#cve

[ follow ]
#cybersecurity
Information security
fromThe Verge
2 weeks ago

The CVE program for tracking security flaws is about to lose federal funding

Funding for the CVE program, crucial for tracking cybersecurity vulnerabilities, is set to expire on April 16.
fromComputerworld
2 weeks ago
Privacy professionals

CVE funding shut down, giving the security community jitters

CVE is essential for cybersecurity and any disruptions threaten national security.
fromComputerWeekly.com
1 week ago
Privacy professionals

Amid uncertainty, Armis becomes newest CVE numbering authority | Computer Weekly

Armis has been designated a CVE Numbering Authority to enhance the identification and management of cybersecurity vulnerabilities.
fromThe Hacker News
47 minutes ago
Information security

SonicWall Confirms Active Exploitation of Flaws Affecting Multiple Appliance Models

Two significant security vulnerabilities in SonicWall's SMA100 appliances have been exploited, urging users to review their devices for unauthorized logins.
Information security
fromThe Verge
2 weeks ago

The CVE program for tracking security flaws is about to lose federal funding

Funding for the CVE program, crucial for tracking cybersecurity vulnerabilities, is set to expire on April 16.
fromComputerworld
2 weeks ago
Privacy professionals

CVE funding shut down, giving the security community jitters

CVE is essential for cybersecurity and any disruptions threaten national security.
fromComputerWeekly.com
1 week ago
Privacy professionals

Amid uncertainty, Armis becomes newest CVE numbering authority | Computer Weekly

Armis has been designated a CVE Numbering Authority to enhance the identification and management of cybersecurity vulnerabilities.
fromThe Hacker News
47 minutes ago
Information security

SonicWall Confirms Active Exploitation of Flaws Affecting Multiple Appliance Models

Two significant security vulnerabilities in SonicWall's SMA100 appliances have been exploited, urging users to review their devices for unauthorized logins.
more#cybersecurity
#vulnerabilities
fromComputerWeekly.com
2 weeks ago
Information security

MITRE warns over lapse in CVE coverage | Computer Weekly

MITRE's CVE program faces potential disruptions due to an upcoming contract lapse, impacting national cyber security efforts.
fromTheregister
3 months ago
Information security

Six vulnerabilities in rsync announced and fixed in a day

Several CVEs were found in rsync, but a fixed version was released quickly, addressing the critical vulnerabilities noted.
fromComputerWeekly.com
2 weeks ago
Information security

MITRE warns over lapse in CVE coverage | Computer Weekly

MITRE's CVE program faces potential disruptions due to an upcoming contract lapse, impacting national cyber security efforts.
fromTheregister
3 months ago
Information security

Six vulnerabilities in rsync announced and fixed in a day

Several CVEs were found in rsync, but a fixed version was released quickly, addressing the critical vulnerabilities noted.
more#vulnerabilities
#nodejs
fromNist
3 months ago
Information security

NVD

End-of-Life versions of Node.js are unsupported and expose systems to security vulnerabilities.
Users should upgrade to currently supported Node.js versions to mitigate risks.
fromNist
2 months ago
Information security

NVD

Koa vulnerability can lead to Denial-of-Service attacks due to faulty regex in header parsing, fixed in later versions.
fromNist
3 months ago
Information security

NVD

End-of-Life versions of Node.js are unsupported and expose systems to security vulnerabilities.
Users should upgrade to currently supported Node.js versions to mitigate risks.
fromNist
2 months ago
Information security

NVD

Koa vulnerability can lead to Denial-of-Service attacks due to faulty regex in header parsing, fixed in later versions.
more#nodejs
fromNist
3 months ago
Web design

NVD

Stored XSS vulnerability due to improper input handling found in Responsive jQuery Slider.
Affected versions are from n/a through 1.1.1, necessitating updates.
Information security
fromTheregister
7 months ago

Doomsday 9.9 unauthenticated RCE bug affects all Linux

A critical 9.9-rated unauthenticated RCE flaw is affecting GNU/Linux systems, with no fix yet despite disclosure to developers three weeks ago.
[ Load more ]