CVE-2023-20269: Cisco Adaptive Security Appliance 및 Firepower Threat Defense에 제로데이 취약성이 랜섬웨어 그룹에 의해 악용된 것으로 보고됨
Ransomware groups including LockBit and Akira are reportedly exploiting a zero-day vulnerability in Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) appliances with VPN functionality enabled.
AA23-250A: 여러 국가 정부 위협 요소가 CVE-2022-47966 및 CVE-2022-42475를 악용
A joint Cybersecurity Advisory examines the exploitation of two critical vulnerabilities by nation-state threat actors.
CVE-2023-2868: Barracuda 및 FBI에서 즉시 ESG(Email Security Gateway) 장치를 교체할 것을 권고
Since October 2022, attackers have been exploiting a zero-day vulnerability in Barracuda Email Security Gateway devices, and both the vendor and the FBI urge customers to replace these devices immediately.
CVE-2023-38035: Ivanti Sentry API 인증 바이패스 제로데이가 광범위하게 악용
For the third time in a month, Ivanti discloses a zero-day vulnerability in one of its products that has been exploited in the wild
Microsoft의 August 2023 Patch Tuesday에서 73개 CVE를 처리(CVE-2023-38180)
Microsoft addresses 73 CVEs, including one vulnerability exploited in the wild.
AA23-215A: 2022년 가장 일반적으로 악용되는 취약성
A joint Cybersecurity Advisory collaborated on by multiple international agencies highlights the top routinely exploited vulnerabilities of 2022.
CVE-2023-35078: Ivanti Endpoint Manager Mobile (EPMM) / MobileIron Core 승인되지 않은 API 액세스 취약성
Critical vulnerability in a popular mobile device management solution from Ivanti has been exploited in the wild in limited attacks
Oracle 2022년 7월 중요 패치 업데이트로 183개 CVE 해결
Oracle addresses 183 CVEs in its third quarterly update of 2023 with 508 patches, including 76 critical updates.
CVE-2023-3519: Netscaler ADC(Citrix ADC) 및 Netscaler Gateway(Citrix Gateway)에 중요 RCE
Citrix has released a patch fixing a remote code execution vulnerability in several versions of Netscaler ADC and Netscaler Gateway that has been exploited. Organizations are urged to patch immediately.
CVE-2023-3595, CVE-2023-3596: Rockwell Automation ControlLogix 취약성 공개됨
Rockwell Automation issues advisory for multiple vulnerabilities, including a critical flaw that could lead to disruption or destruction of critical infrastructure processes.
OT 환경에서 Rockwell Automation Allen-Bradley 통신 모듈이 CVE-2023-3595 및 CVE-2023-3596에 영향을 받는 것을 발견
Identifying vulnerable systems in your industrial environment can be complex. Use the wrong tool and it will overlook affected devices. Find out how Tenable OT Security is designed to give you in-depth asset visibility to address these new vulnerabilities without disrupting productivity.
Microsoft의 2023년 7월 Patch Tuesday에서 130개의 CVE(CVE-2023-36884)를 처리
Microsoft addresses 130 CVEs including five that were exploited in the wild as zero-day vulnerabilities and guidance on the malicious use of Microsoft signed drivers.
영업 팀에게 문의