Apache patches Tomcat HTTP/2 DoS vulnerability
The Apache Software Foundation has released new Apache Tomcat security updates to address an HTTP/2 Denial of Service (DoS) vulnerability.
Apache patches Tomcat RCE vulnerability
The Apache Software Foundation has released new Apache Tomcat versions and mitigations to address a remote code execution (RCE) vulnerability.
Apache Web Server “Carpe Diem” vulnerability update
The Apache Foundation has patched a high severity privilege escalation vulnerability in Apache HTTP Server 2.4 (releases 2.4.17 to 2.4.38). Web servers should be patched as soon as possible since the bug could allow attackers a way to gain "root" or full admin access to server.
Severe vulnerability found in LibreOffice and Apache OpenOffice
A security researcher has disclosed a severe remote code execution bug in open source software versions of LibreOffice and Apache OpenOffice. One of the two have been patched, the other still vulnerable.
Cisco patches critical vulnerabilities
Cisco released four critical security advisories on Wednesday for multiple Cisco products.
Apache Struts security patch
The Apache Software Foundation has released a security advisory that fixes a vulnerability in Commons FileUpload library in Apache Struts versions 2.3.36 and prior.
Apache Tomcat security update
The Apache Software Foundation has released a security update to fix a vulnerability in Apache Tomcat JK Connectors.
New Mirai, Gafgyt IoT botnet variants target systems with Apache Struts, SonicWall vulnerability exploits
New variants of IoT botnets Mirai and Gafgyt are increasingly targeting enterprise devices with outdated versions and unpatched vulnerabilities.
Apache Struts vulnerability exploit POC published
Security researchers have discovered proof-of-concept code of an Apache Struts vulnerability exploit, to include a Python script that makes it easier to exploit.
Apache Struts 2 critical RCE vulnerability
The Apache Software Foundation has issued a security update for a critical remote code execution (RCE) vulnerability (CVE-2018-11776) in Apache Struts 2.
- 1
- 2