ZDI-CAN-26516 Parallels

A CVSS score 7.3 AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by ‘Zeze with TeamT5’ was reported to the affected vendor on: 2025-03-19, 3 days ago. The vendor is given until 2025-07-17 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of

A CVSS score 7.3 AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by ‘Zeze with TeamT5’ was reported to the affected vendor on: 2025-03-19, 3 days ago. The vendor is given until 2025-07-17 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

Read more...

USN-7356-1 uriparser vulnerabilities

It was discovered that uriparser did not correctly handle certain inputs, which could lead to an integer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2024-34402, CVE-2024-34403)

It was discovered that uriparser did not correctly handle certain inputs, which could lead to an integer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2024-34402, CVE-2024-34403)

Read more...

​SANS Cybersecurity Blog pertaining to a summary of the SANS New2Cyber Summit 2025 

​Read More

​A blog explaining how to get your employer to reimburse you SANS course tuition costs 

​Read More

​A blog about the importance of continuous penetration testing 

​Read More

Developers need a fast, secure, and reliable way to build, share, and run applications — and Docker makes that easy. With the Docker Desktop 4.39 release, we’re excited to announce a few developer productivity enhancements including Docker AI Agent with Model Context Protocol (MCP) and Kubernetes support, general availability of Docker Desktop CLI, and `platform` flag support for more seamless multi-platform image management.

Read more...

Docker simplifies containerization by removing runtime complexity and making app development seamless. With Docker Engine v28, we’re taking another step forward in security by ensuring containers aren’t unintentionally accessible from local networks. This update isn’t about fixing a single vulnerability — it’s about security hardening so your containers stay safe. 

What happened?

When you run a container on the default Docker “bridge” network, Docker sets up NAT (Network Address Translation) rules using your system’s firewall (via iptables). For example, the following command forwards traffic from port 8080 on your host to port 80 in the container. 

Read more...

​A blog about Linux fundamentals. 

​Read More

​A blog about how the SANS Cyber42 Leadership Simulation helps cybersecurity leaders make the tough decisions. 

​Read More

​A blog providing tips on how to get your presentation seleccted for the 2025 SANS Security Awareness Summit. 

​Read More