Emergency Response

Microsoft’s Security Update in November on High-Risk Vulnerabilities in Multiple Products

| | Blog, CVE-2024-43451, CVE-2024-49039, Emergency Response, Microsoft vulnerabilities
Overview On November 13, NSFOCUS CERT detected that Microsoft released a security update patch for November, which fixed 89 security issues, including Windows, Microsoft SQL Server, Microsoft Office, Azure, Open Source Software, ...
NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.
Oracle WebLogic Server Remote Code Execution Vulnerability (CVE-2024-21216)

Oracle WebLogic Server Remote Code Execution Vulnerability (CVE-2024-21216)

| | Blog, CVE-2024-21216, Emergency Response, Oracle Vulnerability
Overview Recently, NSFOCUS CERT detected that Oracle issued a security announcement and fixed the deserialization vulnerability in WebLogic Server (CVE-2024-21216). Since WebLogic does not strictly filter incoming data through the T3/IIOP protocol, ...
NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.

Remote Code Execution Vulnerability Alert of Unix CUPS Print Service (CVE-2024-47076 / CVE-2024-47175 / CVE-2024-47177)

| | Blog, CVE-2024-47076, CVE-2024-47175, CVE-2024-47177, Emergency Response
Overview Recently, NSFOCUS CERT monitored the disclosure of the details of remote code execution vulnerabilities for Unix CUPS printing service on the Internet. When the system enables cups-browsed process listening (default port ...
NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.

Microsoft’s August Security Update on High-Risk Vulnerabilities in Multiple Products

| | azure, Blog, CVE-2024-38106, CVE-2024-38107, CVE-2024-38189, CVE-2024-38193, CVE-2024-38213, Emergency Response, office, Windows vulnerability
Overview On August 14, NSFOCUS CERT detected that Microsoft released a security update patch for August, which fixed 90 security issues involving widely used products such as Windows, Microsoft Office, Visual Studio ...
NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.

JumpServer File Read and Upload Vulnerability (CVE-2024-40628/CVE-2024-40629) Notification

| | Blog, Emergency Response, JumpServer CVE-2024-40628 CVE-2024-40629
Overview Recently, NSFOCUS CERT detected that JumpServer issued a security announcement and fixed the file reading and uploading vulnerabilities in JumpServer (CVE-2024-40628/CVE-2024-40629). Due to improper permission configuration of the Ansible module in ...
NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.
Critical Patch Update Notice in July for All Series of Oracle Products

Critical Patch Update Notice in July for All Series of Oracle Products

| | Blog, Emergency Response
Overview On July 17, 2024, NSFOCUS CERT detected that Oracle officially released a critical patch update announcement CPU (Critical Patch Update) for July. A total of 397 vulnerabilities of varying degrees were ...
NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.
GitLab Authentication Bypass Vulnerability (CVE-2024-6385) Notification

GitLab Authentication Bypass Vulnerability (CVE-2024-6385) Notification

| | Blog, CVE-2024-6385, Emergency Response, GitLab, pipeline
Overview Recently, NSFOCUS CERT detected that GitLab issued a security announcement and fixed the identity bypass vulnerability (CVE-2024-6385) in GitLab Community Edition (CE) and Enterprise Edition (EE). Due to the incomplete fixing ...
NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.

Microsoft’s Security Update in July of High-Risk Vulnerabilities in Multiple Products

| | .NET Framework, azure, Blog, Emergency Response, Microsoft Office, Microsoft SQL Server, Microsoft Visual Studio, security update, System Management Center, Windows
Overview On July 10, NSFOCUS CERT detected that Microsoft released a security update patch for July, which fixed 139 security issues involving Windows, Microsoft SQL Server, Microsoft Office, Azure and other widely ...
NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.
Remote Code Execution Vulnerability between GeoServer and GeoTools (CVE-2024-36401/CVE-2024-36404) Notification

Remote Code Execution Vulnerability between GeoServer and GeoTools (CVE-2024-36401/CVE-2024-36404) Notification

| | Blog, CVE-2024-36401, CVE-2024-36404, Emergency Response, GeoServer
Overview Recently, NSFOCUS CERT detected that GeoServer and GeoTools issued security announcements and fixed the XPath expression injection vulnerability in GeoServer and GeoTools (CVE-2024-36404). As the GeoTools library API called by GeoServer ...
NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.
OpenSSH Remote Code Execution Vulnerability (CVE-2024-6387) Notification

OpenSSH Remote Code Execution Vulnerability (CVE-2024-6387) Notification

| | Blog, conditional competition, CVE-2024-6387, Emergency Response, openssh
Overview Recently, NSFOCUS CERT detected that OpenSSH issued a security announcement and fixed the remote code execution vulnerability of OpenSSH (CVE-2024-6387). Due to a signal handler race condition issue in OpenSSH Server ...
NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.
Load more