Tag: Tenable

Cisco addressed multiple vulnerabilities in its SD-WAN vManage Software. One of which allows an attacker to perform actions not granted to average users, such as creating accounts with administrative level access. Please find below a comment from Satnam Narang, Staff Research Engineer, Tenable. “Cisco patched multiple vulnerabilities on Wednesday, including several flaws in...

Cyber attacks are on the rise in India with the number of incidents increasing threefold in the last one year. Be it a major breach like SolarWinds or phishing and ransomware attacks, cybercriminals always take the easiest route to obtain privileged credentials. In many instances, phishing and ransomware scams...

Microsoft disclosed more than 25 critical memory allocation vulnerabilities in OT and IoT devices that could enable an attacker to bypass security controls and execute malicious code or cause a system to crash in industrial, medical, and enterprise networks. “Vulnerabilities such as the BadAlloc flaws underscore the need for...

Apple recently patched several vulnerabilities across its lineup of software and operating systems. Included in these patches were fixes for two zero-day vulnerabilities that have been exploited in the wild. Please find below a comment from Satnam Narang, Staff Research Engineer, Tenable. “Apple patched CVE-2021-30661, a vulnerability in its...

For the second time in a week, a researcher has published a proof-of-concept (PoC) exploit for a zero-day vulnerability in Google Chrome. Earlier this week, a researcher published a PoC for a 1-day vulnerability in the V8 JavaScript engine used by Google Chrome and Microsoft Edge (Chromium). Please find...