The issues with Log4j continued to stack up as the Apache Software Foundation (ASF) on Friday rolled out yet another patch — version 2.17.0 — for the widely used logging library that could be...
Cybersecurity researchers on Tuesday disclosed details of an unpatched vulnerability in macOS Finder that could be abused by remote adversaries to trick users into running arbitrary commands on the machines. “A vulnerability in macOS...
The Internet Systems Consortium (ISC) has released security updates to address a high-severity denial-of-service (DoS) vulnerability, tracked as CVE-2021-25218, that affects its BIND DNS software. click here to read full Article Read more on...
Researchers are urging everyone to patch multiple critical and high-severity vulnerabilities found in Windows Print Spooler, QNAP devices, and other systems. click here to read full Article Read more on Malware updates & News
In all, the vulnerabilities affect 128 Dell models spanning across consumer and business laptops, desktops, and tablets, totalling an estimated 30 million individual devices. click here to read full Article Read more on Malware...
The IT giant fixed three high-severity vulnerabilities affecting Webex Player for Windows and macOS. Two of these are memory corruption vulnerabilities impacting releases 41.4 and later. click here to read full Article Read more...
Ivanti, the company behind Pulse Secure VPN appliances, has published a security advisory for a high severity vulnerability that may allow an authenticated remote attacker to execute arbitrary code with elevated privileges. “Buffer Overflow...
The maintainers of OpenSSL have released a fix for two high-severity security flaws in its software that could be exploited to carry out denial-of-service (DoS) attacks and bypass certificate verification. click here to read...
The issue affects servers running OpenSSL 1.1.1 versions with TLS 1.2 and renegotiation enabled, which is the default configuration. The vulnerability was reported by two researchers from Nokia. click here to read full Article...
Image and Article Source link The vulnerability is part of a number of patches issued by Cisco addressing 67 high-severity CVEs. This included flaws found in Cisco’s AnyConnect Secure Mobility Client, as well as...
Nvidia fastened a slew of superior-severity flaws affecting its graphics driver, which could lead to denial of assistance attacks, privilege escalation, and tampering with or spying on sensitive data. Image and Short article Resource...
TikTok has recently addressed a critical protection vulnerability in its platform. Particularly, a cross web page scripting flaw (XSS) affected the Superior-Severity XSS Flaw In TikTok Could Make it possible for Account Takeover on...
The flaw stems from Cisco IOS XR, a educate of Cisco Systems’ commonly deployed Internetworking Working Method (IOS), which powers the Cisco ASR 9000 series of completely dispersed routers. Graphic and Short article Source...
Google’s Job Zero (GPZ) team on Tuesday disclosed a substantial-severity vulnerability in GitHub’s Steps runner element that could allow attackers to remotely execute code on influenced devices. The bug was found out by Task...
Cisco yesterday produced security patches for two superior-severity vulnerabilities affecting its IOS XR software program that have been observed exploited in the wild a month ago.Tracked as CVE-2020-3566 and CVE-2020-3569, details for the two...
Cisco Devices launched a barrage of patches aimed at repairing bugs in the networking giant’s ubiquitous IOS operating program, like denial-of-provider, file overwrite, and input validation concerns. Impression and Write-up Source backlink Go through...
