Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2023-23087PUBLISHED: 2023-02-03An issue was found in MojoJson v1.2.3 allows attackers to execute arbitary code via the destroy function.
CVE-2023-23088PUBLISHED: 2023-02-03Buffer OverFlow Vulnerability in Barenboim json-parser master and v1.1.0 fixed in v1.1.1 allows an attacker to execute arbitrary code via the json_value_parse function.
CVE-2023-0659PUBLISHED: 2023-02-03
A vulnerability was found in BDCOM 1704-WGL 2.0.6314. It has been classified as critical. This affects an unknown part of the file /param.file.tgz of the component Backup File Handler. The manipulation leads to information disclosure. It is possible to initiate the attack remotely. The identifier VD...
CVE-2023-23086PUBLISHED: 2023-02-03Buffer OverFlow Vulnerability in MojoJson v1.2.3 allows an attacker to execute arbitrary code via the SkipString function.
CVE-2021-37519PUBLISHED: 2023-02-03Buffer Overflow vulnerability in authfile.c memcached 1.6.9 allows attackers to cause a denial of service via crafted authenticattion file.
User Rank: Ninja
4/24/2017 | 7:37:31 PM
Ultimately, today's CISO/CSO has to be able to have those "soft skills" of communication.
More to the point, the increasing trend of having CISOs report to boards is part of the acknowledgement that having the CISO report to the CIO represents a conflict of interest in the CIO's office.