Vulnerabilities & Exploits

Securezoo Cybersecurity Threat Center blog posts of new vulnerabilities and exploits.

Critical F5 BIG-IP vulnerability (CVE-2021-22986) under active attack

Security researchers are warning of mass scans and active exploits of a Critical vulnerability on F5 BIG-IP and BIG-IQ infrastructure. F5 patched the Critical remote code execution vulnerability CVE-2021-22986 nearly two weeks ago when the networking company confirmed an unauthenticated attacker could exploit the vulnerability.

Critical F5 BIG-IP vulnerability (CVE-2021-22986) under active attack Read More »

Chrome security update (89.0.4389.90) fixes zero-day exploited in the wild (CVE-2021-21193)

Google has released Chrome 88 security update (89.0.4389.90) for Windows, Mac and Linux with fixes for five vulnerabilities. One of those vulnerabilities has been exploited in the wild (CVE-2021-21193).

Chrome security update (89.0.4389.90) fixes zero-day exploited in the wild (CVE-2021-21193) Read More »

Cybersecurity experts warn exploits grow ten-fold after Exchange Server zero-day vulnerabilities revealed

Cybersecurity experts are warning exploits against organizations worldwide have grown ten-fold after recent Microsoft Exchange Server zero-day vulnerabilities known as “ProxyLogon” were revealed.

Cybersecurity experts warn exploits grow ten-fold after Exchange Server zero-day vulnerabilities revealed Read More »

FBI and CISA issue urgent joint cybersecurity advisory on Exchange server hacks

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have issued an urgent joint cybersecurity advisory on the Microsoft Exchange vulnerability exploits, collectively known as “ProxyLogon.”

FBI and CISA issue urgent joint cybersecurity advisory on Exchange server hacks Read More »

F5 patches 4 Critical vulnerabilities

F5 has patched two Critical remote code execution (RCE) and another two buffer overflow vulnerabilities that impact BIG-IP and BIG-IQ devices. Moreover, the security firm also addressed two other High severity bugs and one Medium severity flaw.

F5 patches 4 Critical vulnerabilities Read More »

Microsoft March 2021 Security Updates, fixes for 14 Critical bugs

Microsoft has released the March 2021 Security updates that includes patches for 89 vulnerabilities, 14 of those rated Critical. The fixes follow just after the tech giant released emergency patched for Exchange flaws being exploited in the wild.

Microsoft March 2021 Security Updates, fixes for 14 Critical bugs Read More »

Adobe releases security updates for Framemaker, Creative Cloud Desktop Application and Connect

Adobe has released security updates to address vulnerabilities in Adobe Framemaker, Creative Cloud Desktop Application and Connect products.

Adobe releases security updates for Framemaker, Creative Cloud Desktop Application and Connect Read More »

Microsoft releases emergency patches for Exchange Server RCE vulnerabilities exploited in the wild (Updated)

Microsoft has released emergency out-of-band security updates to fix multiple Critical vulnerabilities impacting Microsoft Exchange Server 2013, 2016 and 2019, collectively known as “ProxyLogon.” The tech giant also published interim mitigations if organizations can not patch immediately, as well as an IOC detection tool.

Microsoft releases emergency patches for Exchange Server RCE vulnerabilities exploited in the wild (Updated) Read More »