All posts tagged "Authentication bypass"

• 

  2.3K

  Vulnerabilities

  CISA Warns of Actively Exploited JetBrains TeamCity Vulnerability

  The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a critical security flaw impacting JetBrains TeamCity On-Premises software to its...

• 

  1.9K

  Vulnerabilities

  Critical Flaws Found in ConnectWise ScreenConnect Software – Patch Now

  ConnectWise has released software updates to address two security flaws in its ScreenConnect remote desktop and access software, including a critical bug...

• 

  3.8K

  Vulnerabilities

  Warning: New Ivanti Auth Bypass Flaw Affects Connect Secure and ZTA Gateways

  Ivanti has alerted customers of yet another high-severity security flaw in its Connect Secure, Policy Secure, and ZTA gateway devices that could...

• 

  4.1K

  Vulnerabilities

  Patch Your GoAnywhere MFT Immediately – Critical Flaw Lets Anyone Be Admin

  A critical security flaw has been disclosed in Fortra’s GoAnywhere Managed File Transfer (MFT) software that could be abused to create a...

• 

  811

  Vulnerabilities

  New PoC Exploit for Apache OfBiz Vulnerability Poses Risk to ERP Systems

  Cybersecurity researchers have developed a proof-of-concept (PoC) code that exploits a recently disclosed critical flaw in the Apache OfBiz open-source Enterprise Resource...

• 

  5.2K

  Vulnerabilities

  Critical Zero-Day in Apache OfBiz ERP System Exposes Businesses to Attack

  A new zero-day security flaw has been discovered in Apache OfBiz, an open-source Enterprise Resource Planning (ERP) system that could be exploited...

• 

  3.0K

  Vulnerabilities

  New Bluetooth Flaw Let Hackers Take Over Android, Linux, macOS, and iOS Devices

  A critical Bluetooth security flaw could be exploited by threat actors to take control of Android, Linux, macOS and iOS devices. Tracked...

• 

  342

  Vulnerabilities

  Urgent: VMware Warns of Unpatched Critical Cloud Director Vulnerability

  VMware is warning of a critical and unpatched security flaw in Cloud Director that could be exploited by a malicious actor to...

• 

  209

  Cyber Attack

  CISA Sets a Deadline – Patch Juniper Junos OS Flaws Before November 17

  The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has given a November 17, 2023, deadline for federal agencies and organizations to apply...

• 

  2.5K

  Vulnerabilities

  CISA Warns of Active Exploitation of JetBrains and Windows Vulnerabilities

  The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added two security flaws to its Known Exploited Vulnerabilities (KEV) catalog due...

• 

  3.7K

  Vulnerabilities

  Citrix Issues Patches for Critical Flaw Affecting ADC and Gateway Products

  Citrix has released security updates to address a critical authentication bypass flaw in the application delivery controller (ADC) and Gateway products that...

• 

  4.2K

  Vulnerabilities

  VMware Warns of 3 New Critical Flaws Affecting Workspace ONE Assist Software

  VMware has patched five security flaws affecting its Workspace ONE Assist solution, some of which could be exploited to bypass authentication and...

• Vulnerabilities

  Researchers Disclose Details of Critical ‘CosMiss’ RCE Flaw Affecting Azure Cosmos DB

  Microsoft on Tuesday said it addressed an authentication bypass vulnerability in Jupyter Notebooks for Azure Cosmos DB that enabled full read and...

• 

  1.1K

  Vulnerabilities

  Fortinet Warns of New Auth Bypass Flaw Affecting FortiGate and FortiProxy

  Fortinet has privately warned its customers of a security flaw affecting FortiGate firewalls and FortiProxy web proxies that could potentially allow an...

• 

  4.4K

  Vulnerabilities

  Researchers Warn of Ongoing Mass Exploitation of Zimbra RCE Vulnerability

  The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two flaws to its Known Exploited Vulnerabilities Catalog, citing evidence of...

• 

  3.8K

  Vulnerabilities

  Atlassian Drops Patches for Critical Jira Authentication Bypass Vulnerability

  Atlassian has published a security advisory warning of a critical vulnerability in its Jira software that could be abused by a remote,...

• 

  3.6K

  Vulnerabilities

  Critical VMware Workspace ONE Access Flaw Under Active Exploitation in the Wild

  A week after VMware released patches to remediate eight security vulnerabilities in VMware Workspace ONE Access, threat actors have begun to actively...

• 

  4.8K

  Vulnerabilities

  Severe Auth Bypass and Priv-Esc Vulnerabilities Disclosed in OpenBSD

  OpenBSD, an open-source operating system built with security in mind, has been found vulnerable to four new high-severity security vulnerabilities, one of...

• 

  293

  Mobile Security

  Samsung Galaxy iris recognition can be Hacked simply with Owner’s Photo

  Security specialists from Chaos Computer Clubs found basic strides to break iris recognition system scanner of the new Samsung Galaxy S8. Samsung...