2022 - Page 10 of 28

Cisco patched 3 Nexus Dashboard Unauthorized Access Vulnerabilities

Network Security, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / July 25, 2022 / Cisco, CVE-2022-20857, CVE-2022-20858, CVE-2022-20861, Nexus

Cisco has released a Critical severity security advisory for three Nexus Dashboard unauthorized access vulnerabilities.

Cisco patched 3 Nexus Dashboard Unauthorized Access Vulnerabilities Read More »

Oracle Critical Patch Update for July 2022

Database Security, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / July 25, 2022 / CVE-2021-31805, CVE-2022-1292, CVE-2022-22721, CVE-2022-23305, CVE-2022-23632, CVE-2022-34169, Database, Log4j, MySQL, Oracle, Spring Framework

Oracle has released its Critical Patch Update for July 2022 to include 349 vulnerability fixes across multiple products. The updates also include fixes for Log4j and Spring Framework vulnerabilities.

Oracle Critical Patch Update for July 2022 Read More »

Drupal patches Moderately Critical vulnerability (CVE-2022-25276)

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / July 25, 2022 / CVE-2022-25276, Drupal, Drupal9, iframe

Drupal has patched one Moderately Critical vulnerability (CVE-2022-25276) that affect multiple versions of Drupal Core.

Drupal patches Moderately Critical vulnerability (CVE-2022-25276) Read More »

Apple patches vulnerabilities in iOS 15.6, macOS Monterey 12.5, and other products

Mobile Security, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / July 25, 2022 / Apple, Big Sur, iOS, iOS156, iPad, macOS, Monterey, tvOS, watchOS

Apple has released security updates for Apple iOS 15.6, iPadOS 15.6, macOS Monterey 12.5, macOS Big Sur 11.6.8, macOS Catalina, tvOS 15.6, watchOS 8.7, and Safari 15.6.

Apple patches vulnerabilities in iOS 15.6, macOS Monterey 12.5, and other products Read More »

Google releases Chrome 103 (103.0.5060.134) security updates with fixes for 5 High severity vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / July 22, 2022 / Android, Chrome, ChromeOS, CVE-2022-2477, CVE-2022-2478, CVE-2022-2479, CVE-2022-2480, CVE-2022-2481

Google has released Chrome version 103.0.5060.134 for Windows, Mac and Linux, with fixes for five High severity vulnerabilities. Additionally, Google also published new security updates for ChromeOS and Android.

Google releases Chrome 103 (103.0.5060.134) security updates with fixes for 5 High severity vulnerabilities Read More »

Cyber actors continue to exploit Log4Shell vulnerability (CVE-2021-44228) in VMware Horizon Systems (updated)

Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / Frank Crast / July 20, 2022 / APT, Aquatic Panda, CGCYBER, CISA, CVE-2021-44228, Cybersecurity Threat Center, Deep Panda, Log4j, log4Shell, UAG

The Cybersecurity and Infrastructure Security Agency (CISA) warns cyber actors continue to exploit Log4Shell vulnerability (CVE-2021-44228) in VMware Horizon Systems.

Cyber actors continue to exploit Log4Shell vulnerability (CVE-2021-44228) in VMware Horizon Systems (updated) Read More »

Cyberattacks on WordPress plugin Modern WPBakery Page Builder Addons

Cybersecurity Attacks, Vulnerabilities & Exploits / Frank Crast / July 17, 2022 / AJAX, CVE-2021-24284, Kaswara, PHP, Wordfence, WPBakery

Researchers from Wordfence have spotted scans against 1.6 million WordPress sites looking for vulnerable Kaswara Modern WPBakery Page Builder Addons plugin.

Cyberattacks on WordPress plugin Modern WPBakery Page Builder Addons Read More »

H0lyGh0st ransomware actors target small and midsize businesses

Cybersecurity Attacks, Malware, Ransomware / Frank Crast / July 17, 2022 / Andariel, BLTC.exe, BTLC_C.exe, C2, Cybersecurity Threat Center, DarkSeoul, DEV-0530, H0lyGh0st, HolyGhost, HolyLock.exe, HolyRS.exe, Microsoft, MSTIC, North Korea, Plutonium, Ransomware, SiennaBlue, SiennaPurple, Small Business, SMB

Security researchers from Microsoft warn threat actors from North Korea are using H0lyGh0st ransomware to target small and midsize businesses around the globe.

H0lyGh0st ransomware actors target small and midsize businesses Read More »

SAP July 2022 Security Patch Day addresses 4 new ‘High Priority’ vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / July 16, 2022 / Business Intelligence, Business Objects, Business One, CVE-2022-28771, CVE-2022-31593, CVE-2022-32249, CVE-2022-35228, SAP

Software giant SAP has released the July 2022 Security Patch Day that consists of 20 separate security advisories and patches, to include fixes for four new High Priority vulnerabilities.

SAP July 2022 Security Patch Day addresses 4 new ‘High Priority’ vulnerabilities Read More »

Juniper patches Critical and High severity vulnerabilities in Junos OS, Contrail Networking, Northstar Controller products (July 2022)

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / July 16, 2022 / Contrail Networking, CVE-2021-23017, CVE-2022-22205, CVE-2022-22206, CVE-2022-22207, CVE-2022-22209, CVE-2022-22212, CVE-2022-22221, Juniper, Junos, Northstar Controller

Juniper Networks has released security advisories to fix many vulnerabilities on Junos OS and multiple other products.

Juniper patches Critical and High severity vulnerabilities in Junos OS, Contrail Networking, Northstar Controller products (July 2022) Read More »