The new recruits are processing companies’ requests seeking the approval of “alternative measures” to comply with a directive the agency issued in response to the May 2021 ransomware attack on…

Federal researchers are one step closer to protecting U.S. data from quantum computing decryption capabilities.

A much-debated aspect of this government IT solutions procurement appears to have been changed.

An Access Control vulnerability exists in Nacos 2.0.3 in the access prompt page; enter username and password, click on login to capture packets and then change the returned package, which…

ASUS RT-A88U 3.0.0.4.386_45898 is vulnerable to Cross Site Scripting (XSS). The ASUS router admin panel does not sanitize the WiFI logs correctly, if an attacker was able to change the…

Taocms 3.0.2 was discovered to contain a blind SQL injection vulnerability via the function Edit category.

Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.

Login Bruteforce attacks

Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don’t…

A stored Cross-site Scripting (XSS) vulnerability was identified in the Data Import functionality of OpenCTI through 5.2.4. An attacker can abuse the vulnerability to upload a malicious file that will…