Apache patches Tomcat vulnerability (CVE-2021-24122)
The Apache Software Foundation has patched a Tomcat vulnerability CVE-2021-24122 that may lead to information disclosure.
The Apache Software Foundation has patched a Tomcat vulnerability CVE-2021-24122 that may lead to information disclosure.
Cisco has patched multiple vulnerabilities in Small Business routers, Cisco Connected Mobile Experiences (CMX) and AnyConnect products.
Adobe has released security updates to address vulnerabilities in Adobe Photoshop, Illustrator, Bridge and multiple other products.
Microsoft has released the January 2021 Security updates that includes patches for 83 vulnerabilities, 10 of those rated Critical and 1 zero-day RCE vulnerability CVE-2021-1647 in Microsoft Defender.
Security experts have warned about a high risk hardcoded credential vulnerability in Zyxel firewalls and AP controllers. Some sources have confirmed that bad actors have already ramped up exploits against the vulnerability.
The National Security Agency (NSA) has issued new guidance to eliminate obsolete Transport Layer Security (TLS) protocol configurations (such as TLS 1.0, TLS 1.1, SSLv2, SSLv3 and weak ciphers).
The Mozilla Foundation has released Firefox 84.0.2 that includes a security fix for a Critical vulnerability CVE-2020-16044. An attacker could exploit the vulnerability to take control of impacted systems. As…
Google has released Chrome 87 security update (87.0.4280.141) for Windows, Mac and Linux with fixes for 16 vulnerabilities. The tech giant also released a Chrome browser update for Android.
QNAP has fixed a High severity Command Injection vulnerability CVE-2020-25847 in QTS and QuTS hero.
The Cybersecurity and Infrastructure Security Agency (CISA) has warned the recent compromise by threat actors of SolarWinds poses a 'grave risk' to critical infrastructure, government and private sector organizations.