-
The DSA wants to bring to your attention, that multiple vulnerabilities in ConnectWise ScreenConnect software, which could be exploited to gain unauthorized access to affected systems.
-
Apple has fixed a vulnerability attackers could leverage to deploy malware on vulnerable macOS devices via untrusted applications capable of bypassing Gatekeeper application execution restrictions.
-
Microsoft on Monday published guidance for a newly discovered zero-day security flaw in its Office productivity suite that could be exploited to achieve code execution on affected systems.
-
Five new security weaknesses have been disclosed in Dell BIOS that, if successfully exploited, could lead to code execution on vulnerable systems.
-
Cybersecurity researchers are calling attention to a zero-day flaw in Microsoft Office that could be abused to achieve arbitrary code execution on affected Windows systems.
-
Almost 900 servers have been hacked using a critical Zimbra Collaboration Suite (ZCS) vulnerability, which at the time was a zero-day without a patch for nearly 1.5 months.
-
Oracle issued an out-of-band security update over the weekend to address a critical remote code execution (RCE) vulnerability impacting multiple Oracle WebLogic Server versions.
-
Tens of thousands of QNAP network-attached storage (NAS) devices are waiting to be patched against a critical security flaw addressed by the Taiwanese company on Monday.
-
The Digital Security Authority (DSA) wants to bring to your attention, a Remote Code Execution (RCE) chain vulnerability in the Progress Telerik Report Server that allows an attacker to bypass authentication controls and execute arbitrary code on the server.
-
Days after F5 released patches for a critical remote code execution vulnerability affecting its BIG-IP family of products, security researchers are warning that they were able to create an exploit for the shortcoming.
-
The Digital Security Authority (DSA) wants to bring to your attention that a vulnerability has been identified in Apache OFBiz allows attackers to remotely execute code on vulnerable systems.
-
VMware has warned admins today to patch a critical authentication bypass security flaw affecting local domain users in multiple products and enabling unauthenticated attackers to gain admin privileges.
-
Στις 10 Δεκεμβρίου η Microsoft έκδωσε την December 2024 Patch. Σε αυτήν συμπεριλαμβάνονται ενημερώσεις ασφάλειας για 71 ευπάθειες.
-
Users of Zoho ManageEngine are being urged to patch their instances against a critical security vulnerability ahead of the release of a proof-of-concept (PoC) exploit code.
-
Ερευνητές κυβερνοαφάλειας προειδοποιούν για χάκερ που υποστηρίζονται από την Κίνα ότι εκμεταλλεύονται μια ευπάθεια του Microsoft Office που δεν έχει επιδιορθωθεί, μηδενικής ημέρας, γνωστή ως “Follina” για να εκτελέσουν εξ αποστάσεως κακόβουλο κώδικα σε συστήματα Windows.
