Vulnerabilities

Microsoft Patches Sensitive Information Disclosure Vulnerability in Azure CLI

Azure, Vulnerabilities /

Microsoft Patches Sensitive Information Disclosure Vulnerability in Azure CLI 15/11/2023 at 18:02 By Ionut Arghire Microsoft provided guidance on an Azure CLI bug leading to the exposure of sensitive information through GitHub Actions logs. The post Microsoft Patches Sensitive Information Disclosure Vulnerability in Azure CLI appeared first on SecurityWeek. This article is an excerpt from […]

React to this headline:

Loading spinner

Microsoft Patches Sensitive Information Disclosure Vulnerability in Azure CLI Read More »

SAP Patches Critical Vulnerability in Business One Product

SAP, Vulnerabilities /

SAP Patches Critical Vulnerability in Business One Product 15/11/2023 at 17:01 By Ionut Arghire SAP released a hotfix for a critical-severity improper access control vulnerability in Business One product installation. The post SAP Patches Critical Vulnerability in Business One Product appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

SAP Patches Critical Vulnerability in Business One Product Read More »

Chipmaker Patch Tuesday: Intel, AMD Address Over 130 Vulnerabilities

Amd, CPU vulnerability, Endpoint Security, Intel, Vulnerabilities /

Chipmaker Patch Tuesday: Intel, AMD Address Over 130 Vulnerabilities 15/11/2023 at 13:17 By Eduard Kovacs Intel and AMD have informed their customers about a total of more than 130 vulnerabilities found in their products. The post Chipmaker Patch Tuesday: Intel, AMD Address Over 130 Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Chipmaker Patch Tuesday: Intel, AMD Address Over 130 Vulnerabilities Read More »

Critical Authentication Bypass Flaw in VMware Cloud Director Appliance

cloud security, CVE-2023-34060, CVSS 9.8, Network Security, Patch Tuesday, VMWare, Vulnerabilities /

Critical Authentication Bypass Flaw in VMware Cloud Director Appliance 15/11/2023 at 00:32 By Ryan Naraine VMware flaw carries a CVSS severity-score of 9.8/10 and can be exploited to bypass login restrictions when authenticating on certain ports. The post Critical Authentication Bypass Flaw in VMware Cloud Director Appliance appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Critical Authentication Bypass Flaw in VMware Cloud Director Appliance Read More »

Microsoft Warns of Critical Bugs Being Exploited in the Wild

Adobe, CVE-2023-36033, CVE-2023-36036, Incident Response, Microsoft, Patch Tuesday, Threat Intelligence, Vulnerabilities /

Microsoft Warns of Critical Bugs Being Exploited in the Wild 14/11/2023 at 23:47 By Ryan Naraine Patch Tuesday: Redmond’s security response team flags two vulnerabilities — CVE-2023-36033 and CVE-2023-36036 — already being exploited in the wild. The post Microsoft Warns of Critical Bugs Being Exploited in the Wild appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Microsoft Warns of Critical Bugs Being Exploited in the Wild Read More »

Protected Virtual Machines Exposed to New ‘CacheWarp’ AMD CPU Attack

Amd, CPU, Featured, Vulnerabilities /

Protected Virtual Machines Exposed to New ‘CacheWarp’ AMD CPU Attack 14/11/2023 at 21:46 By Eduard Kovacs CacheWarp is a new attack method affecting a security feature present in AMD processors that can pose a risk to virtual machines. The post Protected Virtual Machines Exposed to New ‘CacheWarp’ AMD CPU Attack appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Protected Virtual Machines Exposed to New ‘CacheWarp’ AMD CPU Attack Read More »

Adobe Patch Tuesday: Critical Bugs in Acrobat, Reader, ColdFusion

Acrobat and Reader, Adobe, Application Security, ColdFusion, Malware & Threats, Patch Tuesday, Vulnerabilities /

Adobe Patch Tuesday: Critical Bugs in Acrobat, Reader, ColdFusion 14/11/2023 at 21:46 By Ryan Naraine Adobe patches 72 security bugs and calls special attention to code-execution defects in the widely deployed Acrobat and Reader software. The post Adobe Patch Tuesday: Critical Bugs in Acrobat, Reader, ColdFusion appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Adobe Patch Tuesday: Critical Bugs in Acrobat, Reader, ColdFusion Read More »

SysAid Zero-Day Vulnerability Exploited by Ransomware Group

Cl0p, exploited, Ransomware, SysAid, Vulnerabilities, Zero-Day /

SysAid Zero-Day Vulnerability Exploited by Ransomware Group 09/11/2023 at 13:32 By Eduard Kovacs CVE-2023-47246 zero-day vulnerability in SysAid IT service management software has been exploited by Cl0p ransomware affiliates. The post SysAid Zero-Day Vulnerability Exploited by Ransomware Group appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React

React to this headline:

Loading spinner

SysAid Zero-Day Vulnerability Exploited by Ransomware Group Read More »

Critical Vulnerabilities Expose Veeam ONE Software to Code Execution

CVE-2023-38547, CVE-2023-38548, Endpoint Security, Network Security, Veeam, Veeam ONE, Vulnerabilities /

Critical Vulnerabilities Expose Veeam ONE Software to Code Execution 07/11/2023 at 19:46 By Ionut Arghire Veeam Software has rolled out patches to cover code execution vulnerabilities in its Veeam ONE IT monitoring product. The post Critical Vulnerabilities Expose Veeam ONE Software to Code Execution appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Critical Vulnerabilities Expose Veeam ONE Software to Code Execution Read More »

Exploitation of Critical Confluence Vulnerability Begins

Confluence, exploited, Vulnerabilities /

Exploitation of Critical Confluence Vulnerability Begins 06/11/2023 at 15:47 By Ionut Arghire Threat actors have started exploiting a recent critical vulnerability in Confluence Data Center and Confluence Server. The post Exploitation of Critical Confluence Vulnerability Begins appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this

React to this headline:

Loading spinner

Exploitation of Critical Confluence Vulnerability Begins Read More »

Microsoft Says Exchange ‘Zero Days’ Disclosed by ZDI Already Patched or Not Urgent

Exchange, Featured, Vulnerabilities /

Microsoft Says Exchange ‘Zero Days’ Disclosed by ZDI Already Patched or Not Urgent 06/11/2023 at 13:30 By Eduard Kovacs Microsoft says four Exchange ‘zero-days’ disclosed by ZDI have either already been patched or they don’t require immediate attention. The post Microsoft Says Exchange ‘Zero Days’ Disclosed by ZDI Already Patched or Not Urgent appeared first

React to this headline:

Loading spinner

Microsoft Says Exchange ‘Zero Days’ Disclosed by ZDI Already Patched or Not Urgent Read More »

Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway

Citrix, Citrix Bleed, exploited, Malware & Threats, Vulnerabilities /

Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway 01/11/2023 at 17:31 By Ionut Arghire Multiple threat actors are exploiting CVE-2023-4966, aka Citrix Bleed, a critical vulnerability in NetScaler ADC and Gateway. The post Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

Mass Exploitation of ‘Citrix Bleed’ Vulnerability Underway Read More »

Chrome 119 Patches 15 Vulnerabilities

Chrome, Vulnerabilities /

Chrome 119 Patches 15 Vulnerabilities 01/11/2023 at 17:31 By Ionut Arghire Chrome 119 is rolling out to Linux, macOS, and Windows users with patches for 15 vulnerabilities. The post Chrome 119 Patches 15 Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to this headline:

React to this headline:

Loading spinner

Chrome 119 Patches 15 Vulnerabilities Read More »

Atlassian CISO Urges Quick Action to Protect Confluence Instances From Critical Vulnerability

Data Exposure, Data Protection, Vulnerabilities, vulnerability /

Atlassian CISO Urges Quick Action to Protect Confluence Instances From Critical Vulnerability 31/10/2023 at 21:30 By Ionut Arghire Atlassian warns that a critical vulnerability in Confluence Data Center and Server could lead to significant data loss if exploited. The post Atlassian CISO Urges Quick Action to Protect Confluence Instances From Critical Vulnerability appeared first on

React to this headline:

Loading spinner

Atlassian CISO Urges Quick Action to Protect Confluence Instances From Critical Vulnerability Read More »

Hackers Earn Over $1 Million at Pwn2Own Toronto 2023

Pwn2Own, Vulnerabilities /

Hackers Earn Over $1 Million at Pwn2Own Toronto 2023 30/10/2023 at 16:46 By Ionut Arghire Hackers have demonstrated 58 zero-days and earned more than $1 million in rewards at Pwn2Own Toronto 2023. The post Hackers Earn Over $1 Million at Pwn2Own Toronto 2023 appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Hackers Earn Over $1 Million at Pwn2Own Toronto 2023 Read More »

F5 Warns of Critical Remote Code Execution Vulnerability in BIG-IP

F5, Vulnerabilities, vulnerability /

F5 Warns of Critical Remote Code Execution Vulnerability in BIG-IP 27/10/2023 at 17:47 By Ionut Arghire A critical-severity vulnerability in F5 BIG-IP CVE-2023-46747 allows unauthenticated attackers to execute code remotely. The post F5 Warns of Critical Remote Code Execution Vulnerability in BIG-IP appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

F5 Warns of Critical Remote Code Execution Vulnerability in BIG-IP Read More »

Critical Mirth Connect Vulnerability Could Expose Sensitive Healthcare Data

healthcare, Vulnerabilities /

Critical Mirth Connect Vulnerability Could Expose Sensitive Healthcare Data 26/10/2023 at 22:03 By Ionut Arghire Mirth Connect versions prior to 4.4.1 are vulnerable to CVE-2023-43208, a bypass for an RCE vulnerability. The post Critical Mirth Connect Vulnerability Could Expose Sensitive Healthcare Data appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Critical Mirth Connect Vulnerability Could Expose Sensitive Healthcare Data Read More »

Hackers Earn $350k on Second Day at Pwn2Own Toronto 2023

IoT Security, Pwn2Own, Vulnerabilities /

Hackers Earn $350k on Second Day at Pwn2Own Toronto 2023 26/10/2023 at 20:02 By Ionut Arghire Smart speakers, printers, routers, NAS devices, and mobile phones were hacked on the second day at Pwn2Own Toronto 2023. The post Hackers Earn $350k on Second Day at Pwn2Own Toronto 2023 appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Hackers Earn $350k on Second Day at Pwn2Own Toronto 2023 Read More »

iLeakage Attack Exploits Safari to Steal Sensitive Data From Macs, iPhones

apple, Featured, Mobile & Wireless, side-channel attack, Vulnerabilities /

iLeakage Attack Exploits Safari to Steal Sensitive Data From Macs, iPhones 26/10/2023 at 19:32 By Eduard Kovacs New iLeakage side-channel speculative execution attack exploits Safari to steal sensitive information from Macs and iPhones. The post iLeakage Attack Exploits Safari to Steal Sensitive Data From Macs, iPhones appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

iLeakage Attack Exploits Safari to Steal Sensitive Data From Macs, iPhones Read More »

Apple Ships Major iOS, macOS Security Updates

apple, Endpoint Security, iOS, macOS, Malware & Threats, Mobile & Wireless, Vulnerabilities, WebKit /

Apple Ships Major iOS, macOS Security Updates 25/10/2023 at 23:01 By Ryan Naraine Apple patches dozens of serious security flaws in its macOS and iOS platforms, warning that hackers could launch code execution exploits. The post Apple Ships Major iOS, macOS Security Updates appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Apple Ships Major iOS, macOS Security Updates Read More »

Scroll to Top