Category: Unsupported Software Unpatched Systems
-
Nagios XI Stored Cross-Site Scripting (XSS): CVE-2021-38156
Nagios is open-source network and system monitoring software. Raxis’ Matt Dunn has discovered a cross-site scripting vulnerability that could leave users open to attack.
-
PRTG Network Monitor Stored Cross-Site Scripting Vulnerability (CVE-2021-29643)
Raxis lead penetration tester Matt Dunn uncovers a new vulnerability in the PRTG Network Monitor (CVE-2021-29643). Read more here.
-
SonicWall Patches Three Zero-Day Vulnerabilities
Cybersecurity company SonicWall has released patches for three zero-day vulnerabilities that are currently being exploited.
-
NSA, FBI, CISA Statement on Russian SVR Activity
The US government is warning businesses to beware of vulnerabilities being exploited by the Russian Foreign Intelligence Service (SVR RF). But that’s not the only group taking advantage. Here’s what you should do.
-
Sudo Privilege Escalation Vulnerability Discovered
Qualys has discovered and reported a serious vulnerability (CVE-2021-3156) affecting the sudo utility. Patches are now available and Raxis recommends applying them immediately.
-
Cisco Patches Critical Security Vulnerabilities
Cisco releases patches for some critical and high-severity vulnerabilities.
-
Windows 10 Vulnerability Highlights Need for Physical Security Testing
A Windows 10 security problem offers an excellent example of what can happen when a bad guy gets to spend a few minutes alone with your computer.