Vulnerabilities & Exploits Archives - Page 49 of 106

Microsoft launches Phase 2 fix for Netlogon Elevation of Privilege Vulnerability (CVE-2020-1472)

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / February 11, 2021 / CVE-2020-1472, Domain Controller, Microsoft, MS-NRPC, Windows

Microsoft has announced the launch of Phase 2 permanent fix for a Netlogon Elevation of Privilege Vulnerability (CVE-2020-1472) that was patched last August.

Microsoft launches Phase 2 fix for Netlogon Elevation of Privilege Vulnerability (CVE-2020-1472) Read More »

Apple security updates for macOS Big Sur 11.2.1, Catalina and Mojave

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / February 9, 2021 / Apple, Big Sur, Catalina, macOS, Mojave

Apple has released security updates for macOS Big Sur 11.2.1, macOS Catalina and macOS Mojave to address multiple vulnerabilities.

Apple security updates for macOS Big Sur 11.2.1, Catalina and Mojave Read More »

Adobe releases security updates for Adobe Acrobat and Reader, other products (CVE-2021-21017 exploited in wild)

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / February 9, 2021 / Acrobat, Animate, CVE-2021-21017, Dreamweaver, Illustrator, Magento, Photoshop, Reader

Adobe has released security updates to address multiple vulnerabilities in Adobe Acrobat and Reader, as well as Magento, Photoshop, Animate, Illustrator and Dreamweaver. Moreover, the software giant addressed one Critical vulnerability CVE-2021-21017 exploited in the wild.

Adobe releases security updates for Adobe Acrobat and Reader, other products (CVE-2021-21017 exploited in wild) Read More »

Cisco patched Critical vulnerabilities in Small Business routers

Network Security, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / February 8, 2021 / Cisco, CVE-2021-1159, CVE-2021-1160, CVE-2021-1161, CVE-2021-1289, CVE-2021-1290, CVE-2021-1291, CVE-2021-1292, CVE-2021-1293, CVE-2021-1294, CVE-2021-1295, CVE-2021-3156, RV160, RV160W, RV260, Small Business, sudo

Cisco has patched multiple remote code execution vulnerabilities in Small Business router models RV160, RV160W, RV260, RV260P and RV260W VPN Routers.

Cisco patched Critical vulnerabilities in Small Business routers Read More »

Google patches Chrome zero-day (CVE-2021-21148) exploited in the wild

Cybersecurity Attacks, Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / February 5, 2021 / browser, Chrome, Chrome 88, Zero-day

Google has released a new Chrome 88 security update (88.0.4324.150) for Windows, Mac and Linux with a fix for a zero-day vulnerability CVE-2021-21148 exploited in the wild.

Google patches Chrome zero-day (CVE-2021-21148) exploited in the wild Read More »

Urgent patch for SonicWall SMA 100 Series zero-day vulnerability (CVE-2021-20016)

Network Security, Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / February 4, 2021 / Appliance, CVE-2021-20016, SMA, SMA 100, SonicWall

SonicWall has released an urgent patch for a Critical SonicWall SMA 100 Series version 10.x zero-day vulnerability CVE-2021-20016.

Urgent patch for SonicWall SMA 100 Series zero-day vulnerability (CVE-2021-20016) Read More »

Google releases Chrome security update (88.0.4324.146)

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / February 4, 2021 / browser, Chrome, Chrome 88, CVE-2021-21142

Google has released Chrome 88 security update (88.0.4324.146) for Windows, Mac and Linux with fixes for 6 vulnerabilities.

Google releases Chrome security update (88.0.4324.146) Read More »

Apple security updates for macOS Big Sur 11.2, Catalina and Mojave

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / February 3, 2021 / Apple, Big Sur, CVE-2021-1781, CVE-2021-1870, CVE-2021-1872, iOS, macOS

Apple has released macOS Big Sur 11.2, Security Update 2021-001 Catalina, and Security Update 2021-001 Mojave to address multiple vulnerabilities, including three zero-days.

Apple security updates for macOS Big Sur 11.2, Catalina and Mojave Read More »

Pro-Ocean cryptojacking malware targets cloud applications

Cloud Security, Cybersecurity Attacks, Vulnerabilities & Exploits / Frank Crast / February 1, 2021 / ApacheMQ, CVE-2016-3088, CVE-2017-10271, Mining, Oracle Weblogic, Pro-Ocean, rootkit, Unit 42, Watchdog, WebLogic

A new Pro-Ocean cryptojacking malware targets popular cloud applications including ApacheMQ, Oracle Weblogic and Redis. The malware contains four modules that execute to hide, mine cryptocurrency, watchdog and infect systems.

Pro-Ocean cryptojacking malware targets cloud applications Read More »

Sudo privilege escalation vulnerability (CVE-2021-3156)

Authentication, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / January 29, 2021 / CVE-2021-3156, Linux, Privilege escalation, sudo, Unix

A vulnerability in open-source sudo utility could allow regular users to gain root privileges on vulnerable Linux hosts without authentication.

Sudo privilege escalation vulnerability (CVE-2021-3156) Read More »