All posts tagged "vulnerability"

• 

  302

  Vulnerabilities

  CISA Alerts: High-Severity SLP Vulnerability Now Under Active Exploitation

  The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a high-severity flaw in the Service Location Protocol (SLP) to its...

• 

  4.3K

  Vulnerabilities

  QNAP Releases Patch for 2 Critical Flaws Threatening Your NAS Devices

  QNAP has released security updates to address two critical security flaws impacting its operating system that could result in arbitrary code execution....

• 

  1.8K

  Cyber Attack

  Alert: F5 Warns of Active Attacks Exploiting BIG-IP Vulnerability

  F5 is warning of active abuse of a critical security flaw in BIG-IP less than a week after its public disclosure, resulting...

• 

  479

  Vulnerabilities

  F5 Issues Warning: BIG-IP Vulnerability Allows Remote Code Execution

  F5 has alerted customers of a critical security vulnerability impacting BIG-IP that could result in unauthenticated remote code execution. The issue, rooted...

• 

  4.6K

  Vulnerabilities

  Alert: PoC Exploits Released for Citrix and VMware Vulnerabilities

  Virtualization services provider VMware has alerted customers to the existence of a proof-of-concept (PoC) exploit for a recently patched security flaw in...

• 

  2.6K

  Vulnerabilities

  Backdoor Implant on Hacked Cisco Devices Modified to Evade Detection

  The backdoor implanted on Cisco devices by exploiting a pair of zero-day flaws in IOS XE software has been modified by the...

• 

  2.5K

  Vulnerabilities

  Cisco Zero-Day Exploited to Implant Malicious Lua Backdoor on Thousands of Devices

  Cisco has warned of a new zero-day flaw in IOS XE that has been actively exploited by an unknown threat actor to...

• 

  1.1K

  Vulnerabilities

  Microsoft Warns of North Korean Attacks Exploiting JetBrains TeamCity Flaw

  North Korean threat actors are actively exploiting a critical security flaw in JetBrains TeamCity to opportunistically breach vulnerable servers, according to Microsoft....

• 

  3.3K

  Vulnerabilities

  Google TAG Detects State-Backed Threat Actors Exploiting WinRAR Flaw

  A number of state-back threat actors from Russia and China have been observed exploiting a recent security flaw in the WinRAR archiver...

• 

  1.9K

  Vulnerabilities

  New Admin Takeover Vulnerability Exposed in Synology’s DiskStation Manager

  A medium-severity flaw has been discovered in Synology’s DiskStation Manager (DSM) that could be exploited to decipher an administrator’s password and remotely...

• 

  4.0K

  Vulnerabilities

  Critical Vulnerabilities Uncovered in Open Source CasaOS Cloud Software

  Two critical security flaws discovered in the open-source CasaOS personal cloud software could be successfully exploited by attackers to achieve arbitrary code...

• 

  1.3K

  Vulnerabilities

  Warning: Unpatched Cisco Zero-Day Vulnerability Actively Targeted in the Wild

  Cisco has warned of a critical, unpatched security flaw impacting IOS XE software that’s under active exploitation in the wild. Rooted in...

• 

  3.4K

  Vulnerabilities

  Pro-Russian Hackers Exploiting Recent WinRAR Vulnerability in New Campaign

  Pro-Russian hacking groups have exploited a recently disclosed security vulnerability in the WinRAR archiving utility as part of a phishing campaign designed...

• 

  3.0K

  Vulnerabilities

  Signal Debunks Zero-Day Vulnerability Reports, Finds No Evidence

  Encrypted messaging app Signal has pushed back against “viral reports” of an alleged zero-day flaw in its software, stating it found no...

• 

  3.7K

  Vulnerabilities

  Two High-Risk Security Flaws Discovered in Curl Library – New Patches Released

  Image Source: JFrog Security Research Patches have been released for two security flaws impacting the Curl data transfer library, the most severe...

• 

  3.0K

  Vulnerabilities

  Microsoft Releases October 2023 Patches for 103 Flaws, Including 2 Active Exploits

  Microsoft has released its Patch Tuesday updates for October 2023, addressing a total of 103 flaws in its software, two of which...

• 

  4.6K

  Vulnerabilities

  Microsoft Warns of Nation-State Hackers Exploiting Critical Atlassian Confluence Vulnerability

  Microsoft has linked the exploitation of a recently disclosed critical flaw in Atlassian Confluence Data Center and Server to a nation-state actor...

• 

  975

  Vulnerabilities

  libcue Library Flaw Opens GNOME Linux Systems Vulnerable to RCE Attacks

  A new security flaw has been disclosed in the libcue library impacting GNOME Linux systems that could be exploited to achieve remote...

• 

  4.0K

  Vulnerabilities

  High-Severity Flaws in ConnectedIO’s 3G/4G Routers Raise Concerns for IoT Security

  Multiple high-severity security vulnerabilities have been disclosed in ConnectedIO’s ER2000 edge routers and the cloud-based management platform that could be exploited by...

• 

  3.4K

  Vulnerabilities

  Security Patch for Two New Flaws in Curl Library Arriving on October 11

  The maintainers of the Curl library have released an advisory warning of two security vulnerabilities that are expected to be addressed as...

• 

  370

  Vulnerabilities

  Cisco Releases Urgent Patch to Fix Critical Flaw in Emergency Responder Systems

  Cisco has released updates to address a critical security flaw impacting Emergency Responder that allows unauthenticated, remote attackers to sign into susceptible...