Vulnerabilities
-
994Additional Supply Chain Vulnerabilities Uncovered in AMI MegaRAC BMC Software
Two more supply chain security flaws have been disclosed in AMI MegaRAC Baseboard Management Controller (BMC) software, nearly two months after three...
-
4.8KQNAP Fixes Critical Vulnerability in NAS Devices with Latest Security Updates
Taiwanese company QNAP has released updates to remediate a critical security flaw affecting its network-attached storage (NAS) devices that could lead to...
-
173Hackers could take control of Lexmark printers or see what you print if you don’t apply this patch
Lexmark products are susceptible to server-side request forgery because to insufficient input validation in the Web Services capability, as tracked by CVE-2023-23560....
-
3.6K2 Critical vulnerabilities in Argo CD allow complete take over of your Kubernetes
Argo CD is a Kubernetes-based declarative GitOps continuous delivery platform. It is built as a Kubernetes controller that constantly monitors running apps...
-
3.2KRealtek SDK Vulnerability exploited to hack into 190 models of IoT devices from 66 manufacturers
Researchers from Unit 42 discovered that between August and October 2022, more than forty percent of all attacks were attempts to exploit...
-
1.9KVMware Releases Patches for Critical vRealize Log Insight Software Vulnerabilities
VMware on Tuesday released software to remediate four security vulnerabilities affecting vRealize Log Insight (aka Aria Operations for Logs) that could expose...
-
2.3K4 important vulnerabilities patched in VMware vRealize Log Insight
VRealize Log Insight is a log collecting and analytics virtual appliance that gives administrators the ability to collect, display, manage, and analyze...
-
4.8KSecurity Navigator Research: Some Vulnerabilities Date Back to the Last Millennium
Vulnerability analysis results in Orange Cyberdefenses’ Security Navigator show that some vulnerabilities first discovered in 1999 are still found in networks today....
-
4.2KCritical AWS CloudTrail vulnerability allowed attackers to circumvent CloudTrail & GuardDuty logging
CloudTrail is the tool that AWS administrators rely on to keep track of all API activity inside their accounts. CloudTrail helps teams...
-
2.5KChinese Hackers Exploited Recent Fortinet Flaw as 0-Day to Drop Malware
A suspected China-nexus threat actor exploited a recently patched vulnerability in Fortinet FortiOS SSL-VPN as a zero-day in attacks targeting a European...
-
3.1KSudo has a high-severity vulnerability that low-privilege attackers might exploit to get root access
Sudo is one of the most essential, powerful, and often used tools that comes as a core command pre-installed on macOS and...
-
762New Microsoft Azure Vulnerability Uncovered — EmojiDeploy for RCE Attacks
A new critical remote code execution (RCE) flaw discovered impacting multiple services related to Microsoft Azure could be exploited by a malicious...
-
5.0K4 critical BIOS vulnerabilities affect DELL Laptops like Alienware, Inspiron, Vostro models
Technology business Dell has its headquarters in the United States. It is in the business of creating and selling computers as well...
-
2.3KGit Users Urged to Update Software to Prevent Remote Code Execution Attacks
The maintainers of the Git source code version control system have released updates to remediate two critical vulnerabilities that could be exploited...
-
1.1KFour server-side request forgery (SSRF) vulnerabilities impacting different Azure services
Orca, a business that specializes in cloud security, has disclosed information on four server-side request forgery (SSRF) vulnerabilities that affect several Azure...
-
4.8KZoho ManageEngine PoC Exploit to be Released Soon – Patch Before It’s Too Late!
Users of Zoho ManageEngine are being urged to patch their instances against a critical security vulnerability ahead of the release of a...
-
4.8KA new privilege escalation vulnerability in the Linux kernel, enables a local attacker to execute malware on vulnerable systems
A new privilege escalation vulnerability has been identified in the Linux kernel by researcher Davide Ornaghi. This vulnerability might enable a local...
