Threats & Malware, Vulnerabilities
January 30, 2024
Via: The RegisterJuniper Networks has disclosed separate vulnerabilities it was previously accused of concealing, and apologized to customers for the error in communication. The update, which happened late last week, comes hot on the heels of reporting from El Reg that highlighted […]
Threats & Malware, Vulnerabilities
January 16, 2024
Via: The RegisterVMware and Atlassian today disclosed critical vulnerabilities and, while neither appear to have been exploited by miscreants yet, admins should patch now to avoid disappointment. First off, a pair of issues from Atlassian. Most serious is CVE-2023-22527, a template injection […]
Threats & Malware, Vulnerabilities
October 11, 2023
Via: The RegisterAfter a week of rampant speculation about the nature of the security issues in curl, the latest version of the command line transfer tool was finally released today. Described by curl project founder and lead developer Daniel Stenberg as “probably […]
Threats & Malware, Vulnerabilities
August 9, 2023
Via: The Hacker NewsMicrosoft has patched a total of 74 flaws in its software as part of the company’s Patch Tuesday updates for August 2023, down from the voluminous 132 vulnerabilities the company fixed last month. This comprises six Critical and 67 Important […]
Threats & Malware, Vulnerabilities
July 25, 2023
Via: The Hacker NewsAtlassian has released updates to address three security flaws impacting its Confluence Server, Data Center, and Bamboo Data Center products that, if successfully exploited, could result in remote code execution on susceptible systems. The list of the flaws is below […]
Threats & Malware, Vulnerabilities
July 12, 2023
Via: The Hacker NewsMicrosoft on Tuesday released updates to address a total of 132 new security flaws spanning its software, including six zero-day flaws that it said have been actively exploited in the wild. Of the 132 vulnerabilities, nine are rated Critical, 122 […]
Threats & Malware, Vulnerabilities
March 14, 2023
Via: Help Net SecurityIt’s March 2023 Patch Tuesday, and Microsoft has delivered fixes for 74 CVE-numbered vulnerabilities, including two actively exploited in the wild (CVE-2023-23397, CVE-2023-24880) by different threat actors. About CVE-2023-23397 “CVE-2023-23397 is a critical EoP vulnerability in Microsoft Outlook that is […]
Threats & Malware, Virus & Malware, Vulnerabilities
February 6, 2023
Via: Help Net SecurityLate last week, unknown attackers launched a widespread ransomware attack hitting VMware ESXi hypervisors via CVE-2021-21974, an easily exploitable vulnerability that allows them to run exploit code remotely, without prior authentication. Patches for CVE-2021-21974, a vulnerability in ESXi’s OpenSLP service, […]
Threats & Malware, Vulnerabilities
July 15, 2020
Via: Security WeekThis is a record-breaking CPU not only in terms of number of patches (the first to include over 400 fixes), but also in regard to the amount of critical flaws addressed: approximately 100 of the patches deal with vulnerabilities with […]
Mobile, Mobile security, Threats & Malware, Vulnerabilities
May 5, 2020
Via: Security WeekA total of 39 vulnerabilities were patched with the release, split into two parts: 15 received fixes as part of the 2020-05-01 security patch level, and 24 addressed with the 2020-05-05 security patch level. Tracked as CVE-2020-0103, the most important […]
Threats & Malware, Vulnerabilities
September 25, 2019
Via: Security AffairsAdobe released ColdFusion 2016 Update 12 and ColdFusion 2018 Update 5 to address three severe vulnerabilities in its ColdFusion web application development platform, two of them have been rated as “critical.” “Adobe has released security updates for ColdFusion versions 2018 […]
Application security, Security
June 4, 2019
Via: Security WeekThe NVIDIA GFE is a companion application installed alongside GeForce drivers, which allows users to capture and share videos, screenshots, and live streams, while also providing the means to keep drivers updated and game settings optimized. Tracked as CVE-2019-5678 and […]
January 8, 2019
Via: Security WeekAdobe’s Patch Tuesday security updates for January 2019 address only two “important” vulnerabilities in the company’s Connect and Digital Editions products. The latest version of the Adobe Connect web conferencing software patches CVE-2018-19718, a session token exposure issue that can […]
Mobile security, Vulnerabilities
December 5, 2018
Via: Threat PostGoogle’s December Android Security Bulletin tackles 53 unique flaws. Remote code-execution (RCE) vulnerabilities dominated Google’s December Android Security Bulletin. The flaws are part of a total of 53 unique bugs patched by the Android security team, with a total number […]
Cyber-crime, Security, Vulnerabilities
December 21, 2017
Via: Security AffairsVMware has released security updates to address four vulnerabilities in its ESXi, vCenter Server Appliance (vCSA), Workstation and Fusion products. The flaws were addressed with the release of six patches for ESXi, version 12.5.8 of Workstation, version 8.5.9 of Fusion, and […]
Application security, Mobile security
December 14, 2017
Via: Naked SecurityAt the beginning of the month, Android relased two new security bulletins for December, with Google noting that Android users who can update this month should patch as soon as possible to receive mitigations and fixes for 47 vulnerabilities across all […]
Mobile security, Vulnerabilities
September 20, 2017
Via: Security WeekApple this week announced the availability of 8 security patches for its iPhone 5s and later, iPad Air and later, and iPod touch 6th generation users, released as part of the iOS 11 platform upgrade. The bugs affect 7 platform […]
Mobile security, Vulnerabilities
September 7, 2017
Via: Security WeekA total of 81 security vulnerabilities have been addressed in this month’s set of security patches for the Android platform. 13 of the flaws were rated Critical severity. The security bulletin has two security patch levels, each focused on addressing […]
March 15, 2017
Via: Threat PostAdobe on Tuesday patched seven vulnerabilities in Flash Player, six that could lead to code execution. The company said it isn’t aware of any of the vulnerabilities being exploited in the wild but is still encouraging users to update Flash for […]
January 11, 2017
Via: Security WeekAdobe informed users on Tuesday that updates released for Acrobat, Reader and Flash Player patch a total of 42 vulnerabilities, including many that could lead to arbitrary code execution. The updates for Acrobat and Reader versions 11 and 15 address […]