vulnerabilities

CISA Adds Four Actively Exploited Vulnerabilities to KEV Catalog, Urges Fixes by Feb 25 – Go Health Pro

by
CISA Adds Four Actively Exploited Vulnerabilities to KEV Catalog, Urges Fixes by Feb 25 – Go Health Pro

Feb 05, 2025Ravie LakshmananVulnerability / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The list of vulnerabilities is as follows – CVE-2024-45195 (CVSS score: 7.5/9.8) – A forced browsing vulnerability in Apache … Read more

Increased Data Access Opens Wide Medical Device Security Vulnerabilities – Go Health Pro

by
Increased Data Access Opens Wide Medical Device Security Vulnerabilities – Go Health Pro

The latest GlobalData report, ‘Cybersecurity in Healthcare – Thematic Research’ reveals that increased data access means there are more opportunities for security vulnerabilities in the medical device sector. Medical analyst at GlobalData, Ashley Clarke says the healthcare, pharma, and medical device sectors are particularly susceptible to cyberattacks. “Medical history cannot be changed, unlike identification and … Read more

Severe Rsync vulnerabilities — CVSS 9.8 — risk RCE, data leaks – Go Health Pro

by
Severe Rsync vulnerabilities — CVSS 9.8 — risk RCE, data leaks – Go Health Pro

Six vulnerabilities in the popular Rsync file-synchronizing tool were disclosed Wednesday, including critical and high-severity flaws that could risk remote code execution (RCE) and data leakage. The Rsync utility is commonly used in Unix-like operating systems, and the Rsync daemon is frequently used to synchronize and distribute files through public mirrors. The CERT Coordination Center … Read more

Major Vulnerabilities Patched in SonicWall, Palo Alto Expedition, and Aviatrix Controllers – Go Health Pro

by
Major Vulnerabilities Patched in SonicWall, Palo Alto Expedition, and Aviatrix Controllers – Go Health Pro

Jan 09, 2025Ravie LakshmananVulnerability / Endpoint Security Palo Alto Networks has released software patches to address several security flaws in its Expedition migration tool, including a high-severity bug that an authenticated attacker could exploit to access sensitive data. “Multiple vulnerabilities in the Palo Alto Networks Expedition migration tool enable an attacker to read Expedition database … Read more

CISA adds Mitel and Oracle bugs to exploited vulnerabilities list – Go Health Pro

by
CISA adds Mitel and Oracle bugs to exploited vulnerabilities list – Go Health Pro

The Cybersecurity and Infrastructure Security Agency (CISA) on Jan. 7 added three bugs to its Known Exploited Vulnerabilities (KEV) catalog, two that affected the Mitel MiCollab communications and collaboration platform, and an Oracle WebLogic Server bug from 2020. Of the two Mitel MiCollab bugs, the most serious of the two — CVE-2024-41713 — was assigned … Read more

x