Recent Adobe Commerce Vulnerability Exploited in Wild 2024-07-18 at 18:01 By Ionut Arghire Adobe and CISA warn that a recent Adobe Commerce vulnerability has been exploited in the wild. The post Recent Adobe Commerce Vulnerability Exploited in Wild appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
Recent Adobe Commerce Vulnerability Exploited in Wild Read More »
Ivanti Issues Hotfix for High-Severity Endpoint Manager Vulnerability 2024-07-18 at 14:46 By Ionut Arghire Ivanti has released a hotfix to address an SQL injection vulnerability in Endpoint Manager (EPM) 2024 flat. The post Ivanti Issues Hotfix for High-Severity Endpoint Manager Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View
Ivanti Issues Hotfix for High-Severity Endpoint Manager Vulnerability Read More »
Cisco Patches Critical Vulnerabilities in Secure Email Gateway, SSM 2024-07-18 at 14:46 By Ionut Arghire Cisco has released patches for critical vulnerabilities in Secure Email Gateway and Smart Software Manager On-Prem. The post Cisco Patches Critical Vulnerabilities in Secure Email Gateway, SSM appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed
Cisco Patches Critical Vulnerabilities in Secure Email Gateway, SSM Read More »
Atlassian Patches High-Severity Vulnerabilities in Bamboo, Confluence, Jira 2024-07-17 at 20:01 By Ionut Arghire Atlassian releases security-themed updates to fix several high-severity vulnerabilities in its Bamboo, Confluence and Jira products. The post Atlassian Patches High-Severity Vulnerabilities in Bamboo, Confluence, Jira appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original
Atlassian Patches High-Severity Vulnerabilities in Bamboo, Confluence, Jira Read More »
Apache HugeGraph Vulnerability Exploited in Wild 2024-07-17 at 14:16 By Eduard Kovacs A recently patched Apache HugeGraph-Server vulnerability tracked as CVE-2024-27348 is being targeted in attacks. The post Apache HugeGraph Vulnerability Exploited in Wild appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
Apache HugeGraph Vulnerability Exploited in Wild Read More »
Oracle Patches 240 Vulnerabilities With July 2024 CPU 2024-07-17 at 13:01 By Ionut Arghire Oracle releases 386 new security patches to resolve roughly 240 unique CVEs as part of its July 2024 Critical Patch Update. The post Oracle Patches 240 Vulnerabilities With July 2024 CPU appeared first on SecurityWeek. This article is an excerpt from
Oracle Patches 240 Vulnerabilities With July 2024 CPU Read More »
Chrome 126 Updates Patch High-Severity Vulnerabilities 2024-07-17 at 13:01 By Ionut Arghire Chrome 126 security updates released this week resolve high-severity vulnerabilities reported by external researchers. The post Chrome 126 Updates Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
Chrome 126 Updates Patch High-Severity Vulnerabilities Read More »
Organizations Warned of Exploited GeoServer Vulnerability 2024-07-16 at 19:16 By Ionut Arghire CISA says it has evidence that a recent critical-severity vulnerability in GeoServer is exploited in the wild. The post Organizations Warned of Exploited GeoServer Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
Organizations Warned of Exploited GeoServer Vulnerability Read More »
Microsoft Says Windows Not Impacted by regreSSHion as Second OpenSSH Bug Is Found 2024-07-15 at 14:31 By Eduard Kovacs A second remote code execution vulnerability, tracked as CVE-2024-6409, was found in OpenSSH during an analysis of the regreSSHion flaw. The post Microsoft Says Windows Not Impacted by regreSSHion as Second OpenSSH Bug Is Found appeared
Microsoft Says Windows Not Impacted by regreSSHion as Second OpenSSH Bug Is Found Read More »
Critical Exim Flaw Allows Attackers to Deliver Malicious Executables to Mailboxes 2024-07-12 at 18:31 By Ionut Arghire Successful exploitation could allow attackers to deliver executable attachments to inboxes. The post Critical Exim Flaw Allows Attackers to Deliver Malicious Executables to Mailboxes appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View
Critical Exim Flaw Allows Attackers to Deliver Malicious Executables to Mailboxes Read More »
GitLab Ships Update for Critical Pipeline Execution Vulnerability 2024-07-11 at 18:01 By Ionut Arghire GitLab issues an advisory for a critical-severity vulnerability that allows an attacker to trigger a pipeline as another user. The post GitLab Ships Update for Critical Pipeline Execution Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS
GitLab Ships Update for Critical Pipeline Execution Vulnerability Read More »
Palo Alto Networks Addresses BlastRADIUS Vulnerability, Fixes Critical Bug in Expedition Tool 2024-07-11 at 14:01 By Ionut Arghire Palo Alto Networks patched a critical vulnerability in its Expedition tool and addressed the impact of the recently disclosed BlastRADIUS vulnerability. The post Palo Alto Networks Addresses BlastRADIUS Vulnerability, Fixes Critical Bug in Expedition Tool appeared first
VMware Patches Critical SQL-Injection Flaw in Aria Automation 2024-07-10 at 20:01 By Ryan Naraine VMware warns that authenticated malicious users could enter specially crafted SQL queries and perform unauthorized read/write operations in the database. The post VMware Patches Critical SQL-Injection Flaw in Aria Automation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
VMware Patches Critical SQL-Injection Flaw in Aria Automation Read More »
Citrix Patches Critical NetScaler Console Vulnerability 2024-07-10 at 16:46 By Ionut Arghire Citrix rolls out patches for multiple security vulnerabilities, including critical and high-severity issues in the NetScaler product line. The post Citrix Patches Critical NetScaler Console Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
Citrix Patches Critical NetScaler Console Vulnerability Read More »
ICS Patch Tuesday: Siemens, Schneider Electric, CISA Issue Advisories 2024-07-10 at 15:01 By Ionut Arghire Several ICS vendors released advisories on Tuesday to inform customers about vulnerabilities found in industrial and OT products. The post ICS Patch Tuesday: Siemens, Schneider Electric, CISA Issue Advisories appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
ICS Patch Tuesday: Siemens, Schneider Electric, CISA Issue Advisories Read More »
Microsoft Warns of Windows Hyper-V Zero-Day Being Exploited 2024-07-09 at 22:04 By Ryan Naraine Patch Tuesday: Microsoft patches more than 140 security vulnerabilities in the Windows ecosystem, including a pair of exploited zero-days. The post Microsoft Warns of Windows Hyper-V Zero-Day Being Exploited appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS
Microsoft Warns of Windows Hyper-V Zero-Day Being Exploited Read More »
BlastRADIUS Attack Exposes Critical Flaw in 30-Year-Old RADIUS Protocol 2024-07-09 at 20:22 By Ryan Naraine Security vendor InkBridge Networks calls urgent attention to the discovery of a decades-old design flaw (CVE-2024-3596) in the popular RADIUS protocol. The post BlastRADIUS Attack Exposes Critical Flaw in 30-Year-Old RADIUS Protocol appeared first on SecurityWeek. This article is an
BlastRADIUS Attack Exposes Critical Flaw in 30-Year-Old RADIUS Protocol Read More »
SAP Patches High-Severity Vulnerabilities in PDCE, Commerce 2024-07-09 at 20:22 By Ionut Arghire Patch Tuesday: Enterprise software vendor SAP releases patches for high-severity vulnerabilities in multiple products and tools. The post SAP Patches High-Severity Vulnerabilities in PDCE, Commerce appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
SAP Patches High-Severity Vulnerabilities in PDCE, Commerce Read More »
Adobe Issues Critical Patches for Multiple Products, Warns of Code Execution Risks 2024-07-09 at 19:49 By Ryan Naraine Adobe documents at least seven code execution bugs affecting Adobe Premiere Pro, Adobe InDesign and Adobe Bridge on Windows and macOS. The post Adobe Issues Critical Patches for Multiple Products, Warns of Code Execution Risks appeared first
Adobe Issues Critical Patches for Multiple Products, Warns of Code Execution Risks Read More »
Attackers Exploiting Remote Code Execution Vulnerability in Ghostscript 2024-07-08 at 15:01 By Ionut Arghire Vulnerability in Ghostscript (CVE-2024-29510) allows attackers to bypass sandbox for remote code execution. The post Attackers Exploiting Remote Code Execution Vulnerability in Ghostscript appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source
Attackers Exploiting Remote Code Execution Vulnerability in Ghostscript Read More »