Cyber Security Advisories

The following cyber advisory was issued by the New York State Office of Information Technology Services and is intended for State government entities. The information may or may not be applicable to the general public and, accordingly, the State does not warrant its use for any specific purposes
No. Date Titlesort descending
#2021-069 05/19/2021 A Vulnerability in Microsoft Windows JET Database Engine Could Allow for Arbitrary Code Execution
#2020-037-UPDATED 03/12/2020 A Vulnerability in Microsoft Windows SMB Server Could Allow for Remote Code Execution (CVE-2020-0796)
#2022-027 03/02/2022 A Vulnerability in Mitel MiCollab and MiVoice Business Express Could Allow for Unauthorized Disclosure of Data
#2021-023 02/08/2021 A Vulnerability in Mozilla Firefox and Firefox ESR Could Allow for Arbitrary Code Execution
#2021-005-UPDATED 01/07/2021 A Vulnerability in Mozilla Firefox Could Allow for Arbitrary Code Execution
#2021-152 12/03/2021 A Vulnerability in Mozilla NSS (Network Security Services) Could Allow for Arbitrary Code Execution
#2020-159 - UPDATED 12/02/2020 A Vulnerability in Mozilla Thunderbird Could Allow for Arbitrary Code Execution
#2021-148 11/18/2021 A Vulnerability in Multiple NETGEAR Products Could Allow for Arbitrary Code Execution
#2021-144 11/10/2021 A Vulnerability in Palo Alto PAN-OS Could Allow for Arbitrary Code Execution
#2021-145 11/12/2021 A Vulnerability in Palo Alto PAN-OS Could Allow for Arbitrary Code Execution
#2020-085 06/29/2020 A Vulnerability in Palo Alto PAN-OS Could Allow for Authentication Bypass
#2022-014 01/26/2022 A Vulnerability in Polkit's pkexec Component Could Allow For Local Privilege Escalation
#2021-052-UPDATED 04/21/2021 A Vulnerability in Pulse Connect Secure VPN Could Allow for Remote Code Execution
#2022-016 02/01/2022 A Vulnerability in Samba Could Allow for Arbitrary Code Execution
#2021-090 07/15/2021 A Vulnerability in Schneider Electric Modicon PLCs Could Allow for Remote Code Execution
#2021-086 07/13/2021 A Vulnerability in SolarWinds Serv-U Could Allow for Remote Code Execution
#2022-039 03/28/2022 A Vulnerability in SonicOS Could Allow for Remote Code Execution
#2021-122 09/27/2021 A Vulnerability in SonicWall SMA 100 Series Could Allow for Arbitrary File Deletion
#2021-020 02/04/2021 A Vulnerability in SonicWall SMA 100 Series Could Allow for SQL Injection
#2021-020 02/04/2021 A Vulnerability in SonicWall SMA 100 Series Could Allow for SQL Injection

Pages

Cyber Security Advisories