Security Vulnerability


Security Vulnerability

 

In computer security, a vulnerability is a weakness which allows an attacker to reduce a system’s information assurance. Vulnerability is the intersection of three elements: a system susceptibility or flaw, attacker access to the flaw, and attacker capability to exploit the flaw.  Below you will find Security Vulnerability feeds from Apple and Microsoft and many of the top security organizations.

 

 

 

  • Vuln: Oracle Java SE CVE-2017-10078 Remote Security Vulnerability
    Oracle Java SE CVE-2017-10078 Remote Security Vulnerability ... read more
    Source: Security FocusPublished on 2017-09-22
  • Joomla! Releases Security Update
    Original release date: September 21, 2017Joomla! has released version 3.8.0 of its Content Management System (CMS) software to address a vulnerability. A remote attacker could exploit this vulnerability to obtain access to sensitive information.US-CERT encourages users and administrators to review the Joomla! Security Release and apply the necessary update. This ... read more
    Source: US-CERTPublished on 2017-09-21
  • Samba Releases Security Updates
    Original release date: September 20, 2017The Samba Team has released security updates to address several vulnerabilities in Samba. An attacker could exploit any of these vulnerabilities to obtain access to potentially sensitive information.US-CERT encourages users and administrators to review the following Samba Security Announcements for CVE-2017-12150, CVE-2017-12151, and CVE-2017-12163; and ... read more
    Source: US-CERTPublished on 2017-09-21
  • Cisco Releases Security Updates
    Original release date: September 20, 2017Cisco has released updates to address vulnerabilities affecting multiple products. A remote attacker could exploit one of these vulnerabilities to take control of an affected system.US-CERT encourages users and administrators to review the following Cisco Security Advisories and apply the necessary updates:Unified Customer Voice Portal ... read more
    Source: US-CERTPublished on 2017-09-21
  • IC3 Issues Alert on Disaster-Related Fraud
    Original release date: September 20, 2017The Internet Crime Complaint Center (IC3) has released an announcement on fraudulent cyber activity related to natural disasters. IC3 reports that scammers have recently used email and social-networking sites to solicit money from disaster victims with scams on false temporary housing and job opportunities. In ... read more
    Source: US-CERTPublished on 2017-09-20
  • FTC Releases Alerts on Protecting Against Identity Theft
    Original release date: September 20, 2017The Federal Trade Commission (FTC) has released two alerts to educate consumers on recommended protections against identity theft after the recent data breach at Equifax. Users should consider placing security freezes with the three major credit reporting agencies: Equifax, Transunion, and Experian. Alternative security recommendations ... read more
    Source: US-CERTPublished on 2017-09-20
  • WordPress Releases Security Update
    Original release date: September 20, 2017WordPress versions prior to 4.8.2 are affected by multiple vulnerabilities. A remote attacker could exploit some of these vulnerabilities to take control of an affected website.US-CERT encourages users and administrators to review the WordPress Security Release and upgrade to WordPress 4.8.2. This product is provided ... read more
    Source: US-CERTPublished on 2017-09-20
  • Apple Releases Security Updates
    Original release date: September 19, 2017Apple has released security updates to address vulnerabilities in multiple products. A remote attacker may exploit some of these vulnerabilities to take control of an affected system.US-CERT encourages users and administrators to review the following Apple security pages and apply the necessary updates:iOS 11Safari 11tvOS ... read more
    Source: US-CERTPublished on 2017-09-19
  • Avast’s Piriform Releases Security Update for CCleaner
    Original release date: September 19, 2017Piriform, a subsidiary of Avast, has released CCleaner 5.34 and has pushed v1.07.3214 to CCleaner Cloud users. These versions do not contain the Floxif malware found in the 32-bit versions of CCleaner 5.33.6162 and CCleaner Cloud 1.07.3191. Floxif malware collects information from the victim's system ... read more
    Source: US-CERTPublished on 2017-09-19
  • Apache Releases Security Updates for Apache Tomcat
    Original release date: September 19, 2017The Apache Foundation has released security updates to address vulnerabilities in Apache Tomcat. Exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected server. US-CERT encourages users and administrators to review the Apache advisories for CVE-2017-12615 and CVE-2017-12616 for ... read more
    Source: US-CERTPublished on 2017-09-19