vulnerability Archives

Artificial Intelligence

Critical Vulnerability Found in Ray AI Framework

A critical issue in open source AI framework Ray could provide attackers with operating system access to all nodes.

Ionut Arghire6 days ago

Data Protection

Atlassian CISO Urges Quick Action to Protect Confluence Instances From Critical Vulnerability

Atlassian warns that a critical vulnerability in Confluence Data Center and Server could lead to significant data loss if exploited.

Ionut ArghireOctober 31, 2023

Uncategorized

Attackers Exploiting Critical F5 BIG-IP Vulnerability

Exploitation of a critical vulnerability (CVE-2023-46747) in F5’s BIG-IP product started less than five days after public disclosure and PoC exploit code was published.

Ionut ArghireOctober 31, 2023

Vulnerabilities

F5 Warns of Critical Remote Code Execution Vulnerability in BIG-IP

A critical-severity vulnerability in F5 BIG-IP CVE-2023-46747 allows unauthenticated attackers to execute code remotely.

Ionut ArghireOctober 27, 2023

Malware & Threats

Number of Cisco Devices Hacked via Zero-Day Remains High as Attackers Update Implant

The number of Cisco devices hacked via recent zero-days remains high, but the attackers have updated their implant.

Eduard KovacsOctober 24, 2023

ICS/OT

Unpatched Vulnerabilities Expose Yifan Industrial Routers to Attacks

Industrial routers made by Chinese company Yifan are affected by several critical vulnerabilities that can expose organizations to attacks.

Eduard KovacsOctober 12, 2023

Vulnerabilities

In-the-Wild Exploitation Expected for Critical TeamCity Flaw Allowing Server Takeover

A critical vulnerability in the TeamCity CI/CD server could allow unauthenticated attackers to execute code and take over vulnerable servers.

Ionut ArghireSeptember 25, 2023

Vulnerabilities

Atos Unify Vulnerabilities Could Allow Hackers to Backdoor Systems

Atos Unify product vulnerabilities could be exploited to cause disruption and reconfigure or backdoor the targeted system.

Eduard KovacsSeptember 20, 2023

Hacker Conversations

Hacker Conversations: Casey Ellis, Hacker and Ringmaster at Bugcrowd

SecurityWeek interviews Casey Ellis, founder, chairman and CTO at Bugcrowd, best known for operating bug bounty programs for organizations.

Kevin TownsendSeptember 19, 2023

ICS/OT

CISA Offering Free Vulnerability Scanning Service to Water Utilities

CISA is offering a free vulnerability scanning service to water utilities to help them protect drinking water and wastewater systems against cyberattacks.

Eduard KovacsSeptember 13, 2023