Resources

Learn about CYREBRO’s platform, technology, and capabilities, read about industry insights, watch webinars with cyber experts, and much more in the resources below.

  • HP has Released Firmware Updates that Affect a Wide Variety of Products
    Threat Intelligence

    HP has Released Firmware Updates that Affect a Wide Variety of Products

    November 9, 2022 HP has Released Firmware Updates that Affect a Wide Variety of Products As part of Patch Tuesday, HP released several firmware and software updates, patching vulnerabilities that may lead to Arbitrary Code Execution, escalation of privilege, denial of service (DoS), and information disclosure. Affected Products HP PC BIOS AMD Graphics Driver Intel®…

  • Citrix patches 3 critical authentication bypass vulnerabilities that affects Citrix ADC and Citrix Gateway
    Threat Intelligence

    Citrix patches 3 critical authentication bypass vulnerabilities that affects Citrix ADC and Citrix Gateway

    November 9, 2022 Citrix patches 3 critical authentication bypass vulnerabilities that affects Citrix ADC and Citrix Gateway Citrix has released security updates for Citrix ADC and Citrix Gateway to address a critical authentication bypass vulnerabilities. The 3 vulnerabilities, in some configurations, can allow attackers to obtain unauthorized access to the device, perform remote desktop takeover,…

  • VMware Patches 3 Critical Auth-Bypass Vulnerabilities in Remote Access Tool
    Threat Intelligence

    VMware Patches 3 Critical Auth-Bypass Vulnerabilities in Remote Access Tool

    November 9, 2022 VMware Patches 3 Critical Auth-Bypass Vulnerabilities in Remote Access Tool VMware has released security updates to address three critical severity vulnerabilities in the Workspace ONE Assist solution, which allow remote attackers to bypass authentication and gain administrative privileges. The Vulnerabilities  CVE-2022-31685 (CVSS 3.1: .9.8, Critical) -A uthentication Bypass vulnerability, malicious actor with…

  • Google Patches 6 RCEs in Chrome
    Threat Intelligence

    Google Patches 6 RCEs in Chrome

    November 9, 2022 Google Patches 6 RCEs in Chrome Google has updated Chrome, patching 6 remote code execution vulnerabilities and 10 vulnerabilities overall. The updated version is 107.0.5304.106/107 for Windows, and 107.0.5304.110 for Mac and Linux. The RCE Vulnerabilities CVE-2022-3885 (High Severity) – Use after free in V8. CVE-2022-3886 (High Severity) – Use after free in…

  • Microsoft Patches 6 0-Days & 16 RCE Vulnerabilities
    Threat Intelligence

    Microsoft Patches 6 0-Days & 16 RCE Vulnerabilities

    November 9, 2022 Microsoft Patches 6 0-Days & 16 RCE Vulnerabilities As part of November’s monthly security rollup updates, Microsoft has patched 6 0-Day and 16 Remote Code Execution vulnerabilities. Overall, Microsoft has patched 68 vulnerabilities across Windows, Windows Server, Exchange, Hyper-V, Azure, Visual Studio, Office and others. The Zero-Day Vulnerabilities CVE-2022-41128 (CVSS 3.1: 8.8, High Severity)…

  • SAMBA patches vulnerabilities that allow remote code execution and data disclosure
    Threat Intelligence

    SAMBA patches vulnerabilities that allow remote code execution and data disclosure

    October 27, 2022 SAMBA patches vulnerabilities that allow remote code execution and data disclosure SAMBA has released a patch and security advisory to address two vulnerabilities in all versions of Samba prior to 4.17.0 that might allow attackers to perform remote code execution  and get access to all of the server’s file systems running vulnerable…

  • HP has Released Firmware Updates that Affect a Wide Variety of Products
    Threat Intelligence

    HP has Released Firmware Updates that Affect a Wide Variety of Products

    November 9, 2022 HP has Released Firmware Updates that Affect a Wide Variety of Products As part of Patch Tuesday, HP released several firmware and software updates, patching vulnerabilities that may lead to Arbitrary Code Execution, escalation of privilege, denial of service (DoS), and information disclosure. Affected Products HP PC BIOS AMD Graphics Driver Intel®…

  • Citrix patches 3 critical authentication bypass vulnerabilities that affects Citrix ADC and Citrix Gateway
    Threat Intelligence

    Citrix patches 3 critical authentication bypass vulnerabilities that affects Citrix ADC and Citrix Gateway

    November 9, 2022 Citrix patches 3 critical authentication bypass vulnerabilities that affects Citrix ADC and Citrix Gateway Citrix has released security updates for Citrix ADC and Citrix Gateway to address a critical authentication bypass vulnerabilities. The 3 vulnerabilities, in some configurations, can allow attackers to obtain unauthorized access to the device, perform remote desktop takeover,…

  • VMware Patches 3 Critical Auth-Bypass Vulnerabilities in Remote Access Tool
    Threat Intelligence

    VMware Patches 3 Critical Auth-Bypass Vulnerabilities in Remote Access Tool

    November 9, 2022 VMware Patches 3 Critical Auth-Bypass Vulnerabilities in Remote Access Tool VMware has released security updates to address three critical severity vulnerabilities in the Workspace ONE Assist solution, which allow remote attackers to bypass authentication and gain administrative privileges. The Vulnerabilities  CVE-2022-31685 (CVSS 3.1: .9.8, Critical) -A uthentication Bypass vulnerability, malicious actor with…

  • Google Patches 6 RCEs in Chrome
    Threat Intelligence

    Google Patches 6 RCEs in Chrome

    November 9, 2022 Google Patches 6 RCEs in Chrome Google has updated Chrome, patching 6 remote code execution vulnerabilities and 10 vulnerabilities overall. The updated version is 107.0.5304.106/107 for Windows, and 107.0.5304.110 for Mac and Linux. The RCE Vulnerabilities CVE-2022-3885 (High Severity) – Use after free in V8. CVE-2022-3886 (High Severity) – Use after free in…

  • Microsoft Patches 6 0-Days & 16 RCE Vulnerabilities
    Threat Intelligence

    Microsoft Patches 6 0-Days & 16 RCE Vulnerabilities

    November 9, 2022 Microsoft Patches 6 0-Days & 16 RCE Vulnerabilities As part of November’s monthly security rollup updates, Microsoft has patched 6 0-Day and 16 Remote Code Execution vulnerabilities. Overall, Microsoft has patched 68 vulnerabilities across Windows, Windows Server, Exchange, Hyper-V, Azure, Visual Studio, Office and others. The Zero-Day Vulnerabilities CVE-2022-41128 (CVSS 3.1: 8.8, High Severity)…

  • SAMBA patches vulnerabilities that allow remote code execution and data disclosure
    Threat Intelligence

    SAMBA patches vulnerabilities that allow remote code execution and data disclosure

    October 27, 2022 SAMBA patches vulnerabilities that allow remote code execution and data disclosure SAMBA has released a patch and security advisory to address two vulnerabilities in all versions of Samba prior to 4.17.0 that might allow attackers to perform remote code execution  and get access to all of the server’s file systems running vulnerable…