Content by RyanSepe - Dark Reading

Network Computing Dark Reading

Advertise

About Us

Member Since: March 27, 2014

Ninja

Posts: 1201

Content by RyanSepe
Saved by RyanSepe
Profile for RyanSepe

posted in May 2015

View Content By Month

22 items

Comment: Re: Board - RyanSepe - 5/31/2015

Comment: Re: I died a little inside... - RyanSepe - 5/31/2015

Comment: Re: Keys to the Kingdom - RyanSepe - 5/31/2015

Comment: Re: I died a little inside... - RyanSepe - 5/29/2015

Comment: Re: Is $4 Billion enough? - RyanSepe - 5/29/2015

Comment: Keys to the Kingdom - RyanSepe - 5/29/2015

Comment: Organized Crime - RyanSepe - 5/27/2015

Comment: The Fault is in the Questioner not the Questioned - RyanSepe - 5/26/2015

Comment: Re: "A strange game. The only winning move is not to play." - RyanSepe - 5/26/2015

Comment: Re: 1,500 Phish a Month - RyanSepe - 5/14/2015

Comment: The Profit - RyanSepe - 5/13/2015

Comment: Professional Stigmas - RyanSepe - 5/12/2015

Comment: Opposing Viewpoints - RyanSepe - 5/12/2015

Comment: University CISO - RyanSepe - 5/11/2015

Comment: Re: It's About Time - RyanSepe - 5/8/2015

Comment: Re: User Awareness Responsble? - RyanSepe - 5/7/2015

Comment: First Check - RyanSepe - 5/7/2015

Comment: User Awareness Responsble? - RyanSepe - 5/7/2015

Comment: Current Rapid7 Functionalities - RyanSepe - 5/5/2015

Comment: Re: An Open Book - RyanSepe - 5/4/2015

View Content By Month

Hot Topics

Editors' Choice

COVID-19: Latest Security News & Commentary

Dark Reading Staff 4/7/2020

Privacy & Digital-Rights Experts Worry Contact-Tracing Apps Lack Limits

Robert Lemos, Contributing Writer, 4/7/2020

Microsoft Alerts Healthcare to Human-Operated Ransomware

Dark Reading Staff 4/1/2020

Webinars

Fighting Cybercrime in a Pandemic Threat Landscape

How to Effectively Analyze Security Data

5 Steps to Integrate SAST into the DevSecOps Pipeline

Webinar Archives

White Papers

NERC Updates May Force Utility Companies into Better Cybersecurity

eSentire Annual Threat Intelligence Report: 2019 Perspectives and 2020 Predictions

One Phish, Two Phish, Three Phish, Fraud Phish

Increase Cyber Defense Effectiveness through Simulation-Based On-Demand Learning

Global Threats: A Combat Guide for Rising Cyber Attacks

More White Papers

Video

All Videos

Cartoon Contest

Write a Caption, Win a Starbucks Card! Click Here

Latest Comment: Hello...Nurse...I've placed a mask on him but he refuses to wear gloves...now what?

Cartoon Archive

Current Issue

6 Emerging Cyber Threats That Enterprises Face in 2020

This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

State of Cybersecurity Incident Response

Data breaches and regulations have forced organizations to pay closer attention to the security incident response function. However, security leaders may be overestimating their ability to detect and respond to security incidents. Read this report to find out more.

Download Now!

How Enterprises Are Developing and Maintaining Secure Applications

0 comments

How Enterprises are Attacking the Cybersecurity Problem

0 comments

How Data Breaches affect the Enterprise

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2019-15789
PUBLISHED: 2020-04-08

Privilege escalation vulnerability in MicroK8s allows a low privilege user with local access to obtain root access to the host by provisioning a privileged container. Fixed in MicroK8s 1.15.3.

CVE-2020-10633
PUBLISHED: 2020-04-08

A non-persistent XSS (cross-site scripting) vulnerability exists in eWON Flexy and Cosy (all firmware versions prior to 14.1s0). An attacker could send a specially crafted URL to initiate a password change for the device. The target must introduce the credentials to the gateway before the attack can...

CVE-2020-10366
PUBLISHED: 2020-04-08

LogicalDoc before 8.3.3 allows /servlet.gupld Directory Traversal, a different vulnerability than CVE-2020-9423 and CVE-2020-10365.

CVE-2020-11543
PUBLISHED: 2020-04-08

OpsRamp Gateway 3.0.0 has a backdoor account vadmin with the password [email protected] that allows root SSH access to the server.

CVE-2020-11626
PUBLISHED: 2020-04-08

An issue was discovered in EJBCA before 6.15.2.6 and 7.x before 7.3.1.2. Two Cross Side Scripting (XSS) vulnerabilities have been found in the Public Web and the Certificate/CRL download servlets.

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]