Tag: apache
-
Critical Apache HugeGraph Flaw Under Attack
First seen on duo.com Jump to article: duo.com/decipher/threat-actors-exploiting-critical-apache-hugegraph-flaw
-
Ubuntu Patches Several Apache HTTP Server Vulnerabilities
Several security vulnerabilities were discovered in Apache HTTP server, which could lead to denial of service or exposure of sensitive information. Fo… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/07/ubuntu-patches-several-apache-http-server-vulnerabilities/
-
Critical Apache HugeGraph Vulnerability Under Attack – Patch ASAP
Threat actors are actively exploiting a recently disclosed critical security flaw impacting Apache HugeGraph-Server that could lead to remote code exe… First seen on thehackernews.com Jump to article: thehackernews.com/2024/07/critical-apache-hugegraph-vulnerability.html
-
Attacks leveraging critical Apache HugeGraph bug underway
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/attacks-leveraging-critical-apache-hugegraph-bug-underway
-
Apache HugeGraph Vulnerability Exploited in Wild
A recently patched Apache HugeGraph-Server vulnerability tracked as CVE-2024-27348 is being targeted in attacks. The post Apache HugeGraph Vulnerabili… First seen on securityweek.com Jump to article: www.securityweek.com/apache-hugegraph-vulnerability-exploited-in-wild/
-
Act Now: Critical Apache HugeGraph Vulnerability Under Attack
A critical security vulnerability, CVE-2024-27348, has been identified in Apache HugeGraph-Server, posing a severe risk to organizations relying on th… First seen on thecyberexpress.com Jump to article: thecyberexpress.com/hugegraph-vulnerability-cve-2024-27348/
-
Apache fixed a source code disclosure flaw in Apache HTTP Server
The Apache Foundation addressed a critical source code disclosure vulnerability, tracked as CVE-2024-39884, in the HTTP Server. The Apache Software Fo… First seen on securityaffairs.com Jump to article: securityaffairs.com/165422/security/apache-source-code-disclosure-flaw-apache-http-server.html
-
POC exploit code published for 9.8-rated Apache HugeGraph RCE flaw
First seen on theregister.com Jump to article: www.theregister.com/2024/06/07/poc_apache_hugegraph/
-
Angriffe laufen Admins sollten HugeGraph aktualisieren – Aktiver Exploit für Apache HugeGraph entdeckt!
First seen on security-insider.de Jump to article: www.security-insider.de/aktiver-exploit-fuer-apache-hugegraph-entdeckt-a-19c1c7ba217fc0ce8cb06ac38960710d/
-
Muhstik Botnet Exploiting Apache RocketMQ Flaw to Expand DDoS Attacks
The distributed denial-of-service (DDoS) botnet known as Muhstik has been observed leveraging a now-patched security flaw impacting Apache RocketMQ to… First seen on thehackernews.com Jump to article: thehackernews.com/2024/06/muhstik-botnet-exploiting-apache.html
-
Jetzt patchen! Exploitcode für kritische Lücke in Apache HugeGraph in Umlauf
Tags: apacheFirst seen on heise.de Jump to article: www.heise.de/news/Jetzt-patchen-Exploitcode-fuer-kritische-Luecke-in-Apache-HugeGraph-in-Umlauf-9751687.html
-
Muhstik Malware Attacking Apache RocketMQ To Execute Remote Code
Apache RocketMQ platform is a widely used messaging system that handles high volumes of data and critical operations, often attracting hackers. Explo… First seen on gbhackers.com Jump to article: gbhackers.com/muhstik-malware-rocketmq-remote-code-execution/
-
Apache RocketMQ targeted for more extensive Muhstik botnet attacks
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/apache-rocketmq-targeted-for-more-extensive-muhstik-botnet-attacks
-
Apache Log4j threat persists in global finance sector
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/apache-log4j-threat-persists-in-global-finance-sector
-
CISA Alert: Urgent Update Needed for Apache Flink Vulnerability
Attention Apache Flink users! The U.S. Cybersecurity and Infrastructure Security Agency (CISA) recently added an Apache Flink vulnerability to its Kno… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/cisa-alert-urgent-update-needed-for-apache-flink-vulnerability/
-
CISA Warns of Actively Exploited Apache Flink Security Vulnerability
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a security flaw impacting Apache Flink, the open-source, unified st… First seen on thehackernews.com Jump to article: thehackernews.com/2024/05/cisa-warns-of-actively-exploited-apache.html
-
Top 5 CVEs and Vulnerabilities of May 2024
May brought a fresh batch of security headaches. This month, we’re focusing on critical vulnerabilities in widely used software like Apache, Gitlab, a… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/06/top-5-cves-and-vulnerabilities-of-may-2024/
-
Three-Year-Old Apache Flink Flaw Under Active Attack
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/35922/Three-Year-Old-Apache-Flink-Flaw-Under-Active-Attack.html
-
CISA adds years-old Apache Flink bug to KEV catalog
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/cisa-adds-years-old-apache-flink-bug-to-kev-catalog
-
Kinsing Malware Attacking Apache Tomcat Server With Vulnerabilities
The scalability and flexibility of cloud platforms recently boosted the emerging trend of cryptomining attacks in the cloud. Unlike on-premises infras… First seen on gbhackers.com Jump to article: gbhackers.com/kinsing-malware-attacks-apache-tomcat-vulnerabilities/
-
CISA adds Apache Flink flaw to its Known Exploited Vulnerabilities catalog
CISA adds Apache Flink improper access control vulnerability to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure… First seen on securityaffairs.com Jump to article: securityaffairs.com/163635/security/cisa-apache-flink-flaw-known-exploited-vulnerabilities-catalog.html
-
Kinsing Malware Attacking Apache Tomcat Servers To Deploy Cryptominers
Kinsing malware, known for exploiting vulnerabilities on Linux cloud servers to deploy backdoors and cryptominers, has recently expanded its target to… First seen on gbhackers.com Jump to article: gbhackers.com/kinsing-malware-apache-tomcat-servers/
-
Apache OFBiz RCE Flaw Let Attackers Execute Malicious Code Remotely
Many businesses use enterprise resource planning (ERP) systems like Apache OFBiz. However, it has been found to have significant security holes that l… First seen on gbhackers.com Jump to article: gbhackers.com/apache-ofbiz-rce-flaw/
-
Apache Cordova App Harness Targeted in Dependency Confusion Attack
Researchers have identified a dependency confusion vulnerability impacting an archived Apache project called Cordova App Harness.Dependency confusion … First seen on thehackernews.com Jump to article: thehackernews.com/2024/04/apache-cordova-app-harness-targeted-in.html
-
Multiple Apache HTTP Server Vulnerabilities Fixed in Ubuntu
The Ubuntu security team recently addressed several Apache HTTP Server vulnerabilities in Ubuntu 23.10, Ubuntu 23.04, Ubuntu 22.04 LTS, Ubuntu 20.04 L… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/04/multiple-apache-http-server-vulnerabilities-fixed-in-ubuntu/
-
Dependency confusion vulnerability impacts archived Apache project
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/dependency-confusion-vulnerability-impacts-archived-apache-project
-
Dependency Confusion Vulnerability Found in Apache Project
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/dependency-confusion-flaw-found/
-
Critical Apache HugeGraph Flaw Let Attackers Execute Remote Code
Security researchers have identified a critical vulnerability in Apache HugeGraph, an open-source graph database tool. This flaw, if exploited, could … First seen on gbhackers.com Jump to article: gbhackers.com/critical-apache-hugegraph-flaw/
-
AWS fixes ‘FlowFixation’ vulnerability for account hijacking
A Tenable researcher discovered a session fixation flaw in AWS Managed Workflows for Apache Airflow that, combined with a misconfiguration, could enab… First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366574976/AWS-fixes-FlowFixation-vulnerability-for-account-hijacking