CVE-2025-0282: Ivanti Connect Secure のゼロデイ脆弱性の悪用が確認される
Ivanti disclosed two vulnerabilities in its Connect Secure, Policy Secure and Neurons for ZTA gateway devices, including one flaw that was exploited in the wild as a zero-day.
2024 年マイクロソフト月例セキュリティ更新プログラム、一年の振り返り
Microsoft addressed over 1000 CVEs as part of Patch Tuesday releases in 2024, including 22 zero-day vulnerabilities.
マイクロソフト 2024 年 12 月月例セキュリティ更新プログラム、70 件の CVE を修正 (CVE-2024-49138)
Microsoft addresses 70 CVEs with 16 rated critical, including one zero-day that was exploited in the wild.
Volt Typhoon: 米国重要インフラが国家支援を受ける脅威アクターにより標的とされる
Volt Typhoon, a state-sponsored actor linked to the People’s Republic of China, has consistently targeted U.S. critical infrastructure with the intent to maintain persistent access. Tenable Research examines the tactics, techniques and procedures of this threat actor.
CVE-2024-0012、CVE-2024-9474: Palo Alto PAN-OS のゼロデイ脆弱性の悪用が確認される
Palo Alto Networks confirmed two zero-day vulnerabilities were exploited as part of attacks in the wild against PAN-OS devices, with one being attributed to Operation Lunar Peek.
マイクロソフト 2024 年 11 月月例セキュリティ更新プログラム、87 件の CVE (CVE-2024-43451、CVE-2024-49039) を修正
Microsoft addresses 87 CVEs and one advisory (ADV240001) in its November 2024 Patch Tuesday release, with four critical vulnerabilities and four zero-day vulnerabilities, including two that were exploited in the wild.
CVE-2024-47575: FortiManager および FortiManager Cloud における FortiJump ゼロデイ脆弱性に関するよくある質問
Frequently asked questions about a zero-day vulnerability in Fortinet’s FortiManager that has reportedly been exploited in the wild.
MITRE CVE プログラム 25 周年: Tenable セキュリティ レスポンス チームが重要な 25 件の脆弱性を厳選
Twenty five years after the launch of CVE, the Tenable Security Response Team has handpicked 25 vulnerabilities that stand out for their significance.
Oracle 2024 年 10 月のクリティカルパッチアップデートで 198 件の CVE に対処
Oracle addresses 198 CVEs in its fourth quarterly update of 2024 with 334 patches, including 35 critical updates.
マイクロソフト 2024 年 10 月月例セキュリティ更新プログラム、117 件の CVE に対応 (CVE-2024-43572、CVE-2024-43573)
Microsoft addresses 117 CVEs with three rated as critical and four zero-day vulnerabilities, two of which were exploited in the wild.
CVE-2024-47076, CVE-2024-47175, CVE-2024-47176, CVE-2024-47177: Common UNIX Printing System (CUPS) の脆弱性に関するよくある質問
Frequently asked questions about multiple vulnerabilities in the Common UNIX Printing System (CUPS) that were disclosed as zero-days on September 26.
マイクロソフト、2024 年 9 月の月例セキュリティ更新プログラムで 79 件の CVE に対応 (CVE-2024-43491)
Microsoft addresses 79 CVEs with seven critical vulnerabilities and four zero-day vulnerabilities, including three that were exploited in the wild.