Securezoo Cybersecurity Threat Center blog posts of new vulnerabilities and exploits.
Drupal has patched a Critical cross-site scripting (XSS) vulnerability in Drupal Core. A remote attacker could exploit this vulnerability to compromise an affected system.
Drupal patches Critical XSS vulnerability in Drupal Core Read More »
SonicWall has released urgent patches for Critical Email Security product zero-day vulnerabilities CVE-2021-20021, CVE-2021-20022 and CVE-2021-20023.
SonicWall Email Security zero-day vulnerabilities Read More »
Security researchers have spotted Tor-based botnet malware that targets Linux systems and cloud management tools to spread malware on victims’ networks.
Botnet malware targets Linux systems and cloud management tools Read More »
Google has released Chrome 90 security update 90.0.4430.85 for Windows, Mac and Linux with a fix one vulnerability CVE-2021-21224 exploited in the wild and patches for six other vulnerabilities.
Chrome security update fixes zero-day (CVE-2021-21224) and 6 other vulnerabilities Read More »
Oracle has released its Critical Patch Update for April 2021 to include 390 vulnerability fixes across multiple products.
Oracle Critical Patch Update for April 2021 Read More »
VMware issued a security advisory for a High severity privilege escalation vulnerability CVE-2021-21981 in VMware NSX-T.
VMware patches NSX-T privilege escalation vulnerability (CVE-2021-21981) Read More »
The Mozilla Foundation has released Firefox 88 that includes security fixes for five High risk vulnerabilities and new protection against privacy leaks on the web.
Mozilla releases Firefox 88 with new protection against privacy leaks on the web Read More »
The U.S. Department of Justice (DOJ) authorized the FBI to remove malicious web shells from hundreds of compromised and vulnerable Microsoft Exchange servers.
Security researchers have discovered nine vulnerabilities collectively dubbed NAME:WRECK than can break DNS implementations in TCP/IP stacks and lead to denial of service or remote code execution. The experts also provided guidelines to organization on how to fix the issues.
NAME:WRECK vulnerabilities can break DNS implementations in TCP/IP stacks Read More »
WordPress has released WordPress 5.7.1 security and maintenance update that includes fixes for two security vulnerabilities. All WordPress versions between 4.7 and 5.7 are affected.
WordPress security update (5.7.1) fixes 2 vulnerabilities Read More »
