Vulnerabilities Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

ICS/OT

Lantronix Serial-to-IP Converter Flaw Exploited in Attacks After OT Threat Warning

The exploited flaw, CVE-2025-67038, is one of the vulnerabilities disclosed in April as part of the BRIDGE:BREAK research project.

Eduard Kovacs14 hours ago

Vulnerabilities

GitLab Patches Code Execution, Information Disclosure Vulnerabilities

The latest GitLab CE/EE updates address 13 vulnerabilities, including three high-severity defects.

Ionut Arghire14 hours ago

Vulnerabilities

25-Year-Old Vulnerability Patched in Curl

The latest version of the open source data transfer tool resolves 18 medium and low-severity vulnerabilities.

Ionut Arghire16 hours ago

Vulnerabilities

Chrome 149 Update Resolves 18 Severe Vulnerabilities

More than half of the bugs are use-after-free defects, which can potentially lead to remote code execution.

Ionut Arghire18 hours ago

Cybercrime

Organizations Warned of Dual Threat Posed by RDP and Disruptive Ransomware

In a paper warning about the evolution of what it calls 'disruptionware', the Institute for Critical Infrastructure Technology (ICIT) highlights ransomware and RDP access...

Kevin TownsendSeptember 25, 2019

Malware & Threats

Hacker Releases Exploit for vBulletin Zero-Day Vulnerability

A hacker has released an exploit for an unpatched remote command execution vulnerability affecting the vBulletin forum software.

Eduard KovacsSeptember 25, 2019

Vulnerabilities

Adobe Patches Critical Command Injection, Path Traversal Flaws in ColdFusion

Updates released by Adobe on Tuesday for its ColdFusion web application development platform address three vulnerabilities, including two that have been classified “critical.”

Eduard KovacsSeptember 24, 2019

Malware & Threats

Microsoft Patches Internet Explorer Vulnerability Exploited in Attacks

Microsoft on Monday released patches for two vulnerabilities, including an Internet Explorer zero-day and a denial-of-service (DoS) flaw affecting Microsoft Defender.

Eduard KovacsSeptember 24, 2019

Vulnerabilities

Critical Vulnerability Addressed in Jira Service Desk

Atlassian has released a security update for Jira Service Desk and Jira Service Desk Data Center to address a critical vulnerability resulting in information...

Ionut ArghireSeptember 23, 2019

Management & Strategy

Microsoft to Provide Free Security Updates for Voting Systems Running Windows 7

Microsoft will continue to provide some Windows 7 machines with security updates beyond the January 2020 end-of-support date, and voting systems are among them,...

Ionut ArghireSeptember 23, 2019

Application Security

0patch Promises Support for Windows 7 Beyond January 2020

Windows 7 and Windows Server 2008 will officially reach end-of-support on January 14, 2020, but they will continue to receive security patches past that...

Ionut ArghireSeptember 23, 2019

IoT Security

Flaw Gives Hackers Remote Access to Files Stored on D-Link DNS-320 Devices

D-Link DNS-320 ShareCenter network-attached storage (NAS) devices are affected by a critical vulnerability that can be exploited remotely to take complete control of a...

Eduard KovacsSeptember 23, 2019

Vulnerabilities

Google Awards $40,000 for Chrome Sandbox Escape Vulnerabilities

Google has paid out a total of $40,000 for a couple of vulnerabilities that can be exploited to escape Chrome’s sandbox.

Eduard KovacsSeptember 23, 2019

Vulnerabilities

Vulnerability Patched in Forcepoint VPN Client for Windows

Researchers at breach and attack simulation firm SafeBreach discovered that the Forcepoint VPN Client for Windows is affected by a vulnerability that can be...

Eduard KovacsSeptember 20, 2019

Vulnerabilities

VMware Patches Six Vulnerabilities in Various Products

VMware this week patched code execution, command injection, information disclosure and denial-of-service (DoS) vulnerabilities in its ESXi, vCenter Server, Workstation, Fusion, VMRC and Horizon...

Eduard KovacsSeptember 20, 2019

Vulnerabilities

MITRE Publishes New List of Most Dangerous Software Weaknesses

The MITRE Corporation this week published an updated list of the most dangerous software weaknesses and vulnerabilities.Known as the Common Weakness Enumeration (CWE) Top...

Ionut ArghireSeptember 19, 2019

Vulnerabilities

Critical Vulnerability Exposes Harbor Registries to Attacks

Harbor registries with default settings are impacted by a vulnerability that allows any user to elevate privileges to administrator, Palo Alto Networks reports.

Ionut ArghireSeptember 19, 2019

Vulnerabilities

Ping Identity IPO Shares Priced at $15

Denver-based identity management solutions provider Ping Identity on Thursday announced that it’s offering 12,500,000 shares of its common stock at $15 per share, which...

Eduard KovacsSeptember 19, 2019

Funding/M&A

GitHub Becomes CVE Numbering Authority, Acquires Semmle

Microsoft-owned GitHub announced on Wednesday that it has acquired code analysis platform provider Semmle and the company is now a Common Vulnerabilities and Exposures...

Eduard KovacsSeptember 18, 2019

Vulnerabilities

Code Execution Vulnerabilities Found in Aspose PDF Processing Product

Several critical remote code execution vulnerabilities have been found by Cisco Talos researchers in a PDF file processing product from Aspose.

Eduard KovacsSeptember 18, 2019

Vulnerabilities

AMD Radeon Driver Flaw Leads to VM Escape

A vulnerability in the AMD ATI Radeon ATIDXX64.DLL driver could be triggered from within a VMware guest to execute code on the host, Cisco...

Ionut ArghireSeptember 17, 2019

IoT Security

SOHOpelessly Broken 2.0: 125 Vulnerabilities Found in Routers, NAS Devices

Researchers have discovered many vulnerabilities in over a dozen small office/home office (SOHO) routers and network-attached storage (NAS) devices as part of a project...

Eduard KovacsSeptember 17, 2019

Identity & Access

LastPass Patches Bug Leaking Last-Used Credentials

A vulnerability recently addressed in LastPass could be abused by attackers to expose the last site credentials filled by LastPass.A freemium password manager, LastPass...

Ionut ArghireSeptember 16, 2019

ICS/OT

Serious Flaws in CODESYS Products Expose Industrial Systems to Remote Attacks

Several critical and high-severity vulnerabilities have been found recently in widely used CODESYS industrial products made by Germany-based 3S-Smart Software Solutions.

Eduard KovacsSeptember 16, 2019

Page 226 of 425« First ‹ Previous 222 223 224 225226227 228 229 230 Next ›Last »

Webinar: Why Email Security Keeps Failing (And What Has to Change)

July 8, 2026

Join this live webinar as we break down why email-layer defenses alone can't keep pace with the modern phishing ecosystem, how agentic AI is changing the capacity equation for security teams, and more.

Virtual Event: 2026 Cloud Security Summit

July 16, 2026

This year's summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments. Interact with leading solution providers and other end users facing similar challenges in securing a variety of cloud deployments.

SECURITYWEEK NETWORK:

ICS:

ICS/OT

Lantronix Serial-to-IP Converter Flaw Exploited in Attacks After OT Threat Warning

Vulnerabilities

GitLab Patches Code Execution, Information Disclosure Vulnerabilities

Vulnerabilities

25-Year-Old Vulnerability Patched in Curl

Vulnerabilities

Chrome 149 Update Resolves 18 Severe Vulnerabilities

Cybercrime

Organizations Warned of Dual Threat Posed by RDP and Disruptive Ransomware

Malware & Threats

Hacker Releases Exploit for vBulletin Zero-Day Vulnerability

Vulnerabilities

Adobe Patches Critical Command Injection, Path Traversal Flaws in ColdFusion

Malware & Threats

Microsoft Patches Internet Explorer Vulnerability Exploited in Attacks

Vulnerabilities

Critical Vulnerability Addressed in Jira Service Desk

Management & Strategy

Microsoft to Provide Free Security Updates for Voting Systems Running Windows 7

Application Security

0patch Promises Support for Windows 7 Beyond January 2020

IoT Security

Flaw Gives Hackers Remote Access to Files Stored on D-Link DNS-320 Devices

Vulnerabilities

Google Awards $40,000 for Chrome Sandbox Escape Vulnerabilities

Vulnerabilities

Vulnerability Patched in Forcepoint VPN Client for Windows

Vulnerabilities

VMware Patches Six Vulnerabilities in Various Products

Vulnerabilities

MITRE Publishes New List of Most Dangerous Software Weaknesses

Vulnerabilities

Critical Vulnerability Exposes Harbor Registries to Attacks

Vulnerabilities

Ping Identity IPO Shares Priced at $15

Funding/M&A

GitHub Becomes CVE Numbering Authority, Acquires Semmle

Vulnerabilities

Code Execution Vulnerabilities Found in Aspose PDF Processing Product

Vulnerabilities

AMD Radeon Driver Flaw Leads to VM Escape

IoT Security

SOHOpelessly Broken 2.0: 125 Vulnerabilities Found in Routers, NAS Devices

Identity & Access

LastPass Patches Bug Leaking Last-Used Credentials

ICS/OT

Serious Flaws in CODESYS Products Expose Industrial Systems to Remote Attacks

Daily Briefing Newsletter

Trending

Webinar: Why Email Security Keeps Failing (And What Has to Change)

Virtual Event: 2026 Cloud Security Summit

People on the move

Expert Insights

When Information Becomes the Attack Surface – Understanding AI Agent Traps

What the Latest ShinyHunters Breaches Reveal About Modern Cyberattacks

No Exploits Required

After AI Reaches Production: 12 Ways Security Teams Can Take Control

Everybody Is Vibe Coding But Nobody Told the Security Team

Daily Briefing Newsletter