A warning was chosen preferable to a patch and added to the Python documentation. Security experts estimate that a 15-year-old path traversal vulnerability in…
Directory traversal
exploit code
CISA warns of active JasperReports exploitations
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has identified security vulnerabilities in the JasperReports product from TIBCO Software that is two years old…
RCE vulnerability
Zyxel NAS Devices Have a Critical RCE Vulnerability; A Firmware Patch Has Been Released
Networking equipment maker Zyxel has released patches for a critical security flaw impacting its network-attached storage (NAS) devices. Zyxel NAS Devices Have a Critical…
General
Windows And UnRAR Weaknesses Are Being Actively Used In The Field, According To CISA
Based on the evidence of active exploitation, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities to its list of…
General
Business Networks Were Vulnerable To Misuse Because Of Zyxel Firewall Flaws
The severity of the code execution bug was reduced by the prior patch’s “high uptake.” Following the identification of two security flaws that exposed…
General
CISA Warns About Critical Vulnerabilities in Illumina’s DNA Sequencing Devices
The Food and Drug Administration (FDA) and the US Cybersecurity and Infrastructure Security Agency (CISA) have issued an advisory concerning serious security vulnerabilities in…
General
Serious flaw plagues dotCMS content management software
A pre-authenticated remote code execution flaw has been revealed in dotCMS, an open-source content management system written in Java and “used by over 10,000…
General
LFI Vulnerability of Critical Importance was reported in Hashnode Blogging Platform
Hashnode, a developer-oriented blogging platform, has a previously undiscovered local file inclusion (LFI) vulnerability that might be exploited to gain access to sensitive data…
Cybersecurity
Major vulnerabilities patched by VMware for their ESXi Hypervisor & SD-WAN Orchestrator
Multiple vulnerabilities have recently come to light VMware’s ESXi Hypervisor and the SD-WAN Orchestrator. The company has patched these vulnerabilities & released updates for…
Cisco Updates
Acute Fissures RCE in Cisco Security Manager
Cisco has posted a couple of safety advisories regarding some major defects in Cisco Security Manager (CSM) a week later the networking device maker…