F5 patches Critical RCE vulnerability (CVE-2020-5902) in BIG-IP configuration utility

F5 has patched a Critical remote code execution (RCE) vulnerability (CVE-2020-5902) in the Configuration utility of BIG-IP. Researchers further discovered 8,000 devices were vulnerable on the internet and could result in full system compromise.

Continue Reading F5 patches Critical RCE vulnerability (CVE-2020-5902) in BIG-IP configuration utility

BIND and Microsoft DNS security updates

The Internet Systems Consortium (ISC) has released two security updates that fix vulnerabilities on multiple versions of BIND. In addition, Microsoft also issued a new DNS security advisory and workaround. The flaws could allow a remote attacker to exploit and cause a denial of service condition.

Continue Reading BIND and Microsoft DNS security updates

Cisco patches Critical Vulnerability, warns of known public exploits

Cisco released security updates to patch critical vulnerabilities in multiple Cisco IOS products as well as high severity bugs in Cisco Wireless LAN, IOS, and other products. Two advisories have been updated with known public vulnerability exploits as recently evealed in Sea Turtle DNS hijacking campaign.

Continue Reading Cisco patches Critical Vulnerability, warns of known public exploits