Security vulnerabilities stories - Page 15

Ivanti has acquired risk-based vulnerability management specialist RiskSense to enhance its patch management capabilities.

Positive Technologies reveals critical vulnerability in SonicWall Network Security Manager, allowing authenticated attackers full control.

Every organisationusing Microsoft Exchange must patch their on-premise servers immediately and scan their networks for signs of malicious activity.

Widespread vulnerabilities have been found in Ovarro's TBox remote terminal units, posing a threat to industrial facilities.

Tenable launches risk-based vulnerability management platform Tenable.ep, combining its products into a single solution. .

Critical and low complexity vulnerabilities are on the rise, with over 10,000 logged in 2020, according to a new study by Redscan.

Vulnerability disclosures are returning to normal levels, with 2020 on track to surpass 2019, according to a report by Risk Based Security.

AppDynamics, part of Cisco, has released Cisco Secure Application, a solution designed to simplify vulnerability management.

Datadog and Snyk integrate with GitHub, allowing developers to use Datadog's CI/CD capabilities in their workflows.

AMNESIA:33 is a set of 33 memory-corrupting vulnerabilities affecting four open source TCP/IP stacks: uIP; FNET; picoTCP; and Nut/Net.

Unmitigated vulnerabilities could give an attacker access to the device, enabling the attacker to break encryption, modify code, and run certain commands.

Secure Code Warrior launches Missions, an interactive platform that allows developers to practice coding skills and tackle real-world security vulnerabilities.

84% of companies have high-risk vulnerabilities on their network perimeter, with half of them fixable through software updates, says Positive Technologies.

GitHub has recently rolled out code scanning to help developers detect and prevent vulnerabilities from popping up in their open source and enterprise code.

Temi is commonly used in environments including businesses, healthcare, retail, hospitality, and other environments including the home.

Manufacturers using Wibu-Systems CodeMeter are urged to update to version 7.10 due to vulnerabilities that could allow attackers to take control of OT networks.

One in three IT environments vulnerable to Ripple20 cyber threat, says ExtraHop. Attackers can exploit 19 vulnerabilities in the Treck networking stack.

The vulnerabilities have the potential to ‘ripple’ through complex software supply chains, enabling attackers to steal data or execute code.

Vulnerable VPN servers and clients used in critical industries have been discovered by cybersecurity firm Claroty, potentially leading to security breaches.

New Zealand-based Gallagher has become an authorised CVE Numbering Authority, allowing it to assign and communicate security vulnerabilities in its products.