CVE-2023-22527: استغلال مركز بيانات Atlassian Confluence وحقن القالب في الخادم
In the wild exploitation has begun for a recently disclosed, critical severity flaw in Atlassian Confluence Data Center and Server
برنامج Critical Patch Update لشهر يناير 2024 من شركة Oracle يُعالج 191 ثغرة أمنية وحالة تعرض للمخاطر شائعة
Oracle addresses 191 CVEs in its first quarterly update of 2024 with 389 patches, including 37 critical updates.
CVE-2023-6548, CVE-2023-6549: استغلال ثغرات Zero-Day في Citrix NetScaler ADC وNetScaler Gateway
Two zero-day vulnerabilities in Citrix NetScaler ADC and NetScaler Gateway have been exploited in the wild. Urgent patching is required to address these flaws.
CVE-2023-46805, CVE-2024-21887: تم استغلال ثغرات Zero-Day في بوابات Ivanti Connect Secure وPolicy Secure
Two zero-day vulnerabilities in Ivanti Connect Secure and Ivanti Policy Secure have been exploited in the wild, with at least one attack attributed to nation-state actors.
تحديث Patch Tuesday لشهر يناير 2024 من شركة Microsoft يُعالج 48 ثغرة أمنية وحالة تعرض للمخاطر شائعة (CVE-2024-20674)
Microsoft addresses 48 CVEs in its January 2024 Patch Tuesday release with no zero-day or publicly disclosed vulnerabilities.
مراجعة Microsoft Patch Tuesday 2023 Year
Microsoft addressed over 900 CVEs as part of Patch Tuesday releases in 2023, including over 20 zero-day vulnerabilities.
تحديث Patch Tuesday لشهر ديسمبر 2023 من شركة Microsoft يُعالج 33 ثغرة أمنية وحالة تعرض للمخاطر شائعة (CVE-2023-36019)
Microsoft addresses 33 CVEs in its December 2023 Patch Tuesday release, with no zero-day vulnerabilities disclosed this month.
CVE-2023-4966 (CitrixBleed): أوقف الجلسات النشطة أو المستمرة لمنع المزيد من الحلول الوسط
Patching CitrixBleed isn’t enough; organizations need to invalidate active or persistent session tokens as the these tokens can be used to compromise networks and bypass authentication measures including multifactor authentication
CVE-2023-22518: مركز بيانات Atlassian Confluence المهم والثغرة الأمنية غير الصحيحة في ترخيص الخادم
Atlassian warns of public vulnerability details for a critical flaw in Confluence Data Center and Server, as its CISO urges organizations to apply patches immediately.
CVE-2023-46747: ثغرة أمنية لتجاوز المصادقة الحرجة في F5 BIG-IP
A critical authentication bypass vulnerability in F5’s BIG-IP could allow remote, unauthenticated attackers to execute system commands. Organizations are encouraged to apply patches as soon as possible.
Contact our sales team