Apple fixes zero-day vulnerability (CVE-2021-30807) in macOS Big Sur and iOS
Apple has fixed a zero-day vulnerability CVE-2021-30807 in macOS Big Sur and iOS versions that is under active attack.
Microsoft issues workaround for zero-day ‘SeriousSAM’ vulnerability
Microsoft has issued a workaround for a serious zero-day vulnerability CVE-2021–36934 dubbed "SeriousSAM" that could allow an attacker to read any registry hives as a non-administrator.
Adobe fixes vulnerabilities in multiple products
Adobe has released security updates to address multiple vulnerabilities in Adobe Photoshop, Audition, Character Animator, Prelude, Premiere Pro, After Effects, and Media Encoder.
Drupal patches Critical third-party library vulnerability (CVE-2021-32610)
Drupal has patched a Critical third-party library vulnerability that affects multiple versions of Drupal Core. A remote attacker could exploit this vulnerability to compromise an affected system.
Apple security updates for iOS 14.7, macOS Big Sur 11.5 and other products
Apple has released security updates to fix vulnerabilities in iOS 14.7, macOS Big Sur 11.5, Safari 14.1.2, tvOS 14.7, watchOS 7.6, and other products.
16-year-old printer driver vulnerability affects millions of printers worldwide
Researchers have discovered a 16-year-old printer driver vulnerability CVE-2021-3438 that affects millions of printers worldwide, to include HP, Samsung and Xerox printer models.
Google releases Chrome security update (92.0.4515.107) with fixes for 35 vulnerabilities
Google has released Chrome 92 security update (92.0.4515.107) for Windows, Mac and Linux with fixes for 35 vulnerabilities.
U.S. government releases advisories and indictments related to “sophisticated Chinese state-sponsored activity”
The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the National Security Agency (NSA) have observed "sophisticated Chinese state-sponsored activity" targeting multiple public and private sectors in the United States.
Fortinet patches High risk RCE vulnerability (CVE-2021-32589) in FortiManager and FortiAnalyzer
Fortinet has patched a High risk use-after-free vulnerability (CVE-2021-32589) in FortiManager and FortiAnalyzer fgfmsd daemon. An attacker could exploit the vulnerability to launch remote code execution (RCE) as root and take control of an impacted system.
Critical WooCommerce SQL-injection vulnerability patched
A researcher has discovered a Critical SQL-injection vulnerability in WooCommerce, an open-source e-commerce plugin for WordPress. WooCommerce promptly provided an emergency patch for the plugin to fix the issue.
- 1
- 2
- 3
- 4
- …
- 114
- Go to the next page