Vulnerabilities & Exploits Archives - Page 48 of 106

Google patches Chrome zero-day (CVE-2021-21166) exploited in the wild

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / March 3, 2021 / browser, Chrome, CVE-2021-21166, Microsoft, Zero-day

Google has released a new Chrome 89 security update (89.0.4389.72) for Windows, Mac and Linux with fixes for multiple vulnerabilities, to include one zero-day vulnerability CVE-2021-21166 exploited in the wild.

Google patches Chrome zero-day (CVE-2021-21166) exploited in the wild Read More »

Cisco patches Critical vulnerabilities on NX-OS and ASE products

Network Security, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / March 1, 2021 / ASE, CVE-2021-1361, CVE-2021-1388, CVE-2021-1393, CVE-2021-1396, Networking, NX-OS, Vulnerabilities

Cisco has patched multiple Critical vulnerabilities in NX-OS and Application Services Engine products. An attacker could remotely exploit some of these vulnerabilities to take control of an impacted system.

Cisco patches Critical vulnerabilities on NX-OS and ASE products Read More »

VMware patches Critical vulnerability that exposed thousands of servers online

Cybersecurity Attacks, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / February 25, 2021 / CVE-2021-21972, CVE-2021-21974, ESXi, vcenter, VMware

VMware has patched multiple vulnerabilities, to include one Critical vulnerability (CVE-2021-21972) that has exposed thousands of servers online.

VMware patches Critical vulnerability that exposed thousands of servers online Read More »

Firefox 86 adds ‘Total Cookie Protection’ along with fixes for 5 High risk vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / February 24, 2021 / Cookie, CVE-2021-23968, CVE-2021-23969, CVE-2021-23970, CVE-2021-23978, CVE-2021-23979, ETP, Firefox, Firefox 86, Mozilla, Total Cookie Protection

The Mozilla Foundation has released Firefox 86 that includes a new feature for ‘Total Cookie Protection,’ along with security fixes for five High risk vulnerabilities.

Firefox 86 adds ‘Total Cookie Protection’ along with fixes for 5 High risk vulnerabilities Read More »

SonicWall releases new firmware updates for SMA 100 Series 10.X And 9.X products

Network Security, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / February 24, 2021 / firmware, SMA, SMA 100, SonicWall, SSLVPN, VPN

SonicWall has released a new firmware update for SMA 100 Series 10.X And 9.X products. The latest update supersedes previous urgent patches that fixed a zero-day vulnerability CVE-2021-20016 earlier this month.

SonicWall releases new firmware updates for SMA 100 Series 10.X And 9.X products Read More »

Cyber attackers exploit Accellion FTA 0-day vulnerabilities to steal data

Cybersecurity Attacks, Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / February 23, 2021 / 0-day, Accellion, CVE-2021-27101, CVE-2021-27102, CVE-2021-27103, CVE-2021-27104, DEWMODE, FireEye, FTA, Mandiant, UNC25346

Cyber attackers have been exploiting Accellion File Transfer (FTA) appliance 0-day vulnerabilities to steal data and threaten their victims with extortion attempts.

Cyber attackers exploit Accellion FTA 0-day vulnerabilities to steal data Read More »

Cisco patches AnyConnect Secure Mobility Client DLL hijacking vulnerability (CVE-2021-1366)

Network Security, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / February 18, 2021 / AnyConnect, Cisco, CVE-2021-1366, Mobility, Networking

Cisco has patched a Cisco AnyConnect Secure Mobility Client DLL hijacking vulnerability (CVE-2021-1366). An attacker could remotely exploit some of these vulnerabilities to take control of an impacted system.

Cisco patches AnyConnect Secure Mobility Client DLL hijacking vulnerability (CVE-2021-1366) Read More »

Google releases Chrome security update (88.0.4324.182)

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / February 17, 2021 / browser, Chrome, CVE-2021-21149, CVE-2021-21150, CVE-2021-21152, CVE-2021-21153, CVE-2021-21154, CVE-2021-21155, CVE-2021-21156

Google has released Chrome 88 security update (88.0.4324.182) for Windows, Mac and Linux with fixes for ten vulnerabilities.

Google releases Chrome security update (88.0.4324.182) Read More »

Android app SHAREit vulnerabilities could leak sensitive data and lead to remote code execution

Mobile Security, Vulnerabilities & Exploits / Frank Crast / February 16, 2021 / mobile, SHAREit, Trend Micro, vdex/odex

Cybersecurity experts have discovered a popular Android app riddled with vulnerabilities has been download one billion times. An attacker can exploit the permissions on SHAREit mobile app to leak sensitive data and remotely execute malicious code.

Android app SHAREit vulnerabilities could leak sensitive data and lead to remote code execution Read More »

Microsoft February 2021 Security Updates, warns of Win32k Privilege Escalation vulnerability exploited in wild (updated)

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / February 12, 2021 / .NET, Azure, CVE-2021-1732, Developer Tools, DNS Server, Edge, Exchange Server Office, IOT, Kubernetes, Microsoft Dynamics, PFX Encryption, PKU2U, PowerSHell, Skype for Business, SysInternals, System Center, TCP/IP, Visual Studio

Microsoft has released the February 2021 Security updates that includes patches for 56 vulnerabilities, 11 of those rated Critical. Moreover, the tech giant warned of a Win32k Privilege Escalation vulnerability CVE-2021-1732 exploited in wild.

Microsoft February 2021 Security Updates, warns of Win32k Privilege Escalation vulnerability exploited in wild (updated) Read More »