CVSS 9.8 Archives

Vulnerabilities

Adobe Patches Critical Bugs in Commerce and Magento Products

Adobe documents 25 vulnerabilities in Adobe Commerce and warns of code execution and privilege escalation exposure.

Ryan NaraineOctober 8, 2024

Cloud Security

Critical Authentication Bypass Flaw in VMware Cloud Director Appliance

VMware flaw carries a CVSS severity-score of 9.8/10 and can be exploited to bypass login restrictions when authenticating on certain ports.

Ryan NaraineNovember 14, 2023

Incident Response

FIRST Releases CVSS 4.0 Vuln Scoring Standard

The CVSS vulnerability scoring standard is refreshed to provide more data and remove ambiguities in rating the severity of downstream issues.

Ryan NaraineNovember 1, 2023

Cloud Security

Cisco Plugs Gaping Hole in Emergency Responder Software

Cisco warns that unauthenticated, remote attackers can log into devices using root account, which has default, static credentials that cannot be changed or deleted.

Ryan NaraineOctober 5, 2023

Application Security

Critical WordPress Plugin Vulnerabilities Impact Thousands of Sites

Two critical-severity authentication bypass vulnerabilities in WordPress plugins with tens of thousands of installations.

Ionut ArghireJune 21, 2023

SECURITYWEEK NETWORK:

ICS:

All posts tagged "CVSS 9.8"

Vulnerabilities

Adobe Patches Critical Bugs in Commerce and Magento Products

Cloud Security

Critical Authentication Bypass Flaw in VMware Cloud Director Appliance

Incident Response

FIRST Releases CVSS 4.0 Vuln Scoring Standard

Cloud Security

Cisco Plugs Gaping Hole in Emergency Responder Software

Application Security

Critical WordPress Plugin Vulnerabilities Impact Thousands of Sites

Featured

Supply Chain Security

Impact, Root Cause of GitHub Actions Supply Chain Hack Revealed

Mobile & Wireless

Paragon Spyware Attacks Exploited WhatsApp Zero-Day

Cloud Security

What’s Behind Google’s $32 Billion Wiz Acquisition?

Phishing

Scareware Combined With Phishing in Attacks Targeting macOS Users

Funding/M&A

Google to Acquire Cloud Security Giant Wiz for $32 Billion in Cash

Artificial Intelligence

ChatGPT Tool Vulnerability Exploited Against US Government Organizations

Artificial Intelligence

Nvidia Patches Vulnerabilities That Could Let Hackers Exploit AI Services

Latest News

Vulnerabilities

In Other News: Critical Chrome Bug, Capital One Hacker Resententencing, Story of Expat Flaw

Data Breaches

Ransomware Group Claims Attack on Virginia Attorney General’s Office

Supply Chain Security

Watch on Demand: Supply Chain & Third-Party Risk Security Summit

Artificial Intelligence

New Jailbreak Technique Uses Fictional World to Manipulate AI

Nation-State

Chinese I-Soon Hackers Hit 7 Organizations in Operation FishMedley

Cloud Security

Industry Reactions to Google Buying Wiz: Feedback Friday

Data Breaches

Ransomware Group Claims Attacks on Ascom, Jaguar Land Rover

Daily Briefing Newsletter