Vulnerabilities
Massive Ransomware Campaign Targeting VMware ESXi Servers Worldwide
The Italian National Cybersecurity Agency (ACN) has issued a warning about a large-scale ransomware campaign targeting VMware ESXi servers worldwide, including Italian systems. The...
VMware Fixes High-Severity Privilege Escalation Flaw in Workstation
TheCISO -
The Vulnerability Details
VMware fixed a high-severity privilege escalation flaw, tracked as CVE-2023-20854, that impacts Workstation. An attacker can exploit the vulnerability to delete arbitrary...
Critical Vulnerability Discovered in Jira Service Management Server and Data Center
TheCISO -
A critical security vulnerability has been discovered in Jira Service Management Server and Data Center, which has been assigned the CVE identifier CVE-2023-22501 and...
F5 BIG-IP Vulnerability: A Threat to System Stability
TheCISO -
F5 Networks, a cybersecurity company, has issued a warning regarding a high-severity format string vulnerability in BIG-IP.
This vulnerability has the potential to cause...
Binwalk Security Tool Vulnerable to Path Traversal Attack
TheCISO -
Binwalk, a popular Linux-based security analysis tool, is facing a security threat due to a path traversal vulnerability that could lead to remote code...
Most Organizations Still Vulnerable To The Log4j Vulnerability
A study examining the scope and impact of the recent Log4j vulnerability has been conducted by Tenable and the results are extremely interesting.
According to...
“OK Google”, Patch A New Zero-Day Vulnerability
Yet another Chrome "zero-day" vulnerability was patched by Google, the 8th for 2022.
The tech giant released security updates to address a new zero-day vulnerability...
Google Pixel Phone Lock Bypass
TheCISO -
Security researcher David Schütz, discovered a vulnerability that could allow an attacker to unlock any Google Pixel phone without knowing its passcode! This finding...
CSRF Vulnerability Discovered in Plesk API
TheCISO -
Plesk is a very popular administration tool for web hosting and data center providers. Users usually use its web interface to administer their websites...
Critical Vulnerabilities Affecting Citrix Gateway and ADC
TheCISO -
Critical vulnerabilities have been discovered in Citrix Gateway and Citrix ADC which can allow an attacker to gain unauthorized access, perform remote desktop takeover...
Public Exploit is Available for NSX-V, VMware Urges Customers to Upgrade
TheCISO -
The critical vulnerability for NSX Data Center for vSphere(NSX-V) tracked as CVE-2021-39144 can be exploited to provide remote code execution to attackers.
Public exploit is...
Apple patches its ninth vulnerability for this year
TheCISO -
Since the start of 2022, Apple has addressed nine vulnerabilities with the latest one affecting iOS and iPadOS.
This Monday, Apple rolled out updates to...