Vulnerabilities & Exploits

Securezoo Cybersecurity Threat Center blog posts of new vulnerabilities and exploits.

Mozilla patches 2 Critical Firefox zero-day security flaws under attack in the wild

The Mozilla Foundation has patched two Critical zero-day vulnerabilities in Firefox 97.0.2, Firefox ESR 91.6.1, Firefox for Android 97.3.0, and Focus 97.3.0. There are also reported attacks in the wild against each of these flaws.

Mozilla patches 2 Critical Firefox zero-day security flaws under attack in the wild Read More »

CISA adds 95 vulnerabilities to Known Exploited Vulnerabilities Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) has added 95 vulnerabilities to its Known Exploited Vulnerabilities Catalog. Recent additions include Apache Tomcat “Ghostcat”, Exim and Cisco Small Business RV routers, among others.

CISA adds 95 vulnerabilities to Known Exploited Vulnerabilities Catalog Read More »

networking, data, center-1626665.jpg

Cisco patches High risk Email Security Appliance DNS Verification DoS vulnerability

Cisco has released a High risk security advisory for an Email Security Appliance DNS Verification Denial of Service (DoS) vulnerability, as well as several other vulnerabilities in Nexus switches and NX-OS software.

Cisco patches High risk Email Security Appliance DNS Verification DoS vulnerability Read More »

CISA adds 1 Zimbra and 3 Microsoft vulnerabilities to Known Exploited Vulnerabilities Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) has added one Zimbra and three Microsoft vulnerabilities to its Known Exploited Vulnerabilities Catalog based on evidence that cyber criminals are actively exploiting the vulnerabilities.

CISA adds 1 Zimbra and 3 Microsoft vulnerabilities to Known Exploited Vulnerabilities Catalog Read More »

CISA adds 2 Zabbix vulnerabilities to Known Exploited Vulnerabilities Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) has added two Zabbix vulnerabilities (CVE-2022-23131, CVE-2022-23134) to its Known Exploited Vulnerabilities Catalog based on evidence that cyber criminals are actively exploiting the vulnerabilities.

CISA adds 2 Zabbix vulnerabilities to Known Exploited Vulnerabilities Catalog Read More »

Severe vulnerability found in WordPress plugin backup utility UpdraftPlus

A security researcher has discovered a severe vulnerability in WordPress plugin backup utility UpdraftPlus that could allow an attacker to potentially steal sensitive information from backups.

Severe vulnerability found in WordPress plugin backup utility UpdraftPlus Read More »