AA23-250A: 여러 국가 정부 위협 요소가 CVE-2022-47966 및 CVE-2022-42475를 악용
A joint Cybersecurity Advisory examines the exploitation of two critical vulnerabilities by nation-state threat actors....
AA23-215A: 2022년 가장 일반적으로 악용되는 취약성
A joint Cybersecurity Advisory collaborated on by multiple international agencies highlights the top routinely exploited vulnerabilities of 2022....
CVE-2023-35078: Ivanti Endpoint Manager Mobile (EPMM) / MobileIron Core 승인되지 않은 API 액세스 취약성
Critical vulnerability in a popular mobile device management solution from Ivanti has been exploited in the wild in limited attacks...
MOVEit 전송 취약성 CL0P 랜섬웨어 갱에 대한 FAQ
Frequently asked questions relating to vulnerabilities in MOVEit Transfer, including one that was exploited by the prolific CL0P ransomware gang....
CVE-2023-20887: 네트워크 명령 인젝션에 대한 VMware Aria 작동
VMware issues advisory to address three flaws in its VMware Aria Operations for Networks solution, including a critical command injection flaw assigned a CVSSv3 score of 9.8....
Microsoft의 June 2023 Patch Tuesday에서 70개 CVE에 대응 (CVE-2023-29357)
Microsoft addresses 70 CVEs in its June 2023 Patch Tuesday update including six rated as critical....
Volt Typhoon: 국제적 사이버 보안 기관이 중국 국가 주도 위협 행위자에 연결된 활동에 대해 자세히 설명
Several international cybersecurity authorities from the United States, United Kingdom, Australia, Canada and New Zealand issue a joint advisory detailing tactics, techniques and procedures used in recent attacks by a Chinese state-sponsored threat actor....
Microsoft의 May 2023 Patch Tuesday에서 38개 CVE에 대응 (CVE-2023-29336)
Microsoft addresses 38 CVEs including three zero-day vulnerabilities, two of which were exploited in the wild....
CVE-2023-20864: 로그 역직렬화 취약성에 대한 VMware Aria 작동
VMware issues advisory to address two flaws in its VMware Aria Operations for Logs solution, including a critical deserialization flaw assigned a CVSSv3 score of 9.8....
97개 CVE를 다루는 Microsoft의 April 2023 Patch Tuesday (CVE-2023-28252)
Microsoft addresses 97 CVEs, including one that was exploited in the wild as a zero day....
Microsoft의 February 2023 Patch Tuesday에서 75개 CVE(CVE-2023-23376)를 처리
Microsoft addresses 75 CVEs including three zero-day vulnerabilities that were exploited in the wild....
ProxyNotShell, OWASSRF, TabShell: 곧 바로 Microsoft Exchange Servers를 패치하십시오
Several flaws in Microsoft Exchange Server disclosed over the last two years continue to be valuable exploits for attackers as part of ransomware and targeted attacks against organizations that have yet to patch their systems. Patching the flaws outlined below is strongly recommended....