Five hours! Five hours! That’s how long it took for hackers to exploit Drupal vulnerability (CVE-2018-7602) after the patches were released. This time, instead of releasing the patches straight away, Drupal dropped a PSA(Public Service Announcement) approximately two days before releasing the updates to get the website owners and developers ready to patch out […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:114310 CVE-2018-6797 CVE-2018-6798 CVE-2018-6913 FEDORA-2018-0050f7c0d1 FEDORA-2018-0050f7c0d1 — Fedora 26 perl-5.24.4-397.fc26 oval:org.secpod.oval:def:114311 FEDORA-2018-9d1ff4b802 FEDORA-2018-9d1ff4b802 — Fedora 27 composer-1.6.4-1.fc27 oval:org.secpod.oval:def:114313 CVE-2018-6797 CVE-2018-6798 CVE-2018-6913 FEDORA-2018-0050f7c0d1 FEDORA-2018-0050f7c0d1 — Fedora 26 perl-Module-CoreList-5.20180414-1.fc26 oval:org.secpod.oval:def:114314 […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:114303 CVE-2018-5784 CVE-2018-7456 FEDORA-2018-335aec0507 FEDORA-2018-335aec0507 — Fedora 27 libtiff-4.0.9-8.fc27 oval:org.secpod.oval:def:114304 CVE-2017-6926 CVE-2017-6927 CVE-2017-6928 CVE-2017-6929 CVE-2017-6930 CVE-2017-6931 CVE-2017-6932 CVE-2018-7600 FEDORA-2018-6e6d8c314b FEDORA-2018-6e6d8c314b — Fedora 27 drupal8-8.4.6-3.fc27 oval:org.secpod.oval:def:114305 CVE-2004-2779 CVE-2017-11550 FEDORA-2018-4e26c06aef […]

Read More →

  More than a million active websites use Drupal, making it the second most used content management system worldwide after WordPress. On March 28, 2018, Drupal released security patches for versions 6 to 8 suggesting to update immediately and marking the underlying vulnerability (CVE-2018-7600) as critical with remote code execution. The scanning and attacks on […]

Read More →

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update. oval:org.secpod.oval:def:1800003 7667 CVE-2017-9800 [3.7] subversion: Arbitrary code execution on clients through malicious svn+ssh URLs (CVE-2017-9800) oval:org.secpod.oval:def:1800032 8247 CVE-2017-8819 CVE-2017-8820 CVE-2017-8821 CVE-2017-8822 CVE-2017-8823 [3.7] tor: Multiple vulnerabilities (CVE-2017-8819, CVE-2017-8820, […]

Read More →