Vulnerabilities

French Bug Bounty Platform YesWeHack Raises $28 Million

bug bounty program, Funding/M&A, Series C, Vulnerabilities, YesWeHack /

French Bug Bounty Platform YesWeHack Raises $28 Million 2024-06-14 at 10:01 By Ionut Arghire YesWeHack has raised more than $52 million to date to build and market a crowdsourced vulnerability reporting platform. The post French Bug Bounty Platform YesWeHack Raises $28 Million appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed […]

React to this headline:

Loading spinner

French Bug Bounty Platform YesWeHack Raises $28 Million Read More »

Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation

CVE-2024-32896, CVE-2024-4610, Google, Google Pixel, Malware & Threats, Mobile & Wireless, Vulnerabilities, Zero-Day /

Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation 2024-06-12 at 21:16 By Ryan Naraine The zero-day is tagged as CVE-2024-32896 and described as an elevation of privilege issue in Pixel Firmware. The post Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Google Warns of Pixel Firmware Zero-Day Under Limited, Targeted Exploitation Read More »

Fortinet Patches Code Execution Vulnerability in FortiOS

Fortinet, Vulnerabilities /

Fortinet Patches Code Execution Vulnerability in FortiOS 2024-06-12 at 19:46 By Ionut Arghire Fortinet has patched multiple vulnerabilities in FortiOS, including a high-severity code execution security flaw. The post Fortinet Patches Code Execution Vulnerability in FortiOS appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

Fortinet Patches Code Execution Vulnerability in FortiOS Read More »

Microsoft Patches Zero-Click Outlook Vulnerability That Could Soon Be Exploited

Microsoft Outlook, Vulnerabilities /

Microsoft Patches Zero-Click Outlook Vulnerability That Could Soon Be Exploited 2024-06-12 at 19:46 By Ionut Arghire Microsoft’s June 2024 Patch Tuesday updates resolve a zero-click Outlook vulnerability leading to remote code execution. The post Microsoft Patches Zero-Click Outlook Vulnerability That Could Soon Be Exploited appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Microsoft Patches Zero-Click Outlook Vulnerability That Could Soon Be Exploited Read More »

GitHub Paid Out Over $4 Million via Bug Bounty Program

bug bounty program, GitHub, Vulnerabilities /

GitHub Paid Out Over $4 Million via Bug Bounty Program 2024-06-12 at 15:16 By Eduard Kovacs The code hosting platform GitHub has paid out more than $4 million since the launch of its bug bounty program 10 years ago. The post GitHub Paid Out Over $4 Million via Bug Bounty Program appeared first on SecurityWeek.

React to this headline:

Loading spinner

GitHub Paid Out Over $4 Million via Bug Bounty Program Read More »

Chrome 126, Firefox 127 Patch High-Severity Vulnerabilities

Chrome, Firefox, Vulnerabilities, vulnerability /

Chrome 126, Firefox 127 Patch High-Severity Vulnerabilities 2024-06-12 at 13:31 By Ionut Arghire Google and Mozilla have released patches for 21 and 15 vulnerabilities in Chrome and Firefox, respectively. The post Chrome 126, Firefox 127 Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React

React to this headline:

Loading spinner

Chrome 126, Firefox 127 Patch High-Severity Vulnerabilities Read More »

Patch Tuesday: Remote Code Execution Flaw in Microsoft Message Queuing

CVE-2024-30078, CVE-2024-30080, Malware & Threats, Microsoft, Patch Tuesday, Vulnerabilities /

Patch Tuesday: Remote Code Execution Flaw in Microsoft Message Queuing 2024-06-12 at 00:46 By Ryan Naraine The Windows vulnerability carries a CVSS severity score of 9.8/10 and can be exploited by via specially crafted malicious MSMQ packets. The post Patch Tuesday: Remote Code Execution Flaw in Microsoft Message Queuing appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Patch Tuesday: Remote Code Execution Flaw in Microsoft Message Queuing Read More »

Adobe Plugs Code Execution Holes in After Effects, Illustrator

Adobe, Malware & Threats, Patch Tuesday, Vulnerabilities /

Adobe Plugs Code Execution Holes in After Effects, Illustrator 2024-06-11 at 21:46 By Ryan Naraine Patch Tuesday: Adobe fixes critical flaws and warns of the risk of code execution attacks on Windows and macOS platforms. The post Adobe Plugs Code Execution Holes in After Effects, Illustrator appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Adobe Plugs Code Execution Holes in After Effects, Illustrator Read More »

Multiple Vulnerabilities Plague Discontinued Netgear WNR614 Routers

Netgear, router, Vulnerabilities /

Multiple Vulnerabilities Plague Discontinued Netgear WNR614 Routers 2024-06-11 at 17:01 By Ionut Arghire Redfox Security warns of multiple vulnerabilities in Netgear WNR614 routers discontinued three years ago. The post Multiple Vulnerabilities Plague Discontinued Netgear WNR614 Routers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

Multiple Vulnerabilities Plague Discontinued Netgear WNR614 Routers Read More »

SAP Patches High-Severity Vulnerabilities in Financial Consolidation, NetWeaver

Patch Tuesday, SAP, Vulnerabilities /

SAP Patches High-Severity Vulnerabilities in Financial Consolidation, NetWeaver 2024-06-11 at 15:16 By Ionut Arghire SAP has released 10 new security notes on June 2024 Security Patch Day, including two addressing high-severity vulnerabilities. The post SAP Patches High-Severity Vulnerabilities in Financial Consolidation, NetWeaver appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

SAP Patches High-Severity Vulnerabilities in Financial Consolidation, NetWeaver Read More »

Arm Warns of Exploited Kernel Driver Vulnerability

Arm, exploited, Featured, GPU, Malware & Threats, Vulnerabilities /

Arm Warns of Exploited Kernel Driver Vulnerability 2024-06-11 at 13:16 By Ionut Arghire Arm warns that CVE-2024-4610, a Mali GPU kernel driver vulnerability addressed two years ago, is exploited in attacks. The post Arm Warns of Exploited Kernel Driver Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Arm Warns of Exploited Kernel Driver Vulnerability Read More »

Critical PyTorch Vulnerability Can Lead to Sensitive AI Data Theft

AI, Artificial Intelligence, Vulnerabilities, vulnerability /

Critical PyTorch Vulnerability Can Lead to Sensitive AI Data Theft 2024-06-10 at 17:31 By Ionut Arghire A critical vulnerability in the PyTorch distributed RPC framework could be exploited for remote code execution. The post Critical PyTorch Vulnerability Can Lead to Sensitive AI Data Theft appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Critical PyTorch Vulnerability Can Lead to Sensitive AI Data Theft Read More »

PHP Patches Critical Remote Code Execution Vulnerability

PHP, Vulnerabilities /

PHP Patches Critical Remote Code Execution Vulnerability 2024-06-10 at 16:31 By Ionut Arghire PHP has released patches for CVE-2024-4577, a critical vulnerability that could lead to arbitrary code execution on remote servers. The post PHP Patches Critical Remote Code Execution Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

PHP Patches Critical Remote Code Execution Vulnerability Read More »

Nvidia Patches High-Severity GPU Driver Vulnerabilities

driver, NVIDIA, Vulnerabilities /

Nvidia Patches High-Severity GPU Driver Vulnerabilities 2024-06-10 at 16:01 By Ionut Arghire Nvidia patches multiple high-severity vulnerabilities in GPU display drivers and virtual GPU software. The post Nvidia Patches High-Severity GPU Driver Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this headline:

React to this headline:

Loading spinner

Nvidia Patches High-Severity GPU Driver Vulnerabilities Read More »

In Other News: TikTok Zero-Day, DMM Bitcoin Hack, Free VPN App Analysis

In Other News, Vulnerabilities /

In Other News: TikTok Zero-Day, DMM Bitcoin Hack, Free VPN App Analysis 2024-06-07 at 18:46 By SecurityWeek News Noteworthy stories that might have slipped under the radar: TikTok patches account hijacking zero-day, $300 million DMM Bitcoin hack, free Android VPN apps analyzed. The post In Other News: TikTok Zero-Day, DMM Bitcoin Hack, Free VPN App

React to this headline:

Loading spinner

In Other News: TikTok Zero-Day, DMM Bitcoin Hack, Free VPN App Analysis Read More »

SolarWinds Patches High-Severity Vulnerability Reported by NATO Pentester

SolarWinds, Vulnerabilities /

SolarWinds Patches High-Severity Vulnerability Reported by NATO Pentester 2024-06-07 at 14:01 By Ionut Arghire SolarWinds has released patches for high-severity vulnerabilities in Serv-U and the SolarWinds Platform. The post SolarWinds Patches High-Severity Vulnerability Reported by NATO Pentester appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

SolarWinds Patches High-Severity Vulnerability Reported by NATO Pentester Read More »

Chinese Hackers Exploit Old ThinkPHP Vulnerabilities in New Attacks

Akamai, CVE-2018-20062, CVE-2019-9082, Malware & Threats, ThinkPHP, Vulnerabilities /

Chinese Hackers Exploit Old ThinkPHP Vulnerabilities in New Attacks 2024-06-06 at 20:33 By Ionut Arghire Akamai warns that a Chinese threat actor is exploiting years-old remote code execution vulnerabilities in ThinkPHP in new attacks. The post Chinese Hackers Exploit Old ThinkPHP Vulnerabilities in New Attacks appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Chinese Hackers Exploit Old ThinkPHP Vulnerabilities in New Attacks Read More »

Exploitation of Recent Check Point VPN Zero-Day Soars

Check Point, exploited, Vulnerabilities /

Exploitation of Recent Check Point VPN Zero-Day Soars 2024-06-06 at 16:46 By Ionut Arghire GreyNoise has observed a rapid increase in the number of exploitation attempts targeting a recent Check Point VPN zero-day. The post Exploitation of Recent Check Point VPN Zero-Day Soars appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Exploitation of Recent Check Point VPN Zero-Day Soars Read More »

Vulnerabilities Patched in Kiuwan Code Security Products After Long Disclosure Process

security product vulnerability, Vulnerabilities /

Vulnerabilities Patched in Kiuwan Code Security Products After Long Disclosure Process 2024-06-06 at 15:31 By Eduard Kovacs It took code security firm Kiuwan nearly two years to patch several serious vulnerabilities found in its SAST products. The post Vulnerabilities Patched in Kiuwan Code Security Products After Long Disclosure Process appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Vulnerabilities Patched in Kiuwan Code Security Products After Long Disclosure Process Read More »

‘NsaRescueAngel’ Backdoor Account Again Discovered in Zyxel Products

backdoor, NAS, Vulnerabilities, Zyxel /

‘NsaRescueAngel’ Backdoor Account Again Discovered in Zyxel Products 2024-06-05 at 15:03 By Ionut Arghire Critical vulnerabilities in discontinued Zyxel NAS products allow unauthenticated attackers to execute arbitrary code and OS commands. The post ‘NsaRescueAngel’ Backdoor Account Again Discovered in Zyxel Products appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

‘NsaRescueAngel’ Backdoor Account Again Discovered in Zyxel Products Read More »

Scroll to Top