Vulnerabilities / Threats

10/20/2016
09:00 AM
Sean Martin
Sean Martin
Slideshows
Connect Directly
LinkedIn
RSS
E-Mail
50%
50%

9 Sources For Tracking New Vulnerabilities

Keeping up with the latest vulnerabilities -- especially in the context of the latest threats -- can be a real challenge.
Previous
1 of 10
Next

Keeping up with the latest vulnerabilities -- especially in the context of the latest threats -- can be a real challenge. Real-time analysis and proactive response to these new threats is only possible using real-time feeds of the latest and greatest vulnerability data.

But where can you get this data? If you’re relying on a vendor to provide this service, where should they be getting this data?

In no particular order, here are nine key vulnerability data sources for your consideration.

 

 

Sean Martin is an information security veteran of nearly 25 years and a four-term CISSP with articles published globally covering security management, cloud computing, enterprise mobility, governance, risk, and compliance—with a focus on specialized industries such as ... View Full Bio

Previous
1 of 10
Next
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Oasis J R
50%
50%
Oasis J R,
User Rank: Apprentice
1/2/2019 | 10:35:55 AM
Security Tracker Closes it's doors in 2018
Great read thank you for it. On the 8th slide you have Security Tracker. I used this source a great deal. They have ceased on Tracking and Notifying on vulnerabilities as of the end of 2018. Just an FYI. This was their statement on the matter.  

 

"SecurityTracker - Dec 31 2018

https://www.securitytracker.com

 In November 2018, SecurityTracker discontinued delivery of our free SecurityTracker alerts. We have enjoyed providing the community with nearly 18 years of continued service.

 SecurityTracker public archives are available on our web site from April 2001 - November 2018."
SeanM902
50%
50%
SeanM902,
User Rank: Apprentice
10/31/2016 | 4:50:29 PM
Re: One more source
Thanks for sharing isox!
isox
100%
0%
isox,
User Rank: Apprentice
10/25/2016 | 3:50:17 AM
One more source
You forgot about https://vulners.com database.
jack124
100%
0%
jack124,
User Rank: Apprentice
10/21/2016 | 2:39:56 AM
free crack softwares
NICE BLOG
Julian Assange Arrested in London
Dark Reading Staff 4/11/2019
8 'SOC-as-a-Service' Offerings
Steve Zurier, Freelance Writer,  4/12/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
5 Emerging Cyber Threats to Watch for in 2019
Online attackers are constantly developing new, innovative ways to break into the enterprise. This Dark Reading Tech Digest gives an in-depth look at five emerging attack trends and exploits your security team should look out for, along with helpful recommendations on how you can prevent your organization from falling victim.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-1840
PUBLISHED: 2019-04-18
A vulnerability in the DHCPv6 input packet processor of Cisco Prime Network Registrar could allow an unauthenticated, remote attacker to restart the server and cause a denial of service (DoS) condition on the affected system. The vulnerability is due to incomplete user-supplied input validation when...
CVE-2019-1841
PUBLISHED: 2019-04-18
A vulnerability in the Software Image Management feature of Cisco DNA Center could allow an authenticated, remote attacker to access to internal services without additional authentication. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vuln...
CVE-2019-1826
PUBLISHED: 2019-04-18
A vulnerability in the quality of service (QoS) feature of Cisco Aironet Series Access Points (APs) could allow an authenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper input validation on QoS fields within Wi-Fi fra...
CVE-2019-1829
PUBLISHED: 2019-04-18
A vulnerability in the CLI of Cisco Aironet Series Access Points (APs) could allow an authenticated, local attacker to gain access to the underlying Linux operating system (OS) without the proper authentication. The attacker would need valid administrator device credentials. The vulnerability is due...
CVE-2019-1830
PUBLISHED: 2019-04-18
A vulnerability in Locally Significant Certificate (LSC) management for the Cisco Wireless LAN Controller (WLC) could allow an authenticated, remote attacker to cause the device to unexpectedly restart, which causes a denial of service (DoS) condition. The attacker would need to have valid administr...