Vulnerabilities

Perimeter81 Vulnerability Disclosed After Botched Disclosure Process

Vulnerabilities, vulnerability /

Perimeter81 Vulnerability Disclosed After Botched Disclosure Process 24/07/2023 at 14:30 By Eduard Kovacs Cybersecurity firm Perimeter81 appears to have botched the responsible disclosure process for a privilege escalation vulnerability found in its macOS application. The post Perimeter81 Vulnerability Disclosed After Botched Disclosure Process appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS […]

React to this headline:

Loading spinner

Perimeter81 Vulnerability Disclosed After Botched Disclosure Process Read More »

Atlassian Patches Remote Code Execution Vulnerabilities in Confluence, Bamboo

Atlassian, Confluence, Vulnerabilities /

Atlassian Patches Remote Code Execution Vulnerabilities in Confluence, Bamboo 24/07/2023 at 14:30 By Ionut Arghire Atlassian patches high-severity remote code execution vulnerabilities in Confluence and Bamboo products. The post Atlassian Patches Remote Code Execution Vulnerabilities in Confluence, Bamboo appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React

React to this headline:

Loading spinner

Atlassian Patches Remote Code Execution Vulnerabilities in Confluence, Bamboo Read More »

OpenMeetings Flaws Allow Hackers to Hijack Instances, Execute Code on Servers

Vulnerabilities, vulnerability /

OpenMeetings Flaws Allow Hackers to Hijack Instances, Execute Code on Servers 21/07/2023 at 16:03 By Ionut Arghire Three vulnerabilities in Apache OpenMeetings could be exploited by attackers to take over an administrator account and execute arbitrary code remotely. The post OpenMeetings Flaws Allow Hackers to Hijack Instances, Execute Code on Servers appeared first on SecurityWeek.

React to this headline:

Loading spinner

OpenMeetings Flaws Allow Hackers to Hijack Instances, Execute Code on Servers Read More »

Citrix Zero-Day Exploited Against Critical Infrastructure Organization

Citrix, exploited, Featured, Vulnerabilities, Zero-Day /

Citrix Zero-Day Exploited Against Critical Infrastructure Organization 21/07/2023 at 13:33 By Eduard Kovacs CISA says the new Citrix zero day vulnerability tracked as CVE-2023-3519 has been exploited against a critical infrastructure organization. The post Citrix Zero-Day Exploited Against Critical Infrastructure Organization appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

Citrix Zero-Day Exploited Against Critical Infrastructure Organization Read More »

New AMI BMC Flaws Allowing Takeover and Physical Damage Could Impact Millions of Devices

AMI, BMC, Endpoint Security, Vulnerabilities /

New AMI BMC Flaws Allowing Takeover and Physical Damage Could Impact Millions of Devices 20/07/2023 at 21:18 By Eduard Kovacs Two new serious vulnerabilities in AMI BMC, which is used by millions of devices, can allow attackers to take control of systems and cause physical damage. The post New AMI BMC Flaws Allowing Takeover and

React to this headline:

Loading spinner

New AMI BMC Flaws Allowing Takeover and Physical Damage Could Impact Millions of Devices Read More »

Adobe Releases New Patches for Exploited ColdFusion Vulnerabilities

Adobe, ColdFusion, exploited, Vulnerabilities /

Adobe Releases New Patches for Exploited ColdFusion Vulnerabilities 20/07/2023 at 12:20 By Eduard Kovacs Adobe releases a second round of patches for recent ColdFusion vulnerabilities, including flaws that have been exploited in attacks. The post Adobe Releases New Patches for Exploited ColdFusion Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Adobe Releases New Patches for Exploited ColdFusion Vulnerabilities Read More »

Chrome 115 Patches 20 Vulnerabilities

Vulnerabilities /

Chrome 115 Patches 20 Vulnerabilities 19/07/2023 at 13:32 By Ionut Arghire Chrome 115 released with patches for 20 vulnerabilities, including 11 reported by external researchers, who earned thousands of dollars in bug bounties. The post Chrome 115 Patches 20 Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Chrome 115 Patches 20 Vulnerabilities Read More »

Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned

Citrix, exploited, Vulnerabilities, Zero-Day /

Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned 19/07/2023 at 13:32 By Eduard Kovacs Citrix has patched several vulnerabilities, including CVE-2023-3519, a critical remote code execution zero-day that has been exploited in attacks. The post Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned Read More »

Oracle Releases 508 New Security Patches With July 2023 CPU

Oracle, Vulnerabilities /

Oracle Releases 508 New Security Patches With July 2023 CPU 19/07/2023 at 13:32 By Ionut Arghire Oracle has released 508 new security patches as part of the July 2023 CPU, including more than 70 that address critical vulnerabilities The post Oracle Releases 508 New Security Patches With July 2023 CPU appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Oracle Releases 508 New Security Patches With July 2023 CPU Read More »

Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks

Adobe, ColdFusion, exploited, Featured, Vulnerabilities /

Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks 18/07/2023 at 14:19 By Eduard Kovacs At least two new Adobe ColdFusion vulnerabilities have been exploited in the wild, including one that has not been completely patched by the software giant. The post Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks Read More »

Exploitation of ColdFusion Vulnerability Reported as Adobe Patches Another Critical Flaw

Adobe, exploited, Vulnerabilities /

Exploitation of ColdFusion Vulnerability Reported as Adobe Patches Another Critical Flaw 17/07/2023 at 13:31 By Ionut Arghire Adobe patches critical code execution vulnerability in ColdFusion for which a proof-of-concept (PoC) blog exists. The post Exploitation of ColdFusion Vulnerability Reported as Adobe Patches Another Critical Flaw appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Exploitation of ColdFusion Vulnerability Reported as Adobe Patches Another Critical Flaw Read More »

Critical Cisco SD-WAN Vulnerability Leads to Information Leaks

Vulnerabilities /

Critical Cisco SD-WAN Vulnerability Leads to Information Leaks 14/07/2023 at 15:34 By Ionut Arghire A critical vulnerability in the Cisco SD-WAN vManage software could allow unauthenticated attackers to retrieve information from vulnerable instances. The post Critical Cisco SD-WAN Vulnerability Leads to Information Leaks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Critical Cisco SD-WAN Vulnerability Leads to Information Leaks Read More »

Hackers Target Reddit Alternative Lemmy via Zero-Day Vulnerability

Lemmy, Vulnerabilities, XSS /

Hackers Target Reddit Alternative Lemmy via Zero-Day Vulnerability 14/07/2023 at 14:34 By Eduard Kovacs Several instances of the Reddit alternative Lemmy were hacked in recent days by attackers who had exploited a zero-day vulnerability. The post Hackers Target Reddit Alternative Lemmy via Zero-Day Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Hackers Target Reddit Alternative Lemmy via Zero-Day Vulnerability Read More »

Google Researchers Discover In-the-Wild Exploitation of Zimbra Zero-Day

Featured, Vulnerabilities, Zero-Day, Zimbra /

Google Researchers Discover In-the-Wild Exploitation of Zimbra Zero-Day 14/07/2023 at 13:06 By Eduard Kovacs Google researchers have discovered that a Zimbra zero-day vulnerability has been exploited in the wild, with users being advised to manually patch their installations. The post Google Researchers Discover In-the-Wild Exploitation of Zimbra Zero-Day appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Google Researchers Discover In-the-Wild Exploitation of Zimbra Zero-Day Read More »

API Flaw in QuickBlox Framework Exposed PII of Millions of Users

API, Application Security, Vulnerabilities /

API Flaw in QuickBlox Framework Exposed PII of Millions of Users 13/07/2023 at 21:18 By Kevin Townsend QuickBlox SDK and API vulnerabilities impact chat and video applications used by industries including telemedicine, smart IoT, and finance. The post API Flaw in QuickBlox Framework Exposed PII of Millions of Users appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

API Flaw in QuickBlox Framework Exposed PII of Millions of Users Read More »

Popular WordPress Security Plugin Caught Logging Plaintext Passwords

Vulnerabilities /

Popular WordPress Security Plugin Caught Logging Plaintext Passwords 13/07/2023 at 17:46 By Ionut Arghire The All-In-One Security (AIOS) WordPress plugin was found to be writing plaintext passwords to log files. The post Popular WordPress Security Plugin Caught Logging Plaintext Passwords appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Popular WordPress Security Plugin Caught Logging Plaintext Passwords Read More »

Juniper Networks Patches High-Severity Vulnerabilities in Junos OS

Juniper, Vulnerabilities /

Juniper Networks Patches High-Severity Vulnerabilities in Junos OS 13/07/2023 at 15:31 By Ionut Arghire Juniper Networks has patched multiple high-severity vulnerabilities in Junos OS, Junos OS Evolved, and Junos Space. The post Juniper Networks Patches High-Severity Vulnerabilities in Junos OS appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Juniper Networks Patches High-Severity Vulnerabilities in Junos OS Read More »

SonicWall Patches Critical Vulnerabilities in GMS, Analytics Products

SonicWall, Vulnerabilities /

SonicWall Patches Critical Vulnerabilities in GMS, Analytics Products 13/07/2023 at 14:47 By Ionut Arghire SonicWall patches four critical-severity vulnerabilities in its Global Management System (GMS) and Analytics products. The post SonicWall Patches Critical Vulnerabilities in GMS, Analytics Products appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React

React to this headline:

Loading spinner

SonicWall Patches Critical Vulnerabilities in GMS, Analytics Products Read More »

Apple Re-Releases Urgent Zero-Day Patches With Fix for Website Access Issue

Vulnerabilities /

Apple Re-Releases Urgent Zero-Day Patches With Fix for Website Access Issue 13/07/2023 at 14:47 By Eduard Kovacs Apple has re-released its Rapid Security Response updates for iOS and macOS after fixing a website access issue caused by the original patches. The post Apple Re-Releases Urgent Zero-Day Patches With Fix for Website Access Issue appeared first

React to this headline:

Loading spinner

Apple Re-Releases Urgent Zero-Day Patches With Fix for Website Access Issue Read More »

APT Exploit Targeting Rockwell Automation Flaws Could Threaten Critical Infrastructure

exploit, Featured, ICS, ICS/OT, Malware & Threats, Rockwell Automation, Vulnerabilities /

APT Exploit Targeting Rockwell Automation Flaws Could Threaten Critical Infrastructure 13/07/2023 at 13:32 By Eduard Kovacs Two Rockwell Automation product vulnerabilities have been used for a new exploit by an APT group that could use it to target critical infrastructure. The post APT Exploit Targeting Rockwell Automation Flaws Could Threaten Critical Infrastructure appeared first on

React to this headline:

Loading spinner

APT Exploit Targeting Rockwell Automation Flaws Could Threaten Critical Infrastructure Read More »

Scroll to Top