Tag: rce
-
Critical OpenSSH Flaw Enables Full System Compromise
A newly discovered RCE vulnerability, which can lead to full system compromise, has put over 14 million OpenSSH server instances are potentially at ri… First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/openssh-flaw-system-compromise/
-
Critical RCE Vulnerability Discovered in Ollama AI Infrastructure Tool
Tags: ai, cybersecurity, flaw, infrastructure, intelligence, open-source, rce, remote-code-execution, tool, update, vulnerabilityCybersecurity researchers have detailed a now-patch security flaw affecting the Ollama open-source artificial intelligence (AI) infrastructure platfor… First seen on thehackernews.com Jump to article: thehackernews.com/2024/06/critical-rce-vulnerability-discovered.html
-
Threat Actor Claiming of Sandbox Escape RCE in 0-day Google Chrome
Threat Actor has claimed to have discovered a critical zero-day vulnerability in Google Chrome. This exploit, which reportedly enables a sandbox escap… First seen on gbhackers.com Jump to article: gbhackers.com/claiming-sandboxrce-0-day/
-
Patched: RCE Flaw That Affects Critical Manufacturing
Hackers Have Not Yet Exploited the CVSS 10-Rated Flaw, Says PTC. Software maker for critical manufacturing organizations PTC patched a critical flaw t… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/patched-rce-flaw-that-affects-critical-manufacturing-a-25699
-
New regreSSHion OpenSSH RCE bug gives root on Linux servers
First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-regresshion-openssh-rce-bug-gives-root-on-linux-servers/
-
Hackers Claiming of Sandbox Escape RCE in 0-DAY Google Chrome
Tags: browser, chrome, exploit, google, group, hacker, rce, remote-code-execution, vulnerability, zero-dayA group of hackers has claimed to have discovered a critical zero-day vulnerability in Google Chrome. This exploit, which reportedly enables a sandbox… First seen on gbhackers.com Jump to article: gbhackers.com/claiming-sandboxrce-0-day/
-
‘Perfect 10’ Apple Supply Chain Bug, Millions of Apps at Risk of CocoaPods RCE
First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/07/cocoapods-apple-vulns-richixbw/
-
regreSSHion OpenSSH RCE Vulnerability Impacts 700K Linux Systems
The Qualys Threat Research Unit has identified a newly discovered vulnerability in OpenSSH, dubbed >>regreSSHion
-
regreSSHion RCE Flaw Impacts 700K Linux Systems
The Qualys Threat Research Unit has identified a newly discovered vulnerability in OpenSSH, dubbed >>regreSSHion
-
regreSSHion: RCE Vulnerability in OpenSSH Server (CVE-2024-6387)
First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/07/regresshion-rce-vulnerability-in-openssh-server-cve-2024-6387/
-
Critical VMware Bugs Open Swaths of VMs to RCE, Data Theft
First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/critical-vmware-bugs-open-swaths-of-vms-to-rce-data-theft
-
Threat Actor Claims 0Day Sandbox Escape RCE in Chrome Browser
A threat actor has claimed to have discovered a zero-day vulnerability in the widely-used Google Chrome browser. The claim was made public via a tweet… First seen on gbhackers.com Jump to article: gbhackers.com/threat-actor-claims-0day-sandbox-escape-rce-in-chrome-browser/
-
Patched Weeks Ago, RCE Bug in AI Tool Still a ‘Probllama’
Companies Eager for Tools Are Putting AI’s Transformative Power Ahead of Security. Hackers targeting a popular open-source project for running artific… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/patched-weeks-ago-rce-bug-in-ai-tool-still-probllama-a-25611
-
New Ollama RCE vulnerability immediately fixed
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/new-ollama-rce-vulnerability-immediately-fixed
-
POC exploit code published for 9.8-rated Apache HugeGraph RCE flaw
First seen on theregister.com Jump to article: www.theregister.com/2024/06/07/poc_apache_hugegraph/
-
Week in review: CDK Global cyberattack, critical vCenter Server RCE fixed
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: The rise of SaaS security teams In this Help Net Sec… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/06/23/week-in-review-cdk-global-cyberattack-vcenter-server-critical-rce-fixed/
-
Vulnerability Recap 6/10/24 RCE Attacks in Major Platforms
First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/vulnerability-recap-june-10-2024/
-
PoC Exploit Emerges for Critical RCE Bug in Ivanti Endpoint Manager
First seen on darkreading.com Jump to article: www.darkreading.com/application-security/poc-exploit-critical-rce-bug-ivanti-endpoint-manager
-
VMware fixed RCE and privilege escalation bugs in vCenter Server
VMware addressed vCenter Server vulnerabilities that can allow remote code execution or privilege escalation. VMware addressed multiple vCenter Server… First seen on securityaffairs.com Jump to article: securityaffairs.com/164659/hacking/vmware-fixed-vcenter-server-flaws.html
-
VMware fixes critical vCenter RCE vulnerability, patch now
VMware has issued a security advisory addressing critical vulnerabilities in vCenter Server, including remote code execution and local privilege escal… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/vmware-fixes-critical-vcenter-rce-vulnerability-patch-now/
-
Critical RCE flaws in vCenter Server fixed (CVE-2024-37079, CVE-2024-37080)
VMware by Broadcom has fixed two critical vulnerabilities (CVE-2024-37079, CVE-2024-37080) affecting VMware vCenter Server and products that contain i… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/06/18/cve-2024-37079-cve-2024-37080/
-
Critical MSMQ RCE Bug Opens Microsoft Servers to Complete Takeover
First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/critical-msmq-rce-bug-microsoft-servers-complete-takeover
-
Critical Outlook RCE Vulnerability Exploits Preview Pane Patch Now!
ritical vulnerability (CVE-2024-30103) in Microsoft Outlook allows attackers to execute malicious code simply by opening an email. This zero-click exp… First seen on hackread.com Jump to article: hackread.com/outlook-rce-vulnerability-exploits-preview-pane/
-
PHP Updates Urged Over Critical Vuln That Could Lead To RCE
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/35979/PHP-Updates-Urged-Over-Critical-Vuln-That-Could-Lead-To-RCE.html
-
256,000+ Publicly Exposed Windows Servers Vulnerable to MSMQ RCE Flaw
Cybersecurity watchdog Shadowserver has identified 256,000+ publicly exposed servers vulnerable to a critical Remote Code Execution (RCE) flaw in Micr… First seen on gbhackers.com Jump to article: gbhackers.com/256000-windows-servers-msmq-rce-flaw/
-
Microsoft fixes RCE vulnerabilities in MSMQ, Outlook (CVE-2024-30080, CVE-2024-30103)
June 2024 Patch Tuesday is here and Microsoft has delivered fixes for a critical MSMQ flaw (CVE-2024-30080) and a RCE vulnerability in Microsoft Outlo… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/06/11/cve-2024-30080-cve-2024-30103/
-
Microsoft Urges Windows Admins to Patch Microsoft Message Queuing RCE Flaw
Microsoft has disclosed two Critical remote code execution vulnerabilities in MSMQ (Microsoft Message Queuing) and the Windows Wi-Fi Driver. The CVE f… First seen on gbhackers.com Jump to article: gbhackers.com/microsoft-message-queuing-rce-flaw/
-
Microsoft June 2024 Patch Tuesday fixes 51 flaws, 18 RCEs
Today is Microsoft’s June 2024 Patch Tuesday, which includes security updates for 51 flaws, eighteen remote code execution flaws, and one publicly dis… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-june-2024-patch-tuesday-fixes-51-flaws-18-rces/
-
TellYouThePass ransomware exploits recent PHP RCE flaw to breach servers
The TellYouThePass ransomware gang has been exploiting the recently patched CVE-2024-4577 remote code execution vulnerability in PHP to deliver webshe… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/tellyouthepass-ransomware-exploits-recent-php-rce-flaw-to-breach-servers/
-
PHP addressed critical RCE flaw potentially impacting millions of servers
A new PHP for Windows remote code execution (RCE) flaw affects version 5.x and earlier versions, potentially impacting millions of servers worldwide. … First seen on securityaffairs.com Jump to article: securityaffairs.com/164302/breaking-news/php-critical-rce.html