Drupal has released security updates to address cross-site scripting (XSS) and Open Redirect vulnerabilities affecting Drupal 7, 8.7, and 8.8.
Adobe has released security updates to address vulnerabilities in Premiere Pro, Premiere Rush and Audition products. Successful exploitation could lead to information disclosure.
The Internet Systems Consortium (ISC) has released two security updates that fix vulnerabilities on multiple versions of BIND. In addition, Microsoft also issued a new DNS security advisory and workaround. The flaws could allow a remote attacker to exploit and cause a denial of service condition.
U.S. government cybersecurity experts are providing guidance on the "top 10" most commonly exploited vulnerabilites. The alert helps highlight the importance of patching and prioritizing vulnerabilities with known exploits.
A security researcher disclosed four vulnerabilities in QNAP PhotoStation and CGI programs. All QNAP network-attached storage (NAS) devices running Photo Station are vulnerable and of those, approximately 450,000 QNAS NAS…
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) issued a warning of likely targeting and compromise of U.S. COVID-19 research organizations by the People’s Republic of China (PRC).
Adobe has released security updates to address vulnerabilities in Adobe Acrobat and Reader, as well as Adobe DNG Software Development Kit (SDK). Successful exploitation could lead to arbitrary code execution or information disclosure.
Microsoft released the May 2020 Security Updates that includes 111 unique vulnerability fixes, 16 of those rated critical.
In case you missed it last week, SaltStack released security updates to fix two critical Salt vulnerabilities. Multiple vendors that integrate Salt into their products have also released patches or workarounds to address the flaws.
Popular internet forum software maker vBulletin has patched a Critical vulnerability that affects multiple vBulletin 5 versions.