Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-2339PUBLISHED: 2022-07-07With this SSRF vulnerability, an attacker can reach internal addresses to make a request as the server and read it's contents. This attack can lead to leak of sensitive information.
CVE-2022-20752PUBLISHED: 2022-07-06
A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Cisco Unity Connection could allow an unauthenticated, remote attacker to perform a timing attack. This vulnerability is due to insufficient pro...
CVE-2022-20768PUBLISHED: 2022-07-06
A vulnerability in the logging component of Cisco TelePresence Collaboration Endpoint (CE) and RoomOS Software could allow an authenticated, remote attacker to view sensitive information in clear text on an affected system. This vulnerability is due to the storage of certain unencrypted credentials....
CVE-2022-20791PUBLISHED: 2022-07-06
A vulnerability in the database user privileges of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), and Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P) could allow an auth...
CVE-2022-20800PUBLISHED: 2022-07-06
A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P), and Cisco Unity ...
User Rank: Strategist
5/8/2014 | 9:33:04 PM
Bob, your points about entrepreneurs needing to find the right investors is spot on, and I heard it from all of the startup companies I spoke to. While that advice was important -- we do have some entrepreneurs among our readership -- the thing I found fascinating is how much interaction there is between venture capitalists and security executives (our primary readers here at Dark Reading). I was frankly amazed at how well informed the top security VCs are -- not just about emerging technologies, but about the *problems* that enterprises face. Clearly, you do a lot of talking with security professionals.
I am wondering, and maybe you could comment directly -- how does an enterprise security pro get in touch with smart VC experts like yourself? Can they just call you up? Do you have reports that they can read? How can they get a dialog going with VCs who might be able to give them tips on the next wave of security technology?