+ UPADTE: Cisco Adaptive Security Appliance Remote Code Execution and Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180129-asa1
+ Cisco RV132W and RV134W Remote Code Execution and Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-rv13x
CVE-2018-0125
+ Cisco Virtualized Packet Core-Distributed Instance Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-vpcdi
CVE-2018-0117
+ Cisco UCS Central Arbitrary Command Execution Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-ucsc
CVE-2018-0113
+ Cisco Policy Suite RADIUS Authentication Bypass Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-cps
CVE-2018-0116
+ UPDATE: CPU Side-Channel Information Disclosure Vulnerabilities
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180104-cpusidechannel
+ Cisco Unified Communications Manager Information Disclosure Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-ucm1
CVE-2018-0198
+ Cisco Unified Communications Manager Information Disclosure Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-ucm
CVE-2018-0135
+ Cisco Spark Information Disclosure Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-spark
CVE-2018-0119
+ Cisco RV132W and RV134W Wireless VPN Routers Unauthenticated Information Disclosure Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-rv13x_2
CVE-2018-0127
+ Cisco IOS XR Software Routing and Forwarding Inconsistency Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-iosxr
CVE-2018-0132
+ Cisco IOS and IOS XE Software Diagnostic Shell Path Traversal Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-ios
CVE-2018-0123
+ Cisco Firepower System Software BitTorrent File Policy Bypass Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-fss
CVE-2018-0138
+ Cisco Email Security Appliance and Cisco Content Security Management Appliance Spam Quarantine Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-esacsm
CVE-2018-0140
+ Cisco Data Center Analytics Framework Reflected Cross-Site Scripting Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-dcaf1
CVE-2018-0129
+ Cisco Data Center Analytics Framework Stored Cross-Site Scripting Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-dcaf
CVE-2018-0128
+ Cisco Unified Communications Manager SQL Injection Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-cucm
CVE-2018-0120
+ Cisco Policy Suite RADIUS Authentication Information Disclosure Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-cps1
CVE-2018-0134
+ Cisco Prime Network TCP Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-cpn
CVE-2018-0137
+ Cisco StarOS for Cisco ASR 5000 Series Aggregation Services Routers File Overwrite Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-asr
CVE-2018-0122
+ PostgreSQL 10.2, 9.6.7, 9.5.11, 9.4.16, and 9.3.21 released
https://www.postgresql.org/docs/10/static/release-10-2.html
https://www.postgresql.org/docs/9.6/static/release-9-6-7.html
https://www.postgresql.org/docs/9.5/static/release-9-5-11.html
https://www.postgresql.org/docs/9.4/static/release-9-4-16.html
https://www.postgresql.org/docs/9.3/static/release-9-3-21.html
ホワイトペーパー「日本におけるプライバシーに関する考慮事項に照らした AWSの利用」の公開
https://aws.amazon.com/jp/blogs/news/using_aws_in_the_context_of_japanese_privacy_considerations/
ポート443でTLS認証を使ったMQTT: なぜ便利で、どのように動くのか
https://aws.amazon.com/jp/blogs/news/mqtt-with-tls-client-authentication-on-port-443-why-it-is-useful-and-how-it-works/
JVN#15462187 MP Form Mail CGI eCommerce 版における OS コマンドインジェクションの脆弱性
http://jvn.jp/jp/JVN15462187/index.html
ニュース解説
サーバー証明書トップシェアなのに無名、新生デジサートの苦悩
http://itpro.nikkeibp.co.jp/atcl/column/14/346926/020801304/?ST=security&itp_list_theme
0 件のコメント:
コメントを投稿