Find

Tenable®, known for its expertise in Exposure Management, proudly announces […]

Qualys, Inc a leader in disruptive cloud-based IT, security, and […]

BeyondTrust, a global company in intelligent identity and access security, announced the release of the 2023 Microsoft Vulnerabilities Report.

“Whenever a vulnerability is disclosed the dinner bell sounds for good and bad actors alike, meaning organizations are already on their back foot,” explains Robert Huber, chief security officer and head of research, Tenable.

The Trellix Threat Labs Vulnerability Research team has published research on an unauthenticated remote code execution vulnerability, CVE-2022-32548, that affects multiple routers manufactured by DrayTek, a Taiwanese company that manufactures Small Office and Home Office (SOHO) routers.

The Common Vulnerability Scoring System (CVSS) captures the main characteristics of a vulnerability and generates a numerical score indicating the severity level of the vulnerability, ranging from 0 to 10.

Last week, Nozomi Networks released an advisory (tracked as CVE-2022-30295) detailing a vulnerability in the DNS component of uClibc library used in many IoT products.

HP discovered exploits of the zero-day CVE-2021-40444 – a remote code execution vulnerability that allows for the exploitation of MSHTML browser engine utilizing Microsoft Office documents – a week before the fix was released on September 14.

For many Saudi organizations, pandemic has boosted remote work. In fact, 91 percent of businesses currently use remote workers, up from only 34% in early 2020, majority intends to keep remote working for the future.

“Endpoint security needs to concentrate on taking intelligence from detection and response workflows for better prevention, and Qualys is uniquely positioned to leverage both vulnerability and threat intelligence insights in its patching solution,” said Chris Kissel