1.7 C
Paris
Sunday, January 29, 2023

Vulnerabilities

Most Organizations Still Vulnerable To The Log4j Vulnerability

A study examining the scope and impact of the recent Log4j vulnerability has been conducted by Tenable and the results are extremely interesting. According to...

“OK Google”, Patch A New Zero-Day Vulnerability

Yet another Chrome "zero-day" vulnerability was patched by Google, the 8th for 2022. The tech giant released security updates to address a new zero-day vulnerability...

Google Pixel Phone Lock Bypass

Security researcher David Schütz, discovered a vulnerability that could allow an attacker to unlock any Google Pixel phone without knowing its passcode! This finding...

CSRF Vulnerability Discovered in Plesk API

Plesk is a very popular administration tool for web hosting and data center providers. Users usually use its web interface to administer their websites...

Critical Vulnerabilities Affecting Citrix Gateway and ADC

Critical vulnerabilities have been discovered in Citrix Gateway and Citrix ADC which can allow an attacker to gain unauthorized access, perform remote desktop takeover...

Public Exploit is Available for NSX-V, VMware Urges Customers to Upgrade

The critical vulnerability for NSX Data Center for vSphere(NSX-V) tracked as CVE-2021-39144 can be exploited to provide remote code execution to attackers. Public exploit is...

Apple patches its ninth vulnerability for this year

Since the start of 2022, Apple has addressed nine vulnerabilities with the latest one affecting iOS and iPadOS. This Monday, Apple rolled out updates to...

How to Detect and Fix the “Text4Shell” Vulnerability

What is Text4Shell Similar to the Spring4Shell and Log4Shell vulnerabilities, Text4Shell is a new vulnerability reporter by Alvaro Munoz, in the Apache Commons Text library....

New WatchGuard vulnerabilities could lead to appliance takeover

Ambisonics security engineer Charles Fol published an article last week, where he explains how he discovered 5 vulnerabilities and built 8 exploits to gain...

Critical vulnerability discovered in Bitbucket Server and Data Center

Security researcher "The Grand Pew" discovered a critical command injection vulnerability in a Bitbucket product. The vulnerability is tracked as CVE-2022-36804 and is a command...

Palo Alto PAN-OS Flaw Added to CISA’s “Known Exploited Vulnerabilities Catalog”

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity flaw impacting Palo Alto Networks PAN-OS to its Known Exploited Vulnerabilities Catalog, based on...

GitLab Patches Critical Vulnerability

GitLab has released a security update to address a critical vulnerability that may lead to remote code execution. The vulnerability is tracked as CVE-2022-2884 and...

Latest