Security CERT Global
- TvRock vulnerable to cross-site request forgery
- TvRock vulnerable to denial-of-service (DoS)
- LXD: CVSS (Max): 5.9
- Linux Kernel (Live Patch 22 for SLE 15 SP4): CVSS (Max): 7.8
- shim: CVSS (Max): 8.4
- polkit: CVSS (Max): None
- Pillow: CVSS (Max): 7.3
- Percona XtraBackup: CVSS (Max): 7.8
- Linux Kernel (Live Patch 50 for SLE 12 SP5): CVSS (Max): 7.8
- apache-commons-configuration: CVSS (Max): 4.4
- glibc: CVSS (Max): 8.2
- Linux Kernel RT (Live Patch 1 for SLE 15 SP5): CVSS (Max): 7.8
- thunderbird: CVSS (Max): 7.5
- openjdk-11: CVSS (Max): 3.7
- apache-commons-configuration2: CVSS (Max): 4.4
- Pillow: CVSS (Max): 7.3
- Linux Kernel (Live Patch 1 for SLE 15 SP5): CVSS (Max): 7.8
- samba: CVSS (Max): 6.5
- Linux Kernel (Live Patch 51 for SLE 12 SP5): CVSS (Max): 7.8
- openjdk-17: CVSS (Max): 3.7
- openjdk-11: CVSS (Max): 3.7
- The Great Fuzzy Hashing Debate
- CERTFR-2024-AVI-0337 : Multiples vulnérabilités dans Mozilla Thunderbird (22 avril 2024)
- CERTFR-2024-ACT-018 : Bulletin d’actualité CERTFR-2024-ACT-018 (22 avril 2024)
- CERTFR-2024-AVI-0341 : Multiples vulnérabilités dans Synacor Zimbra Collaboration (22 avril 2024)
- CERTFR-2024-AVI-0339 : Vulnérabilité dans Microsoft Edge (22 avril 2024)
- CERTFR-2024-AVI-0336 : Multiples vulnérabilités dans les produits OwnCloud (22 avril 2024)
- CERTFR-2024-AVI-0335 : Vulnérabilité dans SolarWinds Platform (22 avril 2024)
- CERTFR-2024-AVI-0340 : [SCADA] Multiples vulnérabilités dans les produits Moxa (22 avril 2024)
- CERTFR-2024-AVI-0338 : [SCADA] Vulnérabilité dans Siemens RUGGEDCOM APE1808 (22 avril 2024)
- PhaaS-tjeneste lukket ned
- 0-dagssårbarhed i CrushFTP
- JVN: Armeria-samlにおけるSAMLメッセージ取り扱い不備
- JVN: LINE client for iOSにおけるサーバ証明書の検証不備の脆弱性
- JVN: TensorFlowベースのKerasモデルに含まれるLambdaレイヤにコードインジェクションが発生する問題
- JVN: Unitronics製VisionシリーズPLCにおける復元可能な形式でのパスワード保存の脆弱性
- JVN: オムロン製Sysmac Studio/CX-OneおよびCX-Programmerにおける複数の脆弱性
- Multiple vulnerabilities in OMRON Sysmac Studio/CX-One and CX-Programmer
- libdatetime-timezone-perl: CVSS (Max): None
- wireshark: CVSS (Max): 7.5
- Junos OS: CVSS (Max): 5.3
- wireshark: CVSS (Max): 7.5
- Linux kernel: CVSS (Max): 7.8
- Linux kernel: CVSS (Max): 7.8
- Mozilla Thunderbird: CVSS (Max): 7.5*
- nodejs12: CVSS (Max): 7.5
- tomcat9: CVSS (Max): 7.5
- chromium: CVSS (Max): 8.8*
- nodejs14: CVSS (Max): 7.5
- MozillaFirefox: CVSS (Max): 7.5*
Research Library Updates
Feb 18-2019 Reports Added To Library: Privacy Maturity Model AICPA CICA Canada Cyber Security Centre Canada Effective Regional Cyberthreat […]
Strategic Efficiency Consortium Security Intelligence Data Platform: Work Flow + Content Map – Jan 2019
SEC Industrial Security Intelligence Data Platform Work Flow SEC Industrial Security Intelligence Data Platform Content Map Updated Jan 2019 Document: […]
SEC Industrial Security Intelligence Data Platform 2019 Document
Strategic Efficiency Consortium Platform Work Flow Content Map Updated for 2019. SEC Industrial Security Intelligence Data Platform 2019 Document Document: […]
SEC Highlighted Research Reports – Jan 07
Strategic Efficiency Consortium Highlighted Research Reports – Jan 07 Editor Pick Reports: Harnessing the Ontario Cybersecurity Opportunity for Growth – […]
SEC Vulnerabilities: Analysis of Exploitable Vulnerability Sequences in Industrial Networked Systems: A Proof of Concepts
Software vulnerabilities can affect the security of any computer and industrial networked systems are no exception. Information about known […]
SEC Asset Discovery: Automated Asset Discovery in Industrial Control Systems – Exploring the Problem
..Vulnerabilities within Industrial Control Systems (ICS) and Critical National Infrastructure (CNI) represent a significant safety, ecological and economical risk […]
Flexera Software Country Reports: United States: United Kingdom: Nordics: France: Benelux: DACH: APAC
The Flexera Software Country Reports tell you how much vulnerable software is present on private PCs in key countries/regions […]
Deloitte: SEC Cyber Risk – Examining the Industrial Control System Cyber Risk Gap
Business needs have led to the convergence of Enterprise Resource Planning (ERP) systems, Manufacturing Execution Systems (MES) and SCADA systems […]