Vulnerabilities and Risks

Vulnerabilities and Risk

Responding to Critical Vulnerabilities in Ivanti Endpoint Manager Mobile (CVE-2023-35078)

Ivanti Endpoint Manager Mobile (EPMM), formerly MobileIron Core, was recently revealed to contain three high-severity vulnerabilities—CVE-2023-35078, CVE-2023-35081, and CVE-2023-35082. These...

Read the full article

Responding to Critical Vulnerabilities in FortiOS SSL VPN (CVE-2023-27997)

A severe vulnerability recently disclosed in Fortinet’s FortiOS SSL VPN product enables unauthenticated remote code execution, allowing hackers to bypass...

Read the full article

Microsoft Patch 73 CVEs in August 2023 (CVE-2023-38180)

Microsoft released its monthly Patch Tuesday security updates for August 2023, addressing a total of 73 vulnerabilities across a wide...

Read the full article

Juniper Firewall Vulnerabilities: CVE-2023-36844, CVE-2023-36845, CVE-2023-36846, and CVE-2023-36847

Juniper Networks firewalls are a common sight in enterprise networks worldwide. However, the convenience of their J-Web management interface also...

Read the full article

CVE-2023-4863: A Comprehensive Guide

CVE-2023-4863 refers to a critical heap buffer overflow vulnerability found in the libwebp package, widely used for encoding and decoding...

Read the full article

Ivanti’s Zero-Day Vulnerabilities (CVE-2024-21887 and CVE-2023-46805)

Ivanti Connect Secure (ICS) and Ivanti Policy Secure (IPS), formerly known as Pulse Connect Secure, are virtual private network (VPN)...

Read the full article