The CyberRisk Summit is back: Join us on Dec 6. as we recap the cyber risk landscape in 2022 | Get free ticket >> 

Live webinar, Oct 13: Attend to learn how you can deduplicate vulnerability and deliver a smarter approach to cyber risk management  | Register  >>

New report: Mapping MITRE ATT&CK framework to CVEs |  Read more  >>

Do I even need to fix BootHole, SIGRed or SMBleed?

Do you have a plan for BootHole or have you already fixed it? What about SIGRed or SMBleed? Are any of these high-profile vulnerabilities even relevant to the security of your digital infrastructure? Vulnerability prioritization is a critical element of any enterprise vulnerability management program. But too often prioritization is done wrong, making the effort… Continue reading Do I even need to fix BootHole, SIGRed or SMBleed?

The SMBleed Vulnerability and How to Fix It with KB4560960

SMBleed (CVE-2020-1206), its relation to SMBGhost and how to fix them The SMBleed vulnerability (CVE-2020-1206) allows an attacker to read uninitialized kernel memory. It happens in the same function as SMBGhost (CVE-2020-0796), a bug in the compression mechanism of SMBv3.1.1, as explained in a previous blog.