8.1 C
Munich
Friday, March 1, 2024

Vulnerabilities

How to Detect and Fix the “Text4Shell” Vulnerability

What is Text4Shell Similar to the Spring4Shell and Log4Shell vulnerabilities, Text4Shell is a new vulnerability reporter by Alvaro Munoz, in the Apache Commons Text library....

New WatchGuard vulnerabilities could lead to appliance takeover

Ambisonics security engineer Charles Fol published an article last week, where he explains how he discovered 5 vulnerabilities and built 8 exploits to gain...

Critical vulnerability discovered in Bitbucket Server and Data Center

Security researcher "The Grand Pew" discovered a critical command injection vulnerability in a Bitbucket product. The vulnerability is tracked as CVE-2022-36804 and is a command...

Palo Alto PAN-OS Flaw Added to CISA’s “Known Exploited Vulnerabilities Catalog”

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity flaw impacting Palo Alto Networks PAN-OS to its Known Exploited Vulnerabilities Catalog, based on...

GitLab Patches Critical Vulnerability

GitLab has released a security update to address a critical vulnerability that may lead to remote code execution. The vulnerability is tracked as CVE-2022-2884 and...

Apple Releases Patches Fixing 39 Vulnerabilities

In recent security updates released on March 14, Apple releases patches fixing 39 vulnerabilities several of which could allow an attacker to execute arbitrary...

Update Chrome Now to Patch an Actively Exploited Zero-Day Vulnerability

Google has released an update for its Chrome browser that includes eleven security fixes, one of which has been reportedly exploited in the wild....

New Vulnerabilities Allow Hackers to Crash Siemens PLCs

Independent ICS security researcher Gao Jian recently discovered new vulnerabilities which can allow hackers to remotely crash Siemens PLCs. The vulnerabilities have been reported...

Cisco patched 15 Vulnerabilities in Cisco Small Business RV Series Routers

On February 2, Cisco published an advisory for 15 vulnerabilities in its Small Business RV Series Routers. Three of the 15 vulnerabilities listed in...

Developers Accidentally Turned Off CSRF Protection in Popular PHP Framework

Developers of the popular Symfony PHP framework have reversed a recent change that accidentally turned off protection against cross-site request forgery (CSRF) attacks. Affected...

53% of Connected Medical Devices Have Serious Vulnerabilities

Critical device risks in hospital environments leave hospitals and patients vulnerable to cyber-attacks and data security issues. Cyberio, in its 2022 "State of Healthcare IoT...

13 Known Exploited Vulnerabilities Added to CISA Catalog

CISA has added 13 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence that threat actors are actively exploiting the vulnerabilities listed...

Latest