Tag: rce
-
Ivanti Releases Urgent Fix for Critical Sentry RCE Vulnerability
Ivanti has disclosed details of a critical remote code execution flaw impacting Standalone Sentry, urging customers to apply the fixes immediately to … First seen on thehackernews.com Jump to article: thehackernews.com/2024/03/ivanti-releases-urgent-fix-for-critical.html
-
Fortra Releases Update on Critical Severity RCE Flaw
First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/fortra-releases-update-on-critical-severity-rce-flaw
-
Week in review: Ivanti fixes RCE vulnerability, Nissan breach affects 100,000 individuals
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Outsmarting cybercriminal innovation with strategies… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/03/24/week-in-review-ivanti-fixes-rce-vulnerability-nissan-breach-affects-100000-individuals/
-
Cheating Hack Halts Apex Legends E-Sports Tourney
Electronic Arts is trying to track down the RCE exploit that allowed hackers to inject cheats into games during the recent Apex Legends Global Series…. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/apex-legends-tourney-spoiled-by-hackers
-
Kubernetes RCE Vulnerability Allows Remote Code Execution
Tomer Peled, an Akamai cybersecurity security researcher, recently discovered a Kubernetes RCE vulnerability that allows threat actors to remotely exe… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/03/kubernetes-rce-vulnerability-allows-remote-code-execution/
-
Exploit Released For Critical Fortinet RCE Flaw: Patch Soon!
FortiClientEMS (Enterprise Management Server), the security solution used for scalable and centralized management, was discovered with an SQL injectio… First seen on gbhackers.com Jump to article: gbhackers.com/exploit-fortinet-rce-flaw-patch/
-
Ivanti urges customers to fix critical RCE flaw in Standalone Sentry solution
Ivanti urges customers to address a critical remote code execution vulnerability impacting the Standalone Sentry solution. Ivanti addressed a critical… First seen on securityaffairs.com Jump to article: securityaffairs.com/160864/security/ivanti-critical-rce.html
-
Exploit released for Fortinet RCE bug used in attacks, patch now
Security researchers have released a proof-of-concept (PoC) exploit for a critical vulnerability in Fortinet’s FortiClient Enterprise Management Serve… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/exploit-released-for-fortinet-rce-bug-used-in-attacks-patch-now/
-
Ivanti fixes RCE vulnerability reported by NATO cybersecurity researchers (CVE-2023-41724)
Ivanti has fixed a critical RCE vulnerability (CVE-2023-41724) in Ivanti Standalone Sentry that has been reported by researchers with the NATO Cyber S… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/03/20/cve-2023-41724-cve-2023-46808/
-
PoC exploit for critical Fortra FileCatalyst MFT vulnerability released (CVE-2024-25153)
Proof-of-concept (PoC) exploit code for a critical RCE vulnerability (CVE-2024-25153) in Fortra FileCatalyst MFT solution has been published. About CV… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/03/19/cve-2024-25153-poc-exploit/
-
PoC exploit for critical RCE flaw in Fortra FileCatalyst transfer tool released
Fortra addressed a critical remote code execution vulnerability impacting its FileCatalyst file transfer product. Fortra has released updates to addre… First seen on securityaffairs.com Jump to article: securityaffairs.com/160694/hacking/fortra-filecatalyst-critical-flaw.html
-
Apex Legends players worried about RCE flaw after ALGS hacks
Electronic Arts has postponed the North American (NA) finals of the ongoing Apex Legends Global Series (ALGS) after hackers compromised players mid-ma… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/apex-legends-players-worried-about-rce-flaw-after-algs-hacks/
-
Microsoft Patch Tuesday security updates for March 2024 fixed 59 flaws
Microsoft Patch Tuesday security updates for March 2024 addressed 59 security vulnerabilities in its products, including RCE flaws. Microsoft released… First seen on securityaffairs.com Jump to article: securityaffairs.com/160412/security/microsoft-patch-tuesday-march-2024.html
-
Fortinet Warns of Yet Another Critical RCE Flaw
First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/fortinet-warns-of-yet-another-critical-rce-flaw
-
Patch Now: Kubernetes RCE Flaw Allows Full Takeover of Windows Nodes
Tags: container, exploit, flaw, kubernetes, open-source, rce, remote-code-execution, update, vulnerability, windowsAttackers can remotely execute code with system privileges by exploiting a vulnerability in the source code of the open source container management sy… First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/patch-now-kubernetes-flaw-allows-for-full-takeover-of-windows-nodes
-
Fortinet warns of critical RCE bug in endpoint management software
Fortinet patched a critical vulnerability in its FortiClient Enterprise Management Server (EMS) software that can allow attackers to gain remote code … First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fortinet-warns-of-critical-rce-bug-in-endpoint-management-software/
-
Single RCE Bug Features Among 60 CVEs in March Patch Tuesday
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/rce-bug-60-cves-patch-tuesday/
-
Microsoft March 2024 Patch Tuesday fixes 60 flaws, 18 RCE bugs
Today is Microsoft’s March 2024 Patch Tuesday, and security updates have been released for 60 vulnerabilities, including eighteen remote code executio… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-march-2024-patch-tuesday-fixes-60-flaws-18-rce-bugs/
-
New ScreenConnect RCE flaw exploited in ransomware attacks
Tags: attack, authentication, breach, exploit, flaw, lockbit, ransomware, rce, remote-code-execution, vulnerabilityAttackers are exploiting a maximum severity authentication bypass vulnerability to breach unpatched ScreenConnect servers and deploy LockBit ransomwar… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-screenconnect-rce-flaw-exploited-in-ransomware-attacks/
-
Joomla XSS Bugs Open Millions of Websites to RCE
First seen on darkreading.com Jump to article: www.darkreading.com/application-security/joomla-xss-bugs-open-millions-websites-rce
-
ConnectWise urges ScreenConnect admins to patch critical RCE flaw
ConnectWise warned customers to patch their ScreenConnect servers immediately against a maximum severity flaw that can be used in remote code executio… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/connectwise-urges-screenconnect-admins-to-patch-critical-rce-flaw/
-
Hackers exploit critical RCE flaw in Bricks WordPress site builder
Hackers are actively exploiting a critical remote code execution (RCE) flaw impacting the Brick Builder Theme to run malicious PHP code on vulnerable … First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hackers-exploit-critical-rce-flaw-in-bricks-wordpress-site-builder/
-
RCE vulnerabilities fixed in SolarWinds enterprise solutions
SolarWinds has released updates for Access Rights Manager (ARM) and (Orion) Platform that fix vulnerabilities that could allow attackers to execute co… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/02/19/solarwinds-arm-platform-vulnerabilities/
-
SolarWinds fixes critical RCE bugs in access rights audit solution
SolarWinds has patched five remote code execution (RCE) flaws in its Access Rights Manager (ARM) solution, including three critical severity vulnerabi… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/solarwinds-fixes-critical-rce-bugs-in-access-rights-audit-solution/
-
1000+ JetBrains TeamCity Instances Vulnerable to RCE Bypass Attacks
A critical security vulnerability was detected in TeamCity On-Premises, tagged as CVE-2024-23917, with a CVSS score of 9.8. An unauthenticated attacke… First seen on gbhackers.com Jump to article: gbhackers.com/1000-jetbrains-teamcity-instances/
-
New Outlook 0-day RCE Flaw Exploited in the Wild
Outlook has been discovered to have an interesting vulnerability while handling specific hyperlinks, which was found to be exploited by threat actors … First seen on gbhackers.com Jump to article: gbhackers.com/outlook-0-day-rce-flaw/
-
Critical PixieFail Vulnerabilities Lead to RCE and DoS Attacks
A set of critical security vulnerabilities has been found in the TCP/IP network protocol stack of an open-source reference implementation of the Unifi… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/02/critical-pixiefail-vulnerabilities-lead-to-rce-and-dos-attacks/
-
New critical Microsoft Outlook RCE bug is trivial to exploit
Microsoft says remote unauthenticated attackers can trivially exploit a critical Outlook security vulnerability that also lets them bypass the Office … First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-critical-microsoft-outlook-rce-bug-is-trivial-to-exploit/
-
New critical Outlook RCE bug exploited as zero-day
Microsoft updated a security advisory today to warn that a critical Outlook bug was exploited in attacks as a zero-day before being fixed during this … First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/microsoft-new-critical-outlook-rce-bug-exploited-as-zero-day/
-
New Fortinet RCE bug is actively exploited, CISA confirms
First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-fortinet-rce-bug-is-actively-exploited-cisa-confirms/