Fortinet
- Forbes CISO Research: Managing Risks with Limited Resources 20 août 2019
Forbes Insights and Fortinet conducted research around the way today’s CISOs are managing escalating threats with limited resources. The key findings provide an inside look at a day in the life of a modern-day CISO. - Creating a Differentiated SD-WAN Service as a Platform for Revenue Generating Value Added Services (VAS) 19 août 2019
Find out how you can create a differentiated SD-WAN service as a platform for revenue generating Value Added Services (VAS). - Secure SD-WAN Needs to Support Your Cloud On-Ramp Strategy 19 août 2019
Find out how a Secure SD-WAN solution, built on a security framework already designed to seamlessly span multiple environments, can help support your cloud on-ramp strategy. - What Makes Local Government an Enticing Cyber Target? 19 août 2019
Recent and well publicized cyber attacks are damaging, costly, and have the potential to deprive communities of essential services. Find out more about the security challenges facing local organizations. - Learn How Fortinet is Transforming Security for Virtual and Cloud Environments at VMworld 2019 16 août 2019
Meet the Fortinet team during VMworld 2019 at booth #1745 on the Expo Floor, check out our line of VMware-ready products, and watch our live security demos. - Fake Indian Income Tax Calculator Delivers xRAT Variant 16 août 2019
FortiGuard Labs recently discovered an Excel file claiming to provide an income tax calculator that purports to be from India’s Income Tax Department, but instead contains a variant of the xRAT trojan. Learn more. - FortiGuard Labs Security Researcher Discovers Multiple Critical Vulnerabilities in Adobe Photoshop 16 août 2019
Learn more about the Adobe Photoshop zero-day vulnerabilities discovered by our FortiGuard Labs researchers, and the security patches to fix those as part of their Patch Tuesday Initiative. - Fortinet Announces the FortiDDoS E-Series with Two New Models – FortiDDoS 1500E and 2000E 15 août 2019
Fortinet has announced the FortiDDoS E-Series. Learn more about how the two new models deliver the industry’s highest DDoS attack mitigation performance to ensure data centers can scale their defenses while meeting the evolving needs of their business. - The Bi-Directional Cloud Highway: Critical Insights into Today’s Cloud Infrastructures 13 août 2019
Learn more about the critical cloud security insights revealed in a new survey from IHS in partnership with Fortinet. - Ensuring Cybersecurity at Big Events This Summer 12 août 2019
Learn more about how IT teams can ensure cybersecurity at major event venues this summer while thousands of mobile devices connect to the network.
Aruba
- Aruba Impact for CPU Side-Channel Attacks 25 juin 2019
- WPA3 Multiple Vulnerabilities 16 avril 2019
On April 10, 2019 a research paper by Mathy Vanhoef and Eyal Ronen was released documenting a series of potential vulnerabilities in implementations of WPA3 and EAP-pwd (RFC 5931). Details on EAP-pwd vulnerabilities have not yet been released. This advisory covers only WPA3 vulnerabilities.
- Aruba Instant Multiple Vulnerabilities 27 février 2019
Aruba has released updates to Aruba Instant (IAP) that address multiple serious vulnerabilities. The most significant vulnerability is rated CRITICAL with a CVSS score of 9.8.
- ClearPass Policy Manager Multiple Vulnerabilities 7 novembre 2018
Aruba has released an update to ClearPass Policy Manager that addresses multiple security vulnerabilities.
- Aruba BLE Radio Firmware Vulnerability 18 octobre 2018
A vulnerability exists in the firmware of embedded BLE radios that are part of all Aruba AP-3xx series access points. An attacker who is able to exploit the vulnerability could install new, potentially malicious firmware into the AP’s BLE radio and could then gain access to the AP’s console port. Aruba products are NOT affected by a similar vulnerability being tracked as CVE-2018-16986 … - Apache Struts Vulnerability in ClearPass Policy Manager 24 août 2018
The Apache Struts group announced Struts version 2.3.35 on August 22, 2018.
Included in this update is a fix for one security vulnerability. Aruba ClearPass includes Apache Struts 2.3.34, but in a non-vulnerable configuration. - Linux Kernel Vulnerabilities in ClearPass and AirWave 24 août 2018
Two Linux kernel vulnerabilities, known as “SegmentSmack” and “FragmentSmack”, have been publicly disclosed. The Linux kernel used by Aruba ClearPass Policy Manager and Aruba AirWave is affected. Other Aruba products are not affected.
- Return Of Bleichenbacher’s Oracle Threat (ROBOT) 28 mars 2018
The cryptography library used by Aruba Instant provides a weak Bleichenbacher oracle when any TLS cipher suite using RSA key exchange is negotiated. An attacker may be able to recover private keys for X.509 certificates. This vulnerability is
referred to as “ROBOT.” - ClearPass Policy Manager Multiple Vulnerabilities 21 mars 2018
Aruba has released an update to ClearPass Policy Manager that addresses four security vulnerabilities.
Cisco
- Cisco IOS XR Software Intermediate System-to-Intermediate System Denial of Service Vulnerability 20 août 2019
A vulnerability in the implementation of the Intermediate System–to–Intermediate System (IS–IS) routing protocol functionality in Cisco IOS XR Software could allow an unauthenticated attacker who is in the same IS–IS area to cause a denial of service (DoS) condition. The vulnerability is due to incorrect processing of crafted IS–IS link-state protocol data u … - Cisco IOS XR Software Intermediate System-to-Intermediate System Denial of Service Vulnerability 20 août 2019
A vulnerability in the implementation of Intermediate System–to–Intermediate System (IS–IS) routing protocol functionality in Cisco IOS XR Software could allow an unauthenticated attacker who is in the same IS-IS area to cause a denial of service (DoS) condition. The vulnerability is due to incorrect processing of IS–IS link-state protocol data units (PDUs). An attacke … - Cisco Firepower Threat Defense Software File Policy Bypass Vulnerability 20 août 2019
A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) protocol inspection engine of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass the configured file policies on an affected system. The vulnerability is due to errors when handling specific SSL/TLS messages. An attacker could exploit this vulnerability by send … - Cisco Jabber for Windows DLL Preloading Vulnerability 19 août 2019
A vulnerability in the loading mechanism of specific dynamic link libraries in Cisco Jabber for Windows could allow an authenticated, local attacker to perform a DLL preloading attack. To exploit this vulnerability, the attacker would need to have valid credentials on the Windows system. The vulnerability is due to insufficient validation of the resources loaded by the application at run time. An … - Cisco Nexus 9000 Series ACI Mode Switch Software Link Layer Discovery Protocol Buffer Overflow Vulnerability 17 août 2019
A vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software could allow an adjacent, unauthenticated attacker to cause a denial of service (DoS) condition or execute arbitrary code with root privileges. The vulnerability is due to improper input validation of certain type, length, value (TLV) fields … - Cisco Firepower Threat Defense Software HTTP Filtering Bypass Vulnerability 16 août 2019
A vulnerability in the HTTP traffic filtering component of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filtering protections. The vulnerability is due to improper handling of HTTP requests, including those communicated over a secure HTTPS connection, that … - Cisco Firepower Threat Defense Software Stream Reassembly Bypass Vulnerability 16 août 2019
A vulnerability in the stream reassembly component of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filtering protections. The vulnerability is due to improper reassembly of traffic streams. An attacker could exploit this vulnerability by sending … - Cisco Firepower Threat Defense Software NULL Character Obfuscation Detection Bypass Vulnerability 16 août 2019
A vulnerability in the normalization functionality of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filtering protections. The vulnerability is due to insufficient normalization of a text-based payload. An attacker could exploit this vulnerability by sendin … - Cisco Firepower Threat Defense Software Nonstandard Protocol Detection Bypass Vulnerability 16 août 2019
A vulnerability in the protocol detection component of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filtering protections. The vulnerability is due to improper detection of the initial use of a protocol on a nonstandard port. An attacker could exploit this … - Key Negotiation of Bluetooth Vulnerability 14 août 2019
A weakness in the Bluetooth Basic Rate/Enhanced Data Rate (BR/EDR) protocol core specification exposes a vulnerability that could allow for an unauthenticated, adjacent attacker to perform a man-in-the-middle attack on an encrypted Bluetooth connection. The attack must be performed during negotiation or renegotiation of a paired device connection; existing sessions cannot be attacked. The issue co …
Google Online Security Blog