NUCLEUS BLOG.

October 2, 2023 CISA KEV Breakdown | Google, Red Hat
October 2: 2 New Vulns | CVE-2018-14667, CVE-2023-5217 In this CISA KEV Breakdown, we cover the Red Hat addition from the 28th of September as well

Nucleus Product Update 3.8
Better team and finding management, plus a Bulk Data Export release preview! Welcome to the Nucleus Product Update 3.8. It’s September, the official starting month

September 22, 2023 CISA KEV Breakdown | Trend Micro
September 22: 1 New Vuln | Trend Micro In this CISA KEV Breakdown, a vulnerability in the Worry-Free suite of services offered by Trend Micro was

September 12-19, 2023 CISA KEV Breakdown | 15 New Vulns
With these 15 new additions to CISA KEV, the catalog has officially grown to cover more than 1,000 vulnerabilities – a feat that we’ve been

September 11, 2023 CISA KEV Breakdown | Apple
September 11: 2 New Vulns | CVE-2023-41061, CVE-2023-41064 In this CISA KEV Breakdown, Apple discovers a 0-day exploit-chain resulting in RCE with the help of Citizen

September 6, 2023 CISA KEV Breakdown | Apache
September 6: 1 New Vuln | CVE-2023-33246 In this CISA KEV Breakdown, a reawakened botnet campaign targets the use of Apache’s RocketMQ in activity spotted by

Understanding and Acting on CISA BOD 23-02
On June 13th, the Cybersecurity and Infrastructure Security Agency (CISA) released another Binding Operational Directive (BOD), CISA BOD 23-02, that will shake the feathers within

August 24, 2023 CISA KEV Breakdown | Openfire, RARLAB
August 24: 2 New Vulns | CVE-2023-32315, CVE-2023-38831 In this CISA KEV Breakdown, a 0-day in WinRAR is used to target traders and yet another well-known

August 22, 2023 CISA KEV Breakdown | Ivanti, Veeam
August 22: 2 New Vulns | CVE-2023-27532, CVE-2023-38035 In this CISA KEV Breakdown, an Ivanti Sentry bypass vulnerability finds a home in the KEV after confirmation

August 21, 2023 CISA KEV Breakdown | Adobe
August 21: 1 New Vuln | CVE-2023-26359 In this CISA KEV Breakdown, one vulnerability in Adobe ColdFusion likely part of an exploit-chain alongside CVE-2023-26360 which was

Nucleus Product Update 3.7
SNow App 1.2.0, Custom File Schema upgrade, and more asset group restrictions incoming. Welcome to the Nucleus Product Update 3.7. This product update comes just

August 9 & 16, 2023 CISA KEV Breakdown | Microsoft, Citrix
August 9 & 16: 2 New Vulns | CVE-2023-38180, CVE-2023-24489 In this CISA KEV Breakdown, we cover the additions from August 9 as well as August

Black Hat 2023 Retrospective: AI, Keeping Focus, Hackers, and More AI
Black Hat 2023 Retrospective: AI, Keeping Focus, Hackers, and More AI Black Hat USA 2023 came and went, and if you didn’t notice one subject

Nucleus Shortcuts: Visualizing Vulnerability Data with Patrick Garrity
Welcome back to Nucleus Shortcuts! In this episode, our host, Adam Dudley is joined by Patrick Garrity, VP and Vulnerability Researcher at Nucleus, to discuss

Nucleus Security’s Insights Into Vulnerability Management V1
I’m delighted to unveil a culmination of my recent research that is aimed at empowering the cybersecurity community with comprehensive insights into the intricate landscape