Vulnerabilities Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Vulnerabilities

In Other News: Critical Chrome Bug, Capital One Hacker Resententencing, Story of Expat Flaw

Noteworthy stories that might have slipped under the radar: Capital One hacker’s sentence reversed, Google patches critical Chrome vulnerability, the story of an Expat...

SecurityWeek News2 days ago

Vulnerabilities

CISA Warns of Exploited Nakivo Vulnerability

CISA has added an absolute path traversal bug in Nakivo Backup and Replication to its Known Exploited Vulnerabilities list.

Ionut Arghire3 days ago

Vulnerabilities

Veeam Patches Critical Vulnerability in Backup & Replication

Veeam has released patches for a critical-severity remote code execution vulnerability in Backup & Replication.

Ionut Arghire4 days ago

Vulnerabilities

Hackers Target Cisco Smart Licensing Utility Vulnerabilities

SANS is seeing attempts to exploit two critical Cisco Smart Licensing Utility vulnerabilities tracked as CVE-2024-20439 and CVE-2024-20440.

Eduard Kovacs4 days ago

Vulnerabilities

8,000 New WordPress Vulnerabilities Reported in 2024

Nearly 8,000 new vulnerabilities affecting the WordPress ecosystem were reported last year, nearly all in plugins and themes.

Ionut Arghire6 days ago

Artificial Intelligence

Nvidia Patches Vulnerabilities That Could Let Hackers Exploit AI Services

Vulnerabilities in Nvidia Riva could allow hackers to abuse speech and translation AI services that are typically expensive.

Eduard Kovacs7 days ago

Vulnerabilities

Zscaler Accused of Throwing Stones From a Glass House Over XSS Vulnerability

On the day that the company started a PR push for the Zscaler Application Profiler (ZAP), using a Cross-Site Scripting (XSS) flaw discovered in...

Steve RaganJanuary 18, 2013

Vulnerabilities

Foxit PDF Vulnerability Patched – Mozilla Moves to Render PDFs Internally

A recently disclosed vulnerability in the Foxit PDF viewer has been patched in the latest software release. The issue, first discovered by Italian security...

Steve RaganJanuary 18, 2013

Vulnerabilities

Researchers Uncover Privilege Escalation Bug in Philips Medical Devices

Researchers from Cylance, a stealth security firm based in Irvine, California, said they were able to hack into a medical management system and take...

Fahmida Y. RashidJanuary 18, 2013

Vulnerabilities

Remote Execution Flaws a Risk to Spring Framework Applications

Steps Must be Taken To Protect From Expression Language Injection Vulnerabilities On Applications Built on The Spring Framework

Fahmida Y. RashidJanuary 16, 2013

Application Security

A Hard Knock Life – Ruby on Rails Vulnerabilities and System Hardening

Last week, Ruby on Rails (RoR), a popular web application framework, was reported as vulnerable to critical vulnerabilities.

Tal Be'eryJanuary 16, 2013

Security Infrastructure

Oil and Gas Infrastructure Vulnerabilities Drive Security Spending, Report

Recent analysis from Frost & Sullivan shows that the security of critical facilities remains the topmost priority for the global oil and gas industry....

Steve RaganJanuary 16, 2013

Vulnerabilities

Oracle Fixes 86 Security Flaws in Massive Critical Patch Update

Oracle addressed 86 flaws across 10 product groups in its quarterly Critical Patch Update. Some of the high-risk vulnerabilities, if exploited, would allow attackers...

Fahmida Y. RashidJanuary 15, 2013

Vulnerabilities

Adobe Releases Hotfix to Address Critical Vulnerabilities in ColdFusion

Adobe on Tuesday released a hotfix to address four vulnerabilities affecting ColdFusion running on Windows, Mac OS and UNIX platforms.

Mike LennonJanuary 15, 2013

Malware & Threats

‘Operation Red October’ Used Java Exploit as Added Attack Weapon

On Monday, Kaspersky Lab uncovered details of a complex cyber espionage campaign dubbed 'Operation Red October' that has been targeting specific groups throughout the...

Mike LennonJanuary 15, 2013

Vulnerabilities

Microsoft Releases Out-of-band Patch to Address Internet Explorer Vulnerability

Microsoft on Monday released a patch to address the recently discovered Internet Explorer vulnerability linked to a series of watering hole attacks.

Mike LennonJanuary 14, 2013

Vulnerabilities

Oracle Patches Java Zero-Day

Last week, researchers discovered a Java vulnerability being widely exploited online, as it was included in several crime kits, including Blackhole and Cool Exploit....

Steve RaganJanuary 14, 2013

Vulnerabilities

Microsoft to Issue Out-of-band Patch for Internet Explorer

Microsoft has said it would release a patch this afternoon, out-of-band, that will address the recently discovered Internet Explorer vulnerability that has been used...

Steve RaganJanuary 14, 2013