Tenable 博客
Microsoft’s August 2025 Patch Tuesday Addresses 107 CVEs (CVE-2025-53779)
CVE-2023-35078:Ivanti Endpoint Manager Mobile (EPMM) / MobileIron Core 未经身份验证的 API 访问漏洞
Critical vulnerability in a popular mobile device management solution from Ivanti has been exploited in the wild in limited attacks...
AI 将控制网络安全:下面是您所需的内容
Generative AI will elevate the practice of successful preventive cybersecurity, but how will it manifest itself across cybersecurity products? Here are a few game-changers to look for....
Tenable 网络观察:美国政府简要介绍了网络安全投资优先顺序,研究显示网络团队过于自信,等等
This week’s edition of Tenable Cyber Watch unpacks CISA and the NSA’s CI/CD defense guidance and explores the White House’s cybersecurity investment priorities. Also covered: why one study says cyber teams are too confident. ...
网络安全快照: CISO 表示,外泄有所减少,但人员配备仍然困难
Find out what’s working well for CISOs – and what could be better. Plus, why you should pay attention to the FTC’s investigation into ChatGPT-maker OpenAI. Also, check out a primer for C-level execs on adopting generative AI. Plus, the free cloud security tools CISA recommends you use. And much more...
Oracle 2023 年 7 月补丁更新解决了 183 个 CVE
Oracle addresses 183 CVEs in its third quarterly update of 2023 with 508 patches, including 76 critical updates....
CVE-2023-3519:Netscaler ADC (Citrix ADC) 和 Netscaler Gateway (Citrix Gateway) 中的重大 RCE
Citrix has released a patch fixing a remote code execution vulnerability in several versions of Netscaler ADC and Netscaler Gateway that has been exploited. Organizations are urged to patch immediately....
Tenable 网络观察:NAIAC 向拜登提交第一份报告,80% 的员工反对在工作场所禁止 ChatGPT,等等
This week’s edition of Tenable Cyber Watch unpacks the NAIAC’s first report delivered to President Biden and explores Glassdoor’s survey finding that 80% of employees oppose ChatGPT bans at their workplace. Also covered: CISA releases two new guides aimed at helping cyber teams protect cloud apps. ...
网络安全快照: CISA and NSA Dive into CI/CD Security, While MITRE Ranks Top Software Weaknesses
Learn about the guidance from the U.S. government for defending CI/CD pipelines. Plus, check out the 25 most dangerous software weaknesses. Also, what developers like about AI tools – and what they don’t. And much more!...
CVE-2023-3595,CVE-2023-3596:Rockwell Automation ControlLogix 漏洞披露
Rockwell Automation issues advisory for multiple vulnerabilities, including a critical flaw that could lead to disruption or destruction of critical infrastructure processes....