Lookout Acquires SASE Cloud Provider CipherCloud

Enterprise Vulnerabilities
From DHS/US-CERT’s National Vulnerability Database CVE-2021-27891
PUBLISHED: 2021-03-15

SSH Tectia Client and Server before 6.4.19 on Windows have weak key generation. ConnectSecure on Windows is affected.

CVE-2021-27892
PUBLISHED: 2021-03-15

SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation. ConnectSecure on Windows is affected.

CVE-2021-27893
PUBLISHED: 2021-03-15

SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation in nonstandard conditions. ConnectSecure on Windows is affected.

CVE-2021-26923
PUBLISHED: 2021-03-15

An issue was discovered in Argo CD before 1.8.4. Accessing the endpoint /api/version leaks internal information for the system, and this endpoint is not protected with authentication.

CVE-2021-26924
PUBLISHED: 2021-03-15

An issue was discovered in Argo CD before 1.8.4. Browser XSS protection is not activated due to the missing XSS protection header.

Source

Next Post

RTM and Quoter Ransomware - A Deadly Combo

Mon Mar 15 , 2021
The RTM banking trojan is back with an arsenal of tricks. A new ransomware family—Quoter—has joined the party too.  What’s going on? The new money-making campaign packs a triple threat attack and has hit at least 10 Russian finance and transport organizations. The trojan is being propagated via phishing emails, […]