Vulnerabilities

Flaws in Juniper Switches and Firewalls Can Be Chained for Remote Code Execution

Flaws in Juniper Switches and Firewalls Can Be Chained for Remote Code Execution 21/08/2023 at 14:01 By Ionut Arghire Juniper Networks has released Junos OS updates to address J-Web vulnerabilities that can be combined to achieve unauthenticated, remote code execution. The post Flaws in Juniper Switches and Firewalls Can Be Chained for Remote Code Execution […]

Flaws in Juniper Switches and Firewalls Can Be Chained for Remote Code Execution Read More »

In Other News: US Hacking China, Unfixed PowerShell Gallery Flaws, Free Train Tickets

In Other News: US Hacking China, Unfixed PowerShell Gallery Flaws, Free Train Tickets 18/08/2023 at 18:17 By SecurityWeek News Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of August 14, 2023. The post In Other News: US Hacking China, Unfixed PowerShell Gallery

In Other News: US Hacking China, Unfixed PowerShell Gallery Flaws, Free Train Tickets Read More »

Jenkins Patches High-Severity Vulnerabilities in Multiple Plugins

Jenkins Patches High-Severity Vulnerabilities in Multiple Plugins 18/08/2023 at 16:46 By Ionut Arghire Jenkins has announced patches for high and medium-severity vulnerabilities impacting several of the open source automation tool’s plugins. The post Jenkins Patches High-Severity Vulnerabilities in Multiple Plugins appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

Jenkins Patches High-Severity Vulnerabilities in Multiple Plugins Read More »

Companies Respond to ‘Downfall’ Intel CPU Vulnerability 

Companies Respond to ‘Downfall’ Intel CPU Vulnerability  18/08/2023 at 15:49 By Eduard Kovacs Several major companies have published advisories in response to the Downfall vulnerability affecting Intel CPUs. The post Companies Respond to ‘Downfall’ Intel CPU Vulnerability  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Companies Respond to ‘Downfall’ Intel CPU Vulnerability  Read More »

Google Brings AI Magic to Fuzz Testing With Eye-Opening Results

Google Brings AI Magic to Fuzz Testing With Eye-Opening Results 17/08/2023 at 20:46 By Ryan Naraine Google sprinkles magic of generative-AI into its open source fuzz testing infrastructure and finds immediate success with code coverage. The post Google Brings AI Magic to Fuzz Testing With Eye-Opening Results appeared first on SecurityWeek. This article is an

Google Brings AI Magic to Fuzz Testing With Eye-Opening Results Read More »

Cisco Patches High-Severity Vulnerabilities in Enterprise Applications

Cisco Patches High-Severity Vulnerabilities in Enterprise Applications 17/08/2023 at 19:02 By Ionut Arghire Cisco has patched high-severity vulnerabilities in enterprise applications that could lead to privilege escalation, SQL injection, and denial-of-service. The post Cisco Patches High-Severity Vulnerabilities in Enterprise Applications appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

Cisco Patches High-Severity Vulnerabilities in Enterprise Applications Read More »

Exploitation of Citrix ShareFile Vulnerability Spikes as CISA Issues Warning 

Exploitation of Citrix ShareFile Vulnerability Spikes as CISA Issues Warning  17/08/2023 at 12:18 By Eduard Kovacs Exploitation of a Citrix ShareFile vulnerability tracked as CVE-2023-24489 has spiked as CISA added it to its ‘must patch’ catalog. The post Exploitation of Citrix ShareFile Vulnerability Spikes as CISA Issues Warning  appeared first on SecurityWeek. This article is

Exploitation of Citrix ShareFile Vulnerability Spikes as CISA Issues Warning  Read More »

Ivanti Patches Critical Vulnerability in Avalanche Enterprise MDM Solution

Ivanti Patches Critical Vulnerability in Avalanche Enterprise MDM Solution 16/08/2023 at 16:45 By Ionut Arghire Ivanti has patched critical- and high-severity vulnerabilities with the latest release of Avalanche, its enterprise mobile device management solution. The post Ivanti Patches Critical Vulnerability in Avalanche Enterprise MDM Solution appeared first on SecurityWeek. This article is an excerpt from

Ivanti Patches Critical Vulnerability in Avalanche Enterprise MDM Solution Read More »

2,000 Citrix NetScaler Instances Backdoored via Recent Vulnerability

2,000 Citrix NetScaler Instances Backdoored via Recent Vulnerability 15/08/2023 at 19:47 By Ionut Arghire A threat actor has exploited a recent Citrix vulnerability (CVE-2023-3519) to infect roughly 2,000 NetScaler instances with a backdoor. The post 2,000 Citrix NetScaler Instances Backdoored via Recent Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

2,000 Citrix NetScaler Instances Backdoored via Recent Vulnerability Read More »

Power Management Product Flaws Can Expose Data Centers to Damaging Attacks, Spying

Power Management Product Flaws Can Expose Data Centers to Damaging Attacks, Spying 14/08/2023 at 16:16 By Eduard Kovacs Vulnerabilities in CyberPower and Dataprobe power management products could be exploited in data center attacks, including to cause damage and for spying. The post Power Management Product Flaws Can Expose Data Centers to Damaging Attacks, Spying appeared

Power Management Product Flaws Can Expose Data Centers to Damaging Attacks, Spying Read More »

Ford Says Wi-Fi Vulnerability Not a Safety Risk to Vehicles

Ford Says Wi-Fi Vulnerability Not a Safety Risk to Vehicles 14/08/2023 at 13:46 By Ionut Arghire Ford says a critical vulnerability in the TI Wi-Fi driver of the SYNC 3 infotainment system on certain vehicle models does not pose a safety risk. The post Ford Says Wi-Fi Vulnerability Not a Safety Risk to Vehicles appeared

Ford Says Wi-Fi Vulnerability Not a Safety Risk to Vehicles Read More »

Iagona ScrutisWeb Vulnerabilities Could Expose ATMs to Remote Hacking

Iagona ScrutisWeb Vulnerabilities Could Expose ATMs to Remote Hacking 14/08/2023 at 13:46 By Eduard Kovacs Several vulnerabilities discovered in Iagona ScrutisWeb ATM fleet monitoring software could be exploited to remotely hack ATMs. The post Iagona ScrutisWeb Vulnerabilities Could Expose ATMs to Remote Hacking appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

Iagona ScrutisWeb Vulnerabilities Could Expose ATMs to Remote Hacking Read More »

In Other News: macOS Security Reports, Keyboard Spying, VPN Vulnerabilities

In Other News: macOS Security Reports, Keyboard Spying, VPN Vulnerabilities 11/08/2023 at 17:18 By SecurityWeek News Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of August 7, 2023. The post In Other News: macOS Security Reports, Keyboard Spying, VPN Vulnerabilities appeared first

In Other News: macOS Security Reports, Keyboard Spying, VPN Vulnerabilities Read More »

CISA Warns Organizations of Exploited Vulnerability Affecting .NET, Visual Studio 

CISA Warns Organizations of Exploited Vulnerability Affecting .NET, Visual Studio  10/08/2023 at 12:33 By Eduard Kovacs CISA has added CVE-2023-38180, a zero-day vulnerability affecting .NET and Visual Studio, to its Known Exploited Vulnerabilities Catalog. The post CISA Warns Organizations of Exploited Vulnerability Affecting .NET, Visual Studio  appeared first on SecurityWeek. This article is an excerpt

CISA Warns Organizations of Exploited Vulnerability Affecting .NET, Visual Studio  Read More »

Western Digital, Synology NAS Vulnerabilities Exposed Millions of Users’ Files

Western Digital, Synology NAS Vulnerabilities Exposed Millions of Users’ Files 09/08/2023 at 21:03 By Eduard Kovacs Critical vulnerabilities discovered in WD and Synology NAS devices could have exposed the files of millions of users. The post Western Digital, Synology NAS Vulnerabilities Exposed Millions of Users’ Files appeared first on SecurityWeek. This article is an excerpt

Western Digital, Synology NAS Vulnerabilities Exposed Millions of Users’ Files Read More »

Microsoft Paid Out $13 Million via Bug Bounty Programs for Fourth Consecutive Year

Microsoft Paid Out $13 Million via Bug Bounty Programs for Fourth Consecutive Year 09/08/2023 at 17:03 By Eduard Kovacs For the fourth consecutive year, Microsoft has paid out more than $13 million through its bug bounty programs. The post Microsoft Paid Out $13 Million via Bug Bounty Programs for Fourth Consecutive Year appeared first on

Microsoft Paid Out $13 Million via Bug Bounty Programs for Fourth Consecutive Year Read More »

Intel Addresses 80 Firmware, Software Vulnerabilities

Intel Addresses 80 Firmware, Software Vulnerabilities 09/08/2023 at 15:17 By Eduard Kovacs Intel has addressed 80 vulnerabilities affecting its products, including 18 high-severity privilege escalation and DoS flaws. The post Intel Addresses 80 Firmware, Software Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Intel Addresses 80 Firmware, Software Vulnerabilities Read More »

SAP Patches Critical Vulnerability in PowerDesigner Product

SAP Patches Critical Vulnerability in PowerDesigner Product 09/08/2023 at 13:31 By Eduard Kovacs SAP has fixed over a dozen new vulnerabilities with its Patch Tuesday updates, including a critical flaw in its PowerDesigner product. The post SAP Patches Critical Vulnerability in PowerDesigner Product appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

SAP Patches Critical Vulnerability in PowerDesigner Product Read More »

Scroll to Top