Defense Unicorns’ Post

"The U.S. National Institute of Standards and Technology (NIST) blames a dearth of analysis affecting thousands of entries in the National Vulnerability Database (NVD) on a drop in “interagency support” as vulnerability reporting surges. As the world’s most widely used vulnerability database, the NVD plays a vital role in global cybersecurity, but since mid-February, NIST has fallen behind in its role of adding essential enrichment information to new CVE (common vulnerabilities and exposures) entries. The enrichment data provides threat analysts with necessary context for new vulnerabilities, basic descriptions of the bugs, the software they impact, CVSS severity scores, related common weakness and enumeration (CWE), common platform enumeration (CPE) details, patch availability, and links to additional resources. According to NIST’s website, the institute analyzed only 199 of 3370 CVEs it received last month." https://lnkd.in/ep_3kmFF

According to a new GAO report, 49 of 55 requirements in the 2021 Executive Order on improving the nation's cybersecurity have been fully completed. Learn about CISA, NIST, and OMB efforts and areas of improvement to safeguard federal IT systems. https://bit.ly/3Ua0BjM

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a medium-severity security flaw impacting Roundcube email software to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The issue, tracked as CVE-2023-43770 (CVSS score: 6.1), relates to a cross-site scripting (XSS) flaw that stems from the handling of linkrefs in plain text messages. "Roundcube Webmail contains a persistent cross-site scripting (XSS) vulnerability that can lead to information disclosure via malicious link references in plain/text messages," CISA said. According to a description of the bug on NIST's National Vulnerability Database (NVD), the vulnerability impacts Roundcube versions before 1.4.14, 1.5.x before 1.5.4, and 1.6.x before 1.6.3. https://lnkd.in/eUjW-P-8

𝐀𝐭𝐭𝐞𝐧𝐭𝐢𝐨𝐧 𝐅𝐨𝐫𝐭𝐢𝐧𝐞𝐭 𝐔𝐬𝐞𝐫𝐬: 𝐂𝐫𝐢𝐭𝐢𝐜𝐚𝐥 𝐕𝐮𝐥𝐧𝐞𝐫𝐚𝐛𝐢𝐥𝐢𝐭𝐲 (𝐂𝐕𝐄-𝟐𝟎𝟐𝟒-𝟐𝟏𝟕𝟔𝟐) 𝐄𝐱𝐩𝐥𝐨𝐢𝐭𝐞𝐝 𝐢𝐧 𝐭𝐡𝐞 𝐖𝐢𝐥𝐝! There's a critical remote code execution (RCE) vulnerability (CVE-2024-21762) impacting Fortinet FortiOS that's actively being exploited by attackers. This means attackers can potentially take control of your systems if you're not patched. 𝐖𝐡𝐚𝐭 𝐭𝐨 𝐃𝐨: 𝟏. 𝐏𝐚𝐭𝐜𝐡 𝐈𝐦𝐦𝐞𝐝𝐢𝐚𝐭𝐞𝐥𝐲: Fortinet has released patches. Apply them as soon as possible to all vulnerable Fortinet FortiOS and FortiProxy devices. 𝟐. 𝐕𝐞𝐫𝐢𝐟𝐲 𝐏𝐚𝐭𝐜𝐡 𝐀𝐩𝐩𝐥𝐢𝐜𝐚𝐭𝐢𝐨𝐧: Double-check that the patches have been successfully installed on your devices. 𝟑. 𝐂𝐨𝐧𝐬𝐢𝐝𝐞𝐫 𝐀𝐝𝐝𝐢𝐭𝐢𝐨𝐧𝐚𝐥 𝐌𝐢𝐭𝐢𝐠𝐚𝐭𝐢𝐨𝐧𝐬: While patching is essential, additional mitigations like segmentation and strong access controls can further reduce the attack surface. 𝐑𝐞𝐬𝐨𝐮𝐫𝐜𝐞𝐬: Fortinet Security Advisory: [Search CVE-2024-21762 Fortinet advisory] CISA Known Exploited Vulnerabilities (KEV) Catalog: https://lnkd.in/gYqXc-29 𝐋𝐞𝐭'𝐬 𝐰𝐨𝐫𝐤 𝐭𝐨𝐠𝐞𝐭𝐡𝐞𝐫 𝐭𝐨 𝐤𝐞𝐞𝐩 𝐨𝐮𝐫 𝐧𝐞𝐭𝐰𝐨𝐫𝐤𝐬 𝐬𝐚𝐟𝐞! #𝐅𝐨𝐫𝐭𝐢𝐧𝐞𝐭 #𝐕𝐮𝐥𝐧𝐞𝐫𝐚𝐛𝐢𝐥𝐢𝐭𝐲 #𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 #𝐑𝐂𝐄 #𝐂𝐕𝐄-𝟐𝟎𝟐𝟒-𝟐𝟏𝟕𝟔𝟐

Cybersecurity and Infrastructure Security Agency #CISA adds 3️⃣ new vulnerabilities to its Known Exploited Vulnerabilities #KEV Catalog, based on evidence of active exploitation. #CVE-2024-21887 Ivanti Connect Secure and Policy Secure Command Injection Vulnerability [#CVSS 3.1 Base score: 9.1 CRITICAL | Date Added: 📅2024-01-10| Due Date:📅2024-01-31 ➡ Δt=3 weeks] #CVE-2023-46805 Ivanti Connect Secure and Policy Secure Authentication Bypass Vulnerability [#CVSS 3.1 Base score: 8.2 HIGH | Date Added: 📅2024-01-10| Due Date:📅2024-01-31 ➡ Δt=3 weeks] ℹ A description for these 2 vulnerabilities has not yet been provided. These #CVE are still in a RESERVED state, but are not yet available in the National Vulnerability Database #NVD. CVSSs according to Ivanti. #CVE-2023-29357 Microsoft #SharePoint Server Privilege Escalation Vulnerability [#CVSS 3.1 Base score: 9.8 CRITICAL | Date Added: 📅2024-01-10| Due Date:📅2024-01-31 ➡ Δt=3 weeks] https://lnkd.in/g8RcNwau https://lnkd.in/gyBdUMQr

Today, CISA released its Vulnerability Disclosure Policy (VDP) Platform 2023 Annual Report, highlighting the service's remarkable success in 2023, its second full year of operation. Throughout 2023, CISA focused on advocating for the increased agency adoption of the VDP Platform, supporting federal civilian executive branch (FCEB) agencies in identifying vulnerabilities in their systems, and engaging the public security researcher community. #cybersecurity

Today, CISA released its Vulnerability Disclosure Policy (VDP) Platform 2023 Annual Report, highlighting the service's remarkable success in 2023, its second full year of operation. Throughout 2023, CISA focused on advocating for the increased agency adoption of the VDP Platform, supporting federal civilian executive branch (FCEB) agencies in identifying vulnerabilities in their systems, and engaging the public security researcher community. #cybersecurity

Today, CISA released its Vulnerability Disclosure Policy (VDP) Platform 2023 Annual Report, highlighting the service's remarkable success in 2023, its second full year of operation. Throughout 2023, CISA focused on advocating for the increased agency adoption of the VDP Platform, supporting federal civilian executive branch (FCEB) agencies in identifying vulnerabilities in their systems, and engaging the public security researcher community. #cybersecurity

We’re highlighting our key findings on VPN security once more. If you missed it the first time, now's your chance to dive in. Learn how to safeguard your enterprise VPN from recent breaches and zero-day vulnerabilities. 📘 Special Report: Securing VPN - Protecting Corporate Data from Cyberattacks Inside you'll find: 🔹 How VPNs work and their benefits for companies 🔹 Common VPN vulnerabilities and real-world breach examples 🔹 Practical strategies for enhancing VPN security 🔹 How Secfense solutions provide robust VPN security Don't miss out on these essential insights: https://lnkd.in/d2kfg2u6

Today, CISA released its Vulnerability Disclosure Policy (VDP) Platform 2023 Annual Report, highlighting the service's remarkable success in 2023, its second full year of operation. Throughout 2023, CISA focused on advocating for the increased agency adoption of the VDP Platform, supporting federal civilian executive branch (FCEB) agencies in identifying vulnerabilities in their systems, and engaging the public security researcher community. #cybersecurity