The Apache Software Foundation has released new Apache Tomcat versions and mitigations to address a remote code execution (RCE) vulnerability.
The Apache Foundation has patched a high severity privilege escalation vulnerability in Apache HTTP Server 2.4 (releases 2.4.17 to 2.4.38). Web servers should be patched as soon as possible since the bug could allow attackers a way to gain “root” or full admin access to server.
A security researcher has disclosed a severe remote code execution bug in open source software versions of LibreOffice and Apache OpenOffice. One of the two have been patched, the other still vulnerable.
Cisco released four critical security advisories on Wednesday for multiple Cisco products.
The Apache Software Foundation has released a security advisory that fixes a vulnerability in Commons FileUpload library in Apache Struts versions 2.3.36 and prior.