Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2023-0512PUBLISHED: 2023-01-30Divide By Zero in GitHub repository vim/vim prior to 9.0.1247.
CVE-2022-23334PUBLISHED: 2023-01-30The Robot application in Ip-label Newtest before v8.5R0 was discovered to use weak signature checks on executed binaries, allowing attackers to have write access and escalate privileges via replacing NEWTESTREMOTEMANAGER.EXE.
CVE-2022-26872PUBLISHED: 2023-01-30AMI Megarac Password reset interception via API
CVE-2022-46087PUBLISHED: 2023-01-30CloudSchool v3.0.1 is vulnerable to Cross Site Scripting (XSS). A normal user can steal session cookies of the admin users through notification received by the admin user.
CVE-2023-0581PUBLISHED: 2023-01-30
The PrivateContent plugin for WordPress is vulnerable to protection mechanism bypass due to the use of client side validation in versions up to, and including, 8.4.3. This is due to the plugin checking if an IP had been blocklist via client-side scripts rather than server-side. This makes it possibl...
User Rank: Ninja
8/31/2016 | 11:42:40 AM
I think this and the prestige are the biggest hits when it comes to downtime. If your cistimers need your support to provide service to their customers, no customer would be on your site if not up 100% of the time any more.