NUCLEUS BLOG.

March 7, 2023 CISA KEV Breakdown | Zoho Teclib, Apache
March 7 – 3 New Vulns | CVE-2022-28810, CVE-2022-35914, CVE-2022-33891 In this CISA KEV Breakdown, a password reset input RCE from ManageEngine, an RCE in

February 27, 2023 CISA KEV Breakdown | ZK Framework
February 27 – 1 New Vuln | CVE-2022-36537 In this CISA KEV Breakdown, a single vulnerability in the Java ZK Framework which can allow for

February 21, 2023 CISA KEV Breakdown | IBM, Mitel
February 21 – 3 New Vulns | CVE-2022-47986, CVE-2022-41223, CVE-2022-40765 In this CISA KEV Breakdown, an IBM Aspera Faspex deserialization RCE vulnerability, as well as

February 16, 2023 CISA KEV Breakdown | Cacti
February 16 – 1 New Vuln | CVE-2022-46169 In this CISA KEV Breakdown, an unauthenticated remote code execution bug in Cacti from 2022 was added.

Nucleus Product Update 3.1
Metadata additions and performance improvements for Tenable, Rapid7, Prisma Cloud, and several more. Welcome to the Nucleus Product Update 3.1. The Nucleus vulnerability management platform

February 14, 2023 CISA KEV Breakdown | Microsoft, Apple
February 14 – 4 New Vulns | CVE-2023-23529, CVE-2023-21715, CVE-2023-23376, CVE-2023-21823 In this CISA KEV Breakdown, three zero-day Microsoft vulnerabilities and one zero-day Apple vulnerability

February 10, 2023 CISA KEV Breakdown | TerraMaster, Fortra, Intel
February 10 – 3 New Vulns | CVE-2015-2291, CVE-2022-24990, CVE-2023-0669 In this CISA KEV Breakdown, an Intel Driver vulnerability almost a decade old finds a

Infographic: 2022 Vulnerability Disclosure Growth
Infographic: 2022 Vulnerability Disclosure Growth Vulnerability exploitation is now the #1 initial attack vector when it comes to security incidents. In fact, in the last

February 2, 2023 CISA KEV Breakdown | Oracle E-Business, SugarCRM RCE
February 2 – 2 New Vulns | CVE-2022-21587, CVE-2023-22952 In this CISA KEV Breakdown, a remote code execution vulnerability in Oracle’s E-Business Suite, as well

January 26 CISA KEV Breakdown | Telerik UI
January 26 – 1 New Vuln | CVE-2017-11357 In this CISA KEV Breakdown, a Telerik UI Insecure Direct Object Reference Vulnerability from 2017 finds a

How to Define Vulnerability Remediation SLAs | Shortcuts
How to Define Vulnerability Remediation SLAs | Shortcuts Hello and welcome back to Nucleus Shortcuts. I am your host, Adam Dudley, and today we’re going

January 23 CISA KEV Breakdown | Zoho ManageEngine
January 23 – 1 New Vuln | CVE-2022-47966 In this CISA KEV Breakdown, a Zoho ManageEngine remote code execution vulnerability discovered and patched in 2022

January 17 CISA KEV Breakdown | Control Web Panel
January 17 – 1 New Vuln | CVE-2022-44877 In this CISA KEV Breakdown, a Control Web Panel command injection vulnerability finds a home on the

Nucleus Product Update 2.12
Start 2023 off right with more connector and platform improvements. Welcome to the Nucleus Product Update 2.12, a short and sweet one. This product update

January 10 CISA KEV Breakdown | Microsoft
January 10 – 2 New Vulns | CVE-2022-41080, CVE-2023-21674 In this CISA KEV Breakdown, two vulnerabilities from Microsoft have been added to kick off 2023.