Metasploit Weekly Wrap-Up

## A sack full of cheer from the Hacking Elves of Metasploit ![Metasploit Weekly Wrap-Up](https://blog.rapid7.com/content/images/2022/12/metasploit-ascii-1-2.png) It is clear that the Metasploit elves ...

Continue Reading

December 16, 2022

CVSS3 - CRITICAL

CVSS2 - MEDIUM

Security Bulletin: IBM Cognos Analytics has addressed multiple vulnerabilities (CVE-2021-29469, CVE-2022-39160, CVE-2022-38708, CVE-2022-42003, CVE-2022-42004, CVE-2022-43883, CVE-2022-43887, CVE-2022-25647, CVE-2022-36364)

## Summary Security vulnerabilities have been addressed in IBM Cognos Analytics 11.2.4. These vulnerabilities have also been previously addressed in IBM Cognos Analytics 11.1.7 FP6 where applicable. T ...

Continue Reading

December 16, 2022

CVSS3 - HIGH

CVSS2 - MEDIUM

Security Bulletin: IBM DataPower Gateway vulnerable to HTTP request smuggling (CVE-2022-35256)

## Summary This issue may affect the management interface for the API Connect Gateway Service. IBM has addressed the CVE. ## Vulnerability Details ** CVEID: **[CVE-2022-35256]() ** DESCRIPTION: **Node ...

Continue Reading

December 16, 2022

CVSS3 - CRITICAL

CVE-2022-4564

A vulnerability classified as problematic has been found in University of Central Florida Materia up to 9.0.1-alpha1. This affects the function before of the file fuel/app/classes/controller/api.php o ...

Continue Reading

December 16, 2022

GitHub Announces Free Secret Scanning for All Public Repositories

[![GitHub Secret Scanning](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8Xw8AAoMBgDTD2qgAAAAASUVORK5CYII=)]() GitHub on Thursday said it is making available its sec ...

Continue Reading

December 16, 2022

Implement Risk-Based Vulnerability Management with Qualys TruRisk™ : Part 2

This blog is a continuation of our first blog on implementing risk-based vulnerability management with [Qualys TruRiskTM](). In the first blog, we covered how to correctly tag and categorize assets fo ...

Continue Reading

December 16, 2022

CISA Alert: Veeam Backup and Replication Vulnerabilities Being Exploited in Attacks

[![Veeam Backup and Replication](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8Xw8AAoMBgDTD2qgAAAAASUVORK5CYII=)]() The U.S. Cybersecurity and Infrastructure Securi ...

Continue Reading

December 15, 2022

CVSS3 - CRITICAL

CVSS2 - HIGH

Zoom Client for Meetings 5.10.6 < 5.12.0 Vulnerability (ZSB-22023)

The version of Zoom Client for Meetings installed on the remote host is between 5.10.6 and 5.12.0. It is, therefore, affected by a vulnerability as referenced in the ZSB-22023 advisory. - Zoom Clien ...

Continue Reading

December 15, 2022

1 1,264 1,265 1,266 1,267 1,268 1,531

Back to Main
Subscribe for the latest news: