top of page
.png){kind=logo}
Sep 24, 20243 min read
Comprehensive Analysis of CVE-2023-2163: Vulnerability Details, Impact, and Mitigation Strategies
Executive Summary CVE-2023-2163 is a critical vulnerability identified in the Linux Kernel, specifically affecting versions 5.4 and...
Sep 24, 20243 min read
CVE-2024-2001: Detailed Analysis and Mitigation Strategies for the Latest Security Vulnerability
Executive Summary CVE-2024-2001 is a critical Cross-Site Scripting (XSS) vulnerability identified in Cockpit CMS , specifically in...
Sep 24, 20243 min read
CVE-2024-2389: Understanding the Impact and Mitigation Strategies
Executive Summary CVE-2024-2389 is a critical operating system command injection vulnerability identified in Flowmon versions prior to...
Sep 24, 20244 min read
CVE-2024-3801: In-Depth Analysis and Mitigation Strategies for Enhanced Cybersecurity
Executive Summary CVE-2024-3801 is a recently identified vulnerability in the S@M CMS (Concept Intermedia) software, which allows for...
Sep 24, 20243 min read
CVE-2024-3687: A Comprehensive Analysis of the Latest Security Vulnerability
Executive Summary CVE-2024-3687 is a recently identified vulnerability in the bihell Dice 3.1.0 application, specifically within its...
Sep 19, 20246 min read
What can we learn from the update of ISO27001 in 2022 on cyber security (2024)
Background In October 2022, the International Organization for Standardization (ISO) and the International Electrotechnical Commission...
Sep 17, 20243 min read
Critical Unauthenticated RCE Vulnerability in Veeam Backup & Replication (CVE-2024-40711) Under Active Exploitation
CVE-2024-40711 is a critical vulnerability discovered in Veeam Backup & Replication software, allowing for unauthenticated remote code...
Sep 9, 20243 min read
CVE-2024-37285: Critical Threat to Elastic Kibana Users
CVE-2024-37285 represents a 9.8/10 (Critical) on the CVSS (Common Vulnerability Scoring System) scale and poses a significant risk to...
Sep 7, 20243 min read
CVE-2024-37084: Critical Vulnerability in Spring Cloud Data Flow – Patch Now
CVE-2024-37084 is a critical security vulnerability affecting Spring Cloud Data Flow versions prior to 2.11.4. This vulnerability...
Sep 7, 20243 min read
Windows Wi-Fi Vulnerability CVE-2024-30078: Mitigation and Patch Guide
CVE-2024-30078 is a critical vulnerability in the Windows Wi-Fi driver that allows remote code execution (RCE). With a CVSS score of 8.8...
Sep 1, 20243 min read
CVE-2021-40444: A Closer Look at the Office Document Exploit
CVE-2021-40444 is a critical remote code execution (RCE) vulnerability affecting Microsoft Windows via the MSHTML (Trident) engine, which...
Sep 1, 20243 min read
How to Protect Against CVE-2016-8020: A High-Severity Linux Code Injection Flaw
CVE-2016-8020 is a high-severity vulnerability affecting Intel Security VirusScan Enterprise for Linux (VSEL) version 2.0.3 and...
Aug 27, 20243 min read
Rescana Announces Strategic Collaboration with Cybersecurity Leader Wiz and Aspiration Japan to Revolutionize Cloud Security in Japan
Tokyo, Japan – August 27, 2024 – Rescana, a pioneering AI Continuous Threat Exposure Management (CTEM) company announced today a...
Aug 15, 20244 min read
Windows TCP/IP Vulnerability CVE-2024-38063: What You Need to Know
CVE-2024-38063 is a critical vulnerability within the Windows TCP/IP stack's IPv6 subsystem, enabling unauthenticated remote attackers...
Aug 7, 20247 min read
CTEM 101: Understanding Continuous Threat Exposure Management
Understanding Continuous Threat Exposure Management (CTEM) In the ever-evolving digital landscape, safeguarding your organization from...
Aug 1, 20242 min read
CVE-2024-26169: Active Exploitation of Windows Elevation of Privilege Flaw
Executive Summary CVE-2024-26169, an Exploitation of Windows Elevation of Privilege Flaw in the Windows Error Reporting (WER) Service,...
Aug 1, 20243 min read
CVE-2024-32896: Severe Privilege Escalation Flaw in Android Pixel Devices
Executive Summary CVE-2024-32896 is a recently identified critical vulnerability affecting Android Pixel devices across multiple models...
Jul 31, 20243 min read
Critical ServiceNow vulnerabilities
Executive Summary CISA Added Three Known Exploited Vulnerabilities to Catalog of critical vulnerabilities in the ServiceNow platform,...
Jul 31, 20243 min read
CVE-2024-4577 - PHP-CGI OS Command Injection Vulnerability
Executive Summary CVE-2024-4577 is a critical vulnerability affecting PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, and 8.3.*...
May 19, 20244 min read
Embracing the Digital Supply Chain
The most significant challenges posed by the digital supply chain is the exponential growth of shadow IT.
bottom of page