Severe

VMware Patches Severe Security Flaws in Workstation and Fusion Products

May 14, 2024 by iHash Leave a Comment

May 14, 2024NewsroomBluetooth / Vulnerability Multiple security flaws have been disclosed in VMware Workstation and Fusion products that could be exploited by threat actors to access sensitive information, trigger a denial-of-service (DoS) condition, and execute code under certain circumstances. The four vulnerabilities impact Workstation versions 17.x and Fusion versions … [Read more...] about VMware Patches Severe Security Flaws in Workstation and Fusion Products

Severe Flaws Disclosed in Brocade SANnav SAN Management Software

Apr 26, 2024 by iHash Leave a Comment

Apr 26, 2024NewsroomSupply Chain Attack / Software Security Several security vulnerabilities disclosed in Brocade SANnav storage area network (SAN) management application could be exploited to compromise susceptible appliances. The 18 flaws impact all versions up to and including 2.3.0, according to independent security researcher Pierre Barre, who discovered and reported … [Read more...] about Severe Flaws Disclosed in Brocade SANnav SAN Management Software

Severe Android and Novi Survey Vulnerabilities Under Active Exploitation

Apr 14, 2023 by iHash Leave a Comment

Apr 14, 2023Ravie LakshmananMobile Security / Cyber Threat The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The two flaws are listed below - CVE-2023-20963 (CVSS score: 7.8) - Android Framework Privilege Escalation … [Read more...] about Severe Android and Novi Survey Vulnerabilities Under Active Exploitation

Researchers Detail Severe “Super FabriXss” Vulnerability in Microsoft Azure SFX

Mar 30, 2023 by iHash Leave a Comment

Mar 30, 2023Ravie LakshmananCloud Security / Vulnerability Details have emerged about a now-patched vulnerability in Azure Service Fabric Explorer (SFX) that could lead to unauthenticated remote code execution. Tracked as CVE-2023-23383 (CVSS score: 8.2), the issue has been dubbed "Super FabriXss" by Orca Security, a nod to the FabriXss flaw (CVE-2022-35829, CVSS score: 6.2) … [Read more...] about Researchers Detail Severe “Super FabriXss” Vulnerability in Microsoft Azure SFX

CISA, FBI, NSA Issue Advisory on Severe Increase in Ransomware Attacks

Feb 12, 2022 by iHash Leave a Comment

Cybersecurity authorities from Australia, the U.K., and the U.S. have published a joint advisory warning of an increase in sophisticated, high-impact ransomware attacks targeting critical infrastructure organizations across the world in 2021. The incidents singled out a broad range of sectors, including defense, emergency services, agriculture, government facilities, IT, … [Read more...] about CISA, FBI, NSA Issue Advisory on Severe Increase in Ransomware Attacks

Severe Bugs Reported in EtherNet/IP Stack for Industrial Systems

Apr 16, 2021 by iHash Leave a Comment

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday issued an advisory warning of multiple vulnerabilities in the OpENer EtherNet/IP stack that could expose industrial systems to denial-of-service (DoS) attacks, data leaks, and remote code execution. All OpENer commits and versions prior to February 10, 2021, are affected, although there are no known … [Read more...] about Severe Bugs Reported in EtherNet/IP Stack for Industrial Systems

3 New Severe Security Vulnerabilities Found In SolarWinds Software

Feb 3, 2021 by iHash Leave a Comment

Cybersecurity researchers on Wednesday disclosed three severe security vulnerabilities impacting SolarWinds products, the most severe of which could have been exploited to achieve remote code execution with elevated privileges. Two of the flaws (CVE-2021-25274 and CVE-2021-25275) were identified in the SolarWinds Orion Platform, while a third separate weakness (CVE-2021-25276) … [Read more...] about 3 New Severe Security Vulnerabilities Found In SolarWinds Software

A Set of Severe Flaws Affect Popular DNSMasq DNS Forwarder

Jan 19, 2021 by iHash Leave a Comment

Cybersecurity researchers have uncovered multiple vulnerabilities in Dnsmasq, a popular open-source software used for caching Domain Name System (DNS) responses, thereby potentially allowing an adversary to mount DNS cache poisoning attacks and remotely execute malicious code. The flaws, collectively called "DNSpooq" by Israeli research firm JSOF, echoes previously disclosed … [Read more...] about A Set of Severe Flaws Affect Popular DNSMasq DNS Forwarder

Patches for 2 Severe LibreOffice Flaws Bypassed — Update to Patch Again

Aug 16, 2019 by iHash Leave a Comment

If you are using LibreOffice, you need to update it once again.LibreOffice has released the latest version 6.2.6/6.3.0 of its open-source office software to address three new vulnerabilities that could allow attackers to bypass patches for two previously addressed vulnerabilities.LibreOffice is one of the most popular and open source alternatives to Microsoft Office suite and … [Read more...] about Patches for 2 Severe LibreOffice Flaws Bypassed — Update to Patch Again

AdGuard VPN + Ad Blocker Family Security Suite for $49

Microsoft Office 2024 Home for Mac or PC: One-Time Purchase for $119

ASUS 14" Chromebook C424 (2021) Intel N4020 4GB RAM 128GB eMMC (Refurbished) for $174

Lenovo IdeaPad 5, 14" Touchscreen 2-in-1 Laptop (2024) AMD Ryzen 7, 16GB RAM 1TB SSD Windows 11 Home Cosmic Blue (Refurbished) for $649

Stacks Be Productive Plan: Lifetime Subscription for $29