Vulnerabilities

Intel Publishes 41 Security Advisories for Over 90 Vulnerabilities 

Intel, Vulnerabilities, vulnerability /

Intel Publishes 41 Security Advisories for Over 90 Vulnerabilities  2024-05-15 at 18:31 By Eduard Kovacs Intel has published 41 new May 2024 Patch Tuesday advisories covering a total of more than 90 vulnerabilities.  The post Intel Publishes 41 Security Advisories for Over 90 Vulnerabilities  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek […]

React to this headline:

Loading spinner

Intel Publishes 41 Security Advisories for Over 90 Vulnerabilities  Read More »

Microsoft Warns of Active Zero-Day Exploitation, Patches 60 Windows Vulnerabilities

CVE-2024-30040, CVE-2024-30044, CVE-2024-30051, Featured, Malware & Threats, Microsoft, Patch Tuesday, Ransomware, Vulnerabilities /

Microsoft Warns of Active Zero-Day Exploitation, Patches 60 Windows Vulnerabilities 2024-05-14 at 22:47 By Ryan Naraine Patch Tuesday: Microsoft documents 60 security flaws in multiple software products and flags an actively exploited Windows zero-day for urgent attention. The post Microsoft Warns of Active Zero-Day Exploitation, Patches 60 Windows Vulnerabilities appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Microsoft Warns of Active Zero-Day Exploitation, Patches 60 Windows Vulnerabilities Read More »

Adobe Patches Critical Flaws in Reader, Acrobat

Acrobat and Reader, Adobe, Malware & Threats, Patch Tuesday, Vulnerabilities /

Adobe Patches Critical Flaws in Reader, Acrobat 2024-05-14 at 21:01 By Ryan Naraine Adobe documents multiple code execution flaws in a wide range of products, including the widely deployed Adobe Acrobat and Reader software. The post Adobe Patches Critical Flaws in Reader, Acrobat appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Adobe Patches Critical Flaws in Reader, Acrobat Read More »

SAP Patches Critical Vulnerabilities in CX Commerce, NetWeaver

SAP, Vulnerabilities /

SAP Patches Critical Vulnerabilities in CX Commerce, NetWeaver 2024-05-14 at 18:16 By Ionut Arghire SAP has released 14 new and three updated security notes on its May 2024 Security Patch Day. The post SAP Patches Critical Vulnerabilities in CX Commerce, NetWeaver appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

SAP Patches Critical Vulnerabilities in CX Commerce, NetWeaver Read More »

VMware Patches Vulnerabilities Exploited at Pwn2Own 2024

Pwn2Own, VMWare, Vulnerabilities /

VMware Patches Vulnerabilities Exploited at Pwn2Own 2024 2024-05-14 at 16:49 By Eduard Kovacs VMware has patched three vulnerabilities exploited earlier this year at the Pwn2Own hacking competition. The post VMware Patches Vulnerabilities Exploited at Pwn2Own 2024 appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

VMware Patches Vulnerabilities Exploited at Pwn2Own 2024 Read More »

Google Patches Second Chrome Zero-Day in One Week

Chrome, exploited, Vulnerabilities, Zero-Day /

Google Patches Second Chrome Zero-Day in One Week 2024-05-14 at 14:46 By Eduard Kovacs Google has announced patches for another Chrome vulnerability that has been exploited in attacks. This is the second zero-day addressed by the company in one week and the third flaw leveraged in malicious attacks in 2024. The new zero-day, tracked as

React to this headline:

Loading spinner

Google Patches Second Chrome Zero-Day in One Week Read More »

Apple Patch Day: Code Execution Flaws in iPhones, iPads, macOS

apple, CVE-2024-23296, Malware & Threats, Patch Tuesday, RTKit, Vulnerabilities /

Apple Patch Day: Code Execution Flaws in iPhones, iPads, macOS 2024-05-13 at 23:01 By Ryan Naraine Apple documents another zero-day flaw being exploited on older iPhones and documents security problems in macOS, iOS and iPadOS. The post Apple Patch Day: Code Execution Flaws in iPhones, iPads, macOS appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Apple Patch Day: Code Execution Flaws in iPhones, iPads, macOS Read More »

$2.5 Million Offered at Upcoming ‘Matrix Cup’ Chinese Hacking Contest 

China, Featured, hacking competition, Matrix CUp, Vulnerabilities /

$2.5 Million Offered at Upcoming ‘Matrix Cup’ Chinese Hacking Contest  2024-05-13 at 13:46 By Eduard Kovacs The Chinese hacking contest Matrix Cup is offering big rewards for exploits targeting OSs, smartphones, enterprise software, browsers, and security products. The post $2.5 Million Offered at Upcoming ‘Matrix Cup’ Chinese Hacking Contest  appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

$2.5 Million Offered at Upcoming ‘Matrix Cup’ Chinese Hacking Contest  Read More »

Exploited Chrome Zero-Day Patched by Google

Chrome, exploited, Featured, Vulnerabilities, Zero-Day /

Exploited Chrome Zero-Day Patched by Google 2024-05-10 at 15:46 By Eduard Kovacs A Chrome 124 update patches the second Chrome zero-day that has been found to be exploited in malicious attacks in 2024. The post Exploited Chrome Zero-Day Patched by Google appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Exploited Chrome Zero-Day Patched by Google Read More »

CISA Announces CVE Enrichment Project ‘Vulnrichment’

CISA, Vulnerabilities, vulnerability /

CISA Announces CVE Enrichment Project ‘Vulnrichment’ 2024-05-09 at 16:01 By Eduard Kovacs CISA’s Vulnrichment project is adding important information to CVE records to help improve vulnerability management processes. The post CISA Announces CVE Enrichment Project ‘Vulnrichment’ appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

CISA Announces CVE Enrichment Project ‘Vulnrichment’ Read More »

F5 Patches Dangerous Vulnerabilities in BIG-IP Next Central Manager

Big-IP, F5, Vulnerabilities, vulnerability /

F5 Patches Dangerous Vulnerabilities in BIG-IP Next Central Manager 2024-05-09 at 14:17 By Eduard Kovacs F5 has patched two potentially serious vulnerabilities in BIG-IP Next that could allow an attacker to take full control of a device. The post F5 Patches Dangerous Vulnerabilities in BIG-IP Next Central Manager appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

F5 Patches Dangerous Vulnerabilities in BIG-IP Next Central Manager Read More »

New ‘TunnelVision’ Technique Leaks Traffic From Any VPN System

VPN, Vulnerabilities /

New ‘TunnelVision’ Technique Leaks Traffic From Any VPN System 2024-05-08 at 17:01 By Ionut Arghire A new VPN bypass technique allows threat actors to snoop on victims’ traffic by forcing it off the VPN tunnel using built-in features of DHCP. The post New ‘TunnelVision’ Technique Leaks Traffic From Any VPN System appeared first on SecurityWeek.

React to this headline:

Loading spinner

New ‘TunnelVision’ Technique Leaks Traffic From Any VPN System Read More »

Android Update Patches Critical Vulnerability

Android, Mobile & Wireless, Vulnerabilities /

Android Update Patches Critical Vulnerability 2024-05-08 at 15:31 By Ionut Arghire Android’s May 2024 security update patches 38 vulnerabilities, including a critical bug in the System component. The post Android Update Patches Critical Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this headline:

React to this headline:

Loading spinner

Android Update Patches Critical Vulnerability Read More »

CISA, FBI Urge Organizations to Eliminate Path Traversal Vulnerabilities

CISA, guidance, Vulnerabilities, vulnerability /

CISA, FBI Urge Organizations to Eliminate Path Traversal Vulnerabilities 2024-05-03 at 17:09 By Ionut Arghire CISA and the FBI warn of threat actors abusing path traversal software vulnerabilities in attacks targeting critical infrastructure. The post CISA, FBI Urge Organizations to Eliminate Path Traversal Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

CISA, FBI Urge Organizations to Eliminate Path Traversal Vulnerabilities Read More »

Microsoft Warns of ‘Dirty Stream’ Vulnerability in Popular Android Apps

Android, Mobile & Wireless, Vulnerabilities, vulnerability /

Microsoft Warns of ‘Dirty Stream’ Vulnerability in Popular Android Apps 2024-05-03 at 14:31 By Eduard Kovacs Microsoft has uncovered a new type of attack called Dirty Stream that impacted Android apps with billions of installations.  The post Microsoft Warns of ‘Dirty Stream’ Vulnerability in Popular Android Apps appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Microsoft Warns of ‘Dirty Stream’ Vulnerability in Popular Android Apps Read More »

Horizon3.ai Introduces AI-Assisted Service to Prioritize and Patch Vulnerabilities Faster

Artificial Intelligence, patch, Vulnerabilities /

Horizon3.ai Introduces AI-Assisted Service to Prioritize and Patch Vulnerabilities Faster 2024-05-03 at 14:31 By Kevin Townsend SaaS-based, AI-assisted penetration service allows proactive defensive action against exploitation of new vulnerabilities. The post Horizon3.ai Introduces AI-Assisted Service to Prioritize and Patch Vulnerabilities Faster appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Horizon3.ai Introduces AI-Assisted Service to Prioritize and Patch Vulnerabilities Faster Read More »

1,400 GitLab Servers Impacted by Exploited Vulnerability

exploited, GitLab, Vulnerabilities /

1,400 GitLab Servers Impacted by Exploited Vulnerability 2024-05-02 at 15:16 By Ionut Arghire CISA says a critical GitLab password reset flaw is being exploited in attacks and roughly 1,400 servers have not been patched. The post 1,400 GitLab Servers Impacted by Exploited Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

1,400 GitLab Servers Impacted by Exploited Vulnerability Read More »

Adobe Adds Content Credentials and Firefly to Bug Bounty Program

Adobe, Adobe Firefly, Application Security, bug bounty program, Patch Tuesday, Vulnerabilities /

Adobe Adds Content Credentials and Firefly to Bug Bounty Program 2024-05-01 at 18:33 By Ionut Arghire Adobe is providing incentives for bug bounty hackers to report security flaws in its implementation of Content Credentials and Adobe Firefly. The post Adobe Adds Content Credentials and Firefly to Bug Bounty Program appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Adobe Adds Content Credentials and Firefly to Bug Bounty Program Read More »

Google Boosts Bug Bounty Payouts Tenfold in Mobile App Security Push

bug bounty program, Google, Google Play, Malware & Threats, Mobile & Wireless, Vulnerabilities /

Google Boosts Bug Bounty Payouts Tenfold in Mobile App Security Push 2024-05-01 at 18:33 By Ionut Arghire Researchers can earn as much as $450,000 for a single vulnerability report as Google boosts its mobile vulnerability rewards program. The post Google Boosts Bug Bounty Payouts Tenfold in Mobile App Security Push appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Google Boosts Bug Bounty Payouts Tenfold in Mobile App Security Push Read More »

Docker Hub Users Targeted With Imageless, Malicious Repositories

cloud security, Docker Hub, JFrog, Vulnerabilities /

Docker Hub Users Targeted With Imageless, Malicious Repositories 2024-04-30 at 20:46 By Ionut Arghire JFrog raises an alarm after finding three large-scale malware campaigns targeting Docker Hub with imageless repositories. The post Docker Hub Users Targeted With Imageless, Malicious Repositories appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Docker Hub Users Targeted With Imageless, Malicious Repositories Read More »

Scroll to Top