Vulnerabilities & Exploits Archives - Page 34 of 106

Microsoft September 2021 Security Updates includes fix for an RCE bug in MSHTML under active attack

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / September 15, 2021 / Azure, CVE-2021-26435, CVE-2021-36965, CVE-2021-40444, Office, OMI, Windows

Microsoft has released the September 2021 Security updates that includes patches for 66 vulnerabilities, 3 of those rated Critical. The updates also include a fix for one zero-day bug in MSHTML (CVE-2021-40444) exploited in the wild.

Microsoft September 2021 Security Updates includes fix for an RCE bug in MSHTML under active attack Read More »

Adobe September 2021 updates include fixes for Adobe Acrobat and Reader, 14 other products

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / September 15, 2021 / Acrobat and Reader, Adobe, ColdFusion, Photoshop

The Adobe September 2021 updates include fixes for Adobe Acrobat and Reader and 14 other products.

Adobe September 2021 updates include fixes for Adobe Acrobat and Reader, 14 other products Read More »

Microsoft warns of active exploits in the wild for an MSHTML RCE Vulnerability (CVE-2021-40444) — Updated

Vulnerabilities & Exploits, Zero-days / Frank Crast / September 15, 2021 / CVE-2021-40444, Microsoft, MSHTML, RCE

Microsoft has warned of active exploits in the wild for an MSHTML RCE Vulnerability (CVE-2021-40444). The tech giant also released workarounds for the threat until a permanent fix is released.

Microsoft warns of active exploits in the wild for an MSHTML RCE Vulnerability (CVE-2021-40444) — Updated Read More »

Apple security updates for iOS 14.8, macOS Big Sur 11.6 and other products (warns of active exploits in the wild)

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / September 14, 2021 / Apple, Big Sur, BigSur116, iOS, iOS148

Apple has released security updates to fix vulnerabilities in iOS 14.8, macOS Big Sur 11.6, Safari 14.1.2, watchOS 7.6.2, and other products. The tech giant also warned of active exploits in the wild against some vulnerabilities.

Apple security updates for iOS 14.8, macOS Big Sur 11.6 and other products (warns of active exploits in the wild) Read More »

Sidewalk backdoor linked to Grayfly espionage group

Cybercrime, Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / Frank Crast / September 13, 2021 / backdoor, C2, ESET, espionage, Exchange, Grayfly, malware, shellcode, Sidewalk

Researchers have recently discovered the Sidewalk modular backdoor has been linked to a Chinese Grayfly espionage group.

Sidewalk backdoor linked to Grayfly espionage group Read More »

WordPress security update (5.8.1) fixes 3 vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / September 11, 2021 / Rest API, WordPress, WordPress 5.8.1, XSS

WordPress has released WordPress 5.8.1 security and maintenance update that includes fixes for 3 security vulnerabilities and 60 bugs. All WordPress versions between 5.4 and 5. 8 are affected.

WordPress security update (5.8.1) fixes 3 vulnerabilities Read More »

Citrix Hypervisor security updates

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / September 10, 2021 / Citrix, CVE-2021-28694, CVE-2021-28697, CVE-2021-28698, CVE-2021-28699, CVE-2021-28701, Hypervisor

Citrix has issued a security update for Citrix Hypervisor vulnerabilities, that may collectively allow an attacker to launch privileged code in a guest VM to compromise or crash the host.

Citrix Hypervisor security updates Read More »

Cisco fixes 5 High risk Cisco IOS XR Software vulnerabilities in multiple products

Network Security, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / September 10, 2021 / Cisco, CVE-2021-3449, CVE-2021-3450, CVE-2021-34713, CVE-2021-34718, CVE-2021-34719, CVE-2021-34720, CVE-2021-34728, IOS XR, Networking, OpenSSL

Cisco has fixed five High risk Cisco IOS XR Software vulnerabilities in multiple network products, as well as a security update for OpenSSL vulnerabilities.

Cisco fixes 5 High risk Cisco IOS XR Software vulnerabilities in multiple products Read More »

Mozilla patches 3 High risk vulnerabilities in Firefox 92

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / September 8, 2021

The Mozilla Foundation has patched three High risk vulnerabilities in Firefox 92. An attacker could exploit these vulnerabilities to take control of impacted systems.

Mozilla patches 3 High risk vulnerabilities in Firefox 92 Read More »

Netgear patches Critical authentication bypass vulnerability and two other flaws in multiple models of some Smart Switches

Network Security, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / September 7, 2021 / Demons Cries, Draconian Fear, NETGEAR, Networking, Smart Switch

Researchers have discovered a Critical authentication bypass vulnerability and two other flaws in multiple models of some Smart Switches.

Netgear patches Critical authentication bypass vulnerability and two other flaws in multiple models of some Smart Switches Read More »