated critical with a CVSS score of 9.6, this flaw was exploited in the wild, prompting Ivanti to release security updates in May. Organizations are cautioned to … Read more