Tag: rce
-
Patch Tuesday: Microsoft Fixes Management Console RCE Zero-Day
First seen on scworld.com Jump to article: www.scworld.com/brief/patch-tuesday-microsoft-fixes-management-console-rce-zero-day
-
Apache Avro SDK Flaw Could Enable Java Apps RCE
First seen on scworld.com Jump to article: www.scworld.com/brief/apache-avro-sdk-flaw-could-enable-java-apps-rce
-
RCE in Java apps likely with critical Apache Avro SDK vulnerability
First seen on scworld.com Jump to article: www.scworld.com/brief/rce-in-java-apps-likely-with-critical-apache-avro-sdk-vulnerability
-
New scanner finds Linux, UNIX servers exposed to CUPS RCE attacks
An automated scanner has been released to help security professionals scan environments for devices vulnerable to the Common Unix Printing System (CUP… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/software/new-scanner-finds-linux-unix-servers-exposed-to-cups-rce-attacks/
-
Zimbra RCE Vuln Under Attack Needs Immediate Patching
First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/recent-zimbra-rce-under-attack-patch-now
-
Critical Apache Avro SDK RCE flaw impacts Java applications
A critical vulnerability in the Apache Avro Java Software Development Kit (SDK) could be exploited to execute arbitrary code on vulnerable instances. … First seen on securityaffairs.com Jump to article: securityaffairs.com/169469/security/apache-avro-java-sdk-critical-flaw.html
-
14 DrayTek Vulns Patched, Including RCE Flaw
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36424/14-DrayTek-Vulns-Patched-Including-RCE-Flaw.html
-
Linux/Unix RCE-Schwachstellen im CUPS (Sept. 2024)
Im Drucksystems CUPS, welches unter Linux und Unix zum Einsatz kommt, gibt es gleich mehrere kritische Schwachstellen. Diese lassen sich unter bestimm… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/09/28/linux-unix-rce-schwachstellen-im-cups-sept-2024/
-
Week in review: Critical Zimbra RCE vulnerability exploited, Patch Tuesday forecast
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: October 2024 Patch Tuesday forecast: Recall can be r… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/10/06/week-in-review-critical-zimbra-rce-vulnerability-exploited-patch-tuesday-forecast/
-
Zimbra Mail Servers Under Siege Through RCE Vuln
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36417/Zimbra-Mail-Servers-Under-Siege-Through-RCE-Vuln.html
-
14 DrayTek vulnerabilities patched, including max-severity RCE flaw
First seen on scworld.com Jump to article: www.scworld.com/news/14-draytek-vulnerabilities-patched-including-max-severity-rce-flaw
-
Zimbra email platform under active attack, RCE possible
First seen on scworld.com Jump to article: www.scworld.com/news/zimbra-email-platform-under-active-attack-rce-possible
-
Critical Ivanti RCE flaw with public exploit now used in attacks
Tags: attack, cisa, endpoint, exploit, flaw, ivanti, rce, remote-code-execution, threat, vulnerabilityCISA warned today that a critical Ivanti vulnerability that can let threat actors gain remote code execution on vulnerable Endpoint Manager (EPM) appl… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/critical-ivanti-rce-flaw-with-public-exploit-now-used-in-attacks/
-
Network switch RCE flaw impacts critical infrastructure
U.S. cybersecurity agency CISA is warning about two critical vulnerabilities that allow authentication bypass and remote code execution in Optigo Netw… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-network-switch-rce-flaw-impacts-critical-infrastructure/
-
Critical Zimbra RCE flaw exploited to backdoor servers using emails
Hackers are actively exploiting a recently disclosed RCE vulnerability in Zimbra email servers that can be triggered simply by sending specially craft… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/critical-zimbra-rce-flaw-exploited-to-backdoor-servers-using-emails/
-
Critical RCE Vulnerabilities Found in Common Unix Printing System
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/rce-vulnerabilities-cups/
-
Arc browser launches bug bounty program after fixing RCE bug
The Browser Company has introduced an Arc Bug Bounty Program to encourage security researchers to report vulnerabilities to the project and receive re… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/arc-browser-launches-bug-bounty-program-after-fixing-rce-bug/
-
Critical Zimbra RCE flaw actively exploited to take over servers
Hackers are actively exploiting a recently disclosed RCE vulnerability in Zimbra email servers that can be triggered simply by sending specially craft… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/critical-zimbra-rce-flaw-actively-exploited-to-take-over-servers/
-
CUPS vulnerabilities affecting Linux, Unix systems can lead to RCE
After much hyping and following prematurely leaked information by a third party, security researcher Simone Margaritelli has released details about fo… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/09/27/cups-vulnerabilities/
-
Critical RCE vulnerability found in OpenPLC
Cisco’s Talos reported critical and high-severity flaws in OpenPLC that could lead to DoS condition and remote code execution. Cisco’s Talos threat in… First seen on securityaffairs.com Jump to article: securityaffairs.com/168953/ics-scada/openplc-critical-flaw.html
-
Doomsday ‘9.9 RCE bug’ might hit every Linux system
First seen on theregister.com Jump to article: www.theregister.com/2024/09/26/unauthenticated_rce_bug_linux/
-
1 PoC Exploit for Critical RCE Flaw, but 2 Patches From Veeam
First seen on darkreading.com Jump to article: www.darkreading.com/application-security/poc-exploit-for-rce-flaw-but-patches-from-veeam
-
Exploiting Exploiting Exchange PowerShell After ProxyNotShell: Part 3 DLL Loading Chain for RCE
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36374/Exploiting-Exploiting-Exchange-PowerShell-After-ProxyNotShell-Part-3-DLL-Loading-Chain-for-RCE.html
-
Open Source C3 Frameworks Used In Red Teaming Assessments Vulnerable To RCE Attacks
C2 frameworks, crucial for post-exploitation operations, offer open-source alternatives to Cobalt Strike. They streamline the management of compromise… First seen on gbhackers.com Jump to article: gbhackers.com/c3-framework-rce-vulnerability/
-
Open Source C2 Frameworks Used In Red Teaming Assessments Vulnerable To RCE Attacks
C2 frameworks, crucial for post-exploitation operations, offer open-source alternatives to Cobalt Strike. They streamline the management of compromise… First seen on gbhackers.com Jump to article: gbhackers.com/c2-framework-rce-vulnerability/
-
SolarWinds Issues Patch for Critical ARM Vulnerability Enabling RCE Attacks
SolarWinds has released fixes to address two security flaws in its Access Rights Manager (ARM) software, including a critical vulnerability that could… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/solarwinds-issues-patch-for-critical.html
-
FreeBSD RCE Vulnerability Let Attackers Execute Malicious Code
FreeBSD has disclosed a critical remote code execution (RCE) vulnerability affecting its bhyve hypervisor. This vulnerability, CVE-2024-41721, could a… First seen on gbhackers.com Jump to article: gbhackers.com/freebsd-rce-vulnerability/
-
Critical vulnerabilities in Microchip ASF, MediaTek expose RCE risks
First seen on scmagazine.com Jump to article: www.scmagazine.com/news/critical-vulnerabilities-in-microchip-asf-mediatek-expose-rce-risks
-
Zero-Click RCE Bug in macOS Calendar Exposes iCloud Data
First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/zero-click-rce-bug-macos-calendar-exposes-icloud-data
-
Rockwell Automation PLC Software Contains RCE Flaw
Attackers Could Shut Down Operations Or Cause Physical Damage. A severe vulnerability in Rockwell Automation software used to configure programmable l… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/rockwell-automation-plc-software-contains-rce-flaw-a-26346