Category: Qualys
F5 BIG-IP Remote Code Execution Vulnerability (CVE-2020-5902)
F5 Networks recently released updates for the critical RCE vulnerability (CVE-2020-5902) that affects its BIG-IP products. The vulnerability that has been actively exploited in the wild allows attackers to read files, execute code or take
Ripple20: Multiple Vulnerabilities Identified in Treck TCP/IP Stack
Multiple vulnerabilities that use a low-level TCP/IP software library developed by Treck, Inc. were identified recently in implementations of the Treck IP stack for embedded systems. These vulnerabilities were discovered by the JSOF research lab
Secure Your Global Remote Workforce
Update June 9, 2020: Qualys adds Malware Detection to Free 60 days Remote Endpoint Protection offering. This post has been updated to reflect this new Malware Detection capability. IT organizations around the world are responding to
Product, API & Library Notifications Move to Notifications.qualys.com
Qualys has consolidated notifications of new product features, API changes, and policy library updates at Qualys Notifications to make it easier for our customers to track these changes in one place. Now you will find important notifications
NSA Announces Sandworm Actors Exploiting Exim MTA Vulnerability (CVE-2019-10149)
The Exim MTA vulnerability, initially reported by Qualys in May 2019, is currently being exploited in the wild. Recently, the US National Security Agency (NSA) announced that Sandworm actors (Russian hacker group) have been actively exploiting
Verizon Data Breach Investigations Report 2020
One of the most respected publications in cybersecurity is the Verizon Data Breach Investigations Report (DBIR), analyzing over 150,000 incidents and providing a comprehensive analysis covering the 32,002 incidents and 3950 breaches that meet
May 2020 Patch Tuesday – 111 Vulns, 16 Critical, SharePoint, VS Code, Adobe Patches
Continuing the trend of large Microsoft Patch Tuesdays, this month’s addresses 111 vulnerabilities with 16 of them labeled as Critical. The 16 Critical vulnerabilities cover SharePoint, Browsers, Scripting Engines, Media Foundation, Microsoft
Qualys Community Migration to Salesforce Platform
We are excited to announce that the Qualys Community discussion forums are migrating to the Salesforce platform on June 6-7 weekend. This 30-day notification explains why we are changing the underlying platform, how it benefits Qualys customers,
Qualys Cloud Platform 10.1.0 New Features
The upcoming release of the Qualys Cloud Platform (VM, PC), version 10.1.0, includes several new features and enhancements in Qualys Cloud Platform and Qualys Policy Compliance. This release will also add support for new technologies in Qualys
April 2020 Patch Tuesday – 113 Vulns, 19 Critical, Zero-Day Patches, SharePoint, Adobe ColdFusion
This month’s Microsoft Patch Tuesday addresses 113 vulnerabilities with 19 of them labeled as Critical. The 19 Critical vulnerabilities cover Adobe Font Manager Library (0-day), SharePoint, Hyper-V, Scripting Engines, Media Foundation,Load More