0 - CT - Vulnerabilities Database Notepad - CVEs archivos - CISO2CISO.COM & CYBER SECURITY GROUP

0 – CT – Vulnerabilities Database Notepad – CVEs

Marcos Jaimovich

FIRST.Org CVSS V4.0 Releasead – Navigation the Evolution – Dive into CVSS 4.0 Unveiled by Marcos Jaimovich

FIRST.Org CVSS V4.0 Releasead – Navigation the Evolution – Dive into CVSS 4.0 Unveiled by...

SecurityAffairs.com

Atlassian Confluence zero-day CVE-2023-22515 actively exploited in attacks – Source: securityaffairs.com

Atlassian Confluence zero-day CVE-2023-22515 actively exploited in attacks – Source: securityaffairs.com

SecurityAffairs.com

WS_FTP flaw CVE-2023-40044 actively exploited in the wild – Source: securityaffairs.com

WS_FTP flaw CVE-2023-40044 actively exploited in the wild – Source: securityaffairs.com

Security Boulevard

Google Chrome Heap Buffer Overflow Vulnerability (CVE-2023-5217) Notification – Source: securityboulevard.com

Google Chrome Heap Buffer Overflow Vulnerability (CVE-2023-5217) Notification – Source: securityboulevard.com

SecurityAffairs.com

Cisco urges to patch actively exploited IOS zero-day CVE-2023-20109 – Source: securityaffairs.com

Cisco urges to patch actively exploited IOS zero-day CVE-2023-20109 – Source: securityaffairs.com

Security Boulevard

Google LibWebP Arbitrary Code Execution Vulnerability (CVE-2023-5129) Notification – Source: securityboulevard.com

Google LibWebP Arbitrary Code Execution Vulnerability (CVE-2023-5129) Notification – Source: securityboulevard.com

SecurityAffairs.com

Watch out! CVE-2023-5129 in libwebp library affects millions applications – Source: securityaffairs.com

Watch out! CVE-2023-5129 in libwebp library affects millions applications – Source: securityaffairs.com

Bleeping Computer

Google assigns new maximum rated CVE to libwebp bug exploited in attacks – Source: www.bleepingcomputer.com

Google assigns new maximum rated CVE to libwebp bug exploited in attacks – Source: www.bleepingcomputer.com

SecurityAffairs.com

GitLab addressed critical vulnerability CVE-2023-5009 – Source: securityaffairs.com

GitLab addressed critical vulnerability CVE-2023-5009 – Source: securityaffairs.com

SecurityAffairs.com

12,000 Juniper SRX firewalls and EX switches vulnerable to CVE-2023-36845 – Source: securityaffairs.com

12,000 Juniper SRX firewalls and EX switches vulnerable to CVE-2023-36845 – Source: securityaffairs.com

SecurityAffairs.com

PoC exploit code released for CVE-2023-34039 bug in VMware Aria Operations for Networks – Source: securityaffairs.com

PoC exploit code released for CVE-2023-34039 bug in VMware Aria Operations for Networks – Source:...

SecurityAffairs.com

FBI: Patches for Barracuda ESG Zero-Day CVE-2023-2868 are ineffective – Source: securityaffairs.com

FBI: Patches for Barracuda ESG Zero-Day CVE-2023-2868 are ineffective – Source: securityaffairs.com

SecurityAffairs.com

Researchers released PoC exploit for Ivanti Sentry flaw CVE-2023-38035 – Source: securityaffairs.com

Researchers released PoC exploit for Ivanti Sentry flaw CVE-2023-38035 – Source: securityaffairs.com

HeimdalSecurity.com

Thousands of Openfire Servers at Risk from Critical CVE – Source: heimdalsecurity.com

Thousands of Openfire Servers at Risk from Critical CVE – Source: heimdalsecurity.com

Bleeping Computer

New CVE-2023-3519 scanner detects hacked Citrix ADC, Gateway devices – Source: www.bleepingcomputer.com

New CVE-2023-3519 scanner detects hacked Citrix ADC, Gateway devices – Source: www.bleepingcomputer.com

Bleeping Computer

Microsoft enables Windows Kernel CVE-2023-32019 fix for everyone – Source: www.bleepingcomputer.com

Microsoft enables Windows Kernel CVE-2023-32019 fix for everyone – Source: www.bleepingcomputer.com

Dark Reading Security

Microsoft Fixes 74 CVEs in August Update – Source: www.darkreading.com

Microsoft Fixes 74 CVEs in August Update – Source: www.darkreading.com

SecurityAffairs.com

Hackers already installed web shells on 581 Citrix servers in CVE-2023-3519 attacks – Source: securityaffairs.com

Hackers already installed web shells on 581 Citrix servers in CVE-2023-3519 attacks – Source: securityaffairs.com

SecurityAffairs.com

Experts warn attackers started exploiting Citrix ShareFile RCE flaw CVE-2023-24489 – Source: securityaffairs.com

Experts warn attackers started exploiting Citrix ShareFile RCE flaw CVE-2023-24489 – Source: securityaffairs.com

SecurityAffairs.com

Zimbra fixed actively exploited zero-day CVE-2023-38750 in ZCS – Source: securityaffairs.com

Zimbra fixed actively exploited zero-day CVE-2023-38750 in ZCS – Source: securityaffairs.com

Security Boulevard

Cyber Storm Unleashed: Unmasking STORM-0978’s Exploitation of the CVE-2023-36884 Vulnerability – Source: securityboulevard.com

Cyber Storm Unleashed: Unmasking STORM-0978’s Exploitation of the CVE-2023-36884 Vulnerability – Source: securityboulevard.com

SecurityAffairs.com

Apple addressed a new actively exploited zero-day tracked as CVE-2023-38606 – Source: securityaffairs.com

Apple addressed a new actively exploited zero-day tracked as CVE-2023-38606 – Source: securityaffairs.com

SecurityAffairs.com

Shadowserver reported that +15K Citrix servers are likely vulnerable to attacks exploiting the flaw CVE-2023-3519 – Source: securityaffairs.com

Shadowserver reported that +15K Citrix servers are likely vulnerable to attacks exploiting the flaw CVE-2023-3519...

Bleeping Computer

Over 15K Citrix servers vulnerable to CVE-2023-3519 RCE attacks – Source: www.bleepingcomputer.com

Over 15K Citrix servers vulnerable to CVE-2023-3519 RCE attacks – Source: www.bleepingcomputer.com

Bleeping Computer

Over 15K Citrix servers likely vulnerable to CVE-2023-3519 attacks – Source: www.bleepingcomputer.com

Over 15K Citrix servers likely vulnerable to CVE-2023-3519 attacks – Source: www.bleepingcomputer.com

Security Boulevard

Digging Into An Interesting New CVE – Source: securityboulevard.com

Digging Into An Interesting New CVE – Source: securityboulevard.com

Bleeping Computer

Adobe fixes patch bypass for exploited ColdFusion CVE-2023-29298 flaw – Source: www.bleepingcomputer.com

Adobe fixes patch bypass for exploited ColdFusion CVE-2023-29298 flaw – Source: www.bleepingcomputer.com

Comprehensive analysis of initial attack samples exploiting CVE-2023-23397 vulnerability – Source: securelist.com

Comprehensive analysis of initial attack samples exploiting CVE-2023-23397 vulnerability – Source: securelist.com

The Last Watchdog

News Alert: Silent Signal discovers a critical vulnerability in IBM i System – CVE-2023-30990 –...

SecurityAffairs.com

VMware warns customers of exploit available for critical vRealize RCE flaw CVE-2023-20864 – Source: securityaffairs.com

VMware warns customers of exploit available for critical vRealize RCE flaw CVE-2023-20864 – Source: securityaffairs.com

MORE RESOURCES

CISO Strategics

cyber operations & soc

red - blue & purple teams

THREAT INTELLIGENCE

VULNERABILITIES

CYBER ATTACKS

DATA BREACH

MALLWARE

RANSOMWARE

DDOS ATTACKS

CLOUD SECURITY

IOT SECURITY

hacking

CISO
STRATEGICS

CYBER
ARCHITECTURE

SOC CSIRT
OPERATIONS

CYBERSECURITY
TOOLS

CYBERSECURITY
VENDORS

CYBERSECURITY
MSSP

Accenture
Attos
AT&T Cybersecurity
BT Security
BASE 4 - Hispam
Deloitte
Entelgy Security
KPMG
NTT Security
Novared - Hispam
Neosecure - Hispam
Orange Cyberdefense
PwC
Telefonica Tech
Thales
Verizon Security