U.S. agencies must implement vulnerability-disclosure policies by March 2021, according to a new CISA mandate.
Source: Threat Post – Web Security –
[...]
Local information disclosure in OpenSMTPD (CVE-2020-8793)
Source: Security Focus – Bugtraq: Local information disclosure in OpenSMTPD (CVE-2020-8793)
[...]
CVE-2020-0728: Windows Modules Installer Service Information Disclosure Vulnerability
Source: Security Focus – Bugtraq: CVE-2020-0728: Windows Modules Installer Service Information Disclosure Vulnerability
[...]
The updated disclosure policy aims to achieve more thorough and improved patch development, Google reports.
Source: Dark Reading – Threat Intelligence –
[...]