CIS Logo
tagline: Confidence in the Connected World


Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution.



Multiple vulnerabilities have been discovered in Adobe Acrobat and Adobe Reader, the most severe of which could allow for arbitrary code execution.



Learn about the updates and improvements that were made to the CIS Oracle Database 12c Benchmark and CIS Microsoft Windows Benchmarks.


Multiple vulnerabilities have been discovered in VMware’s vRealize Operations Manager (vROP), the most severe of which could allow for arbitrary code execution.



A vulnerability has been discovered in the Elementor Pro Plugin that could allow for remote code execution.



The audit recommends that the OSP finish implementing the six CIS controls it was reviewed for and develop a security management and compliance program.


Multiple vulnerabilities have been discovered in Cisco Products, the most severe of which could allow for directory traversal attacks.



CIS has chosen to better support our users by officially deprecating CIS Benchmarks for technologies that are no longer supported by the technology vendor.


Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution.



Multiple vulnerabilities have been discovered in Mozilla Firefox and Mozilla Firefox ESR, the most severe of which could allow for remote code execution.



Multiple vulnerabilities have been discovered in the Google Android operating system (OS), the most severe of which could allow for remote code execution.



Multiple vulnerabilities have been discovered in SaltStack, the most severe of which could allow for arbitrary code execution.



The Multi-State Information Sharing and Analysis Center has created a list of End-of-Support (EOS) software dates from 1/01/2019 to 4/2020.


For this edition of the CIS Controls Volunteer Spotlight, we spoke with Giacomo Lunardon, from Asti, Italy who recently translated the CIS Controls V7.1


Multiple vulnerabilities have been discovered in Magento CMS, the most severe of which could allow for arbitrary code execution.



1 2 3 4 5 122