versa
-
Versa announced Versa Endpoint DLP, an integrated endpoint data loss prevention (DLP) capability delivered by the Versa SASE Client as part of the VersaONE Universal SASE Platform.
-
Versa Networks has issued a security advisory addressing a critical vulnerability (CVE-2024-42450) affecting its Versa Director software. The vulnerability, which carries a CVSS score of 10, could allow unauthenticated attackers to access sensitive data, escalate privileges, and potentially execute arbitrary code on vulnerable systems.
-
The transport company FESCO won a dispute in the High Court of England and Wales with the company of the convicted Ziyavudin Magomedov.
-
Vulnerabilities in Versa Director are never a small matter, as the platform manages network configurations for Versa’s SD-WAN software – which is often used by internet service providers (ISPs) and managed service providers (MSPs), so a single exposure has the potential for a big downstream effect.
-
Overview The Cybersecurity and Infrastructure Security Agency (CISA) has highlighted a vulnerability in Versa Networks’ Versa Director, a centralized management platform for Secure SD-WAN and SASE solutions. This vulnerability, identified as CVE-2024-45229, stems from improper input validation and affects various versions of the software. Organizations using vulnerable versions of Versa Director are urged to take…
-
Versa Networks has issued a security advisory regarding a vulnerability discovered in its Versa Director product, CVE-2024-45229. This vulnerability, which carries a CVSS score of 6.6, could potentially expose sensitive user authentication tokens, placing enterprise networks at risk.
-
Versa Networks has released an advisory for a vulnerability () affecting Versa Director. A cyber threat actor could exploit this vulnerability to exercise unauthorized REST APIs.
-
By Professor Fraser Sampson, former UK Biometrics & Surveillance Camera Commissioner
-
Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime , Network Performance Monitoring & Diagnostics
-
Versa Director Zero-Day Attack: A Non-Critical Vulnerability with Low Exposure Can Still Be Trouble
·
A zero-day vulnerability in Versa Director servers is proof that a vulnerability doesn’t require a critical severity rating and thousands of exposures to do significant damage.
-
China-linked APT Volt Typhoon exploited a zero-day in Versa Director
-
Versa Networks has released an advisory for a vulnerability (CVE-2024-39717) in Versa Director, a key component in managing SD-WAN networks, used by some Internet Service Providers (ISPs) and Managed Service Providers (MSPs). A cyber threat actor could exploit this vulnerability to take control of an affected system.
-
Advanced, persistent attackers have exploited a zero-day vulnerability (CVE-2024-39717) in Versa Director to compromise US-based managed service providers with a custom-made web shell dubbed VersaMem by the researchers. The malware harvests credentials enabling the attackers to access the providers’ downstream customers’ networks as an authenticated user.
-
Black Lotus Labs, a threat intelligence team within Lumen Technologies, has uncovered the active exploitation of a zero-day vulnerability in Versa Director servers, identified as CVE-2024-39717. This critical vulnerability, which affects all Versa Director versions prior to 22.1.4, has become a prime target for advanced persistent threat (APT) actors, particularly those linked to Chinese state-sponsored…
-
U.S. internet service providers, managed service providers, and IT firms have been subjected to ongoing attacks by Chinese advanced persistent threat operation Volt Typhoon targeting Versa Director servers impacted by the high-severity zero-day, tracked as CVE-2024-39717, since June, SecurityWeek reports.
-
U.S. CISA adds Versa Director bug to its Known Exploited Vulnerabilities catalog
-
U.S. CISA adds Versa Director bug to its Known Exploited Vulnerabilities catalog
-
Aug 24, 2024Ravie LakshmananVulnerability / Government Security
-
CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.
-
In a recent cybersecurity alert, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has highlighted the active exploitation of a severe vulnerability identified as CVE-2024-39717. This flaw, found within Versa Networks’ Director GUI, poses a significant threat to organizations that have not yet applied the necessary security guidelines. The vulnerability is categorized as HIGH in…