Tag: rce
-
RCE flaw and DNS zero-day top list of Patch Tuesday bugs
Tags: authentication, dns, flaw, microsoft, rce, remote-code-execution, update, vulnerability, zero-dayAn RCE vulnerability in a Microsoft messaging feature and a third-party flaw in a DNS authentication protocol are the most pressing issues to address … First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366588458/RCE-flaw-and-DNS-zero-day-top-list-of-Patch-Tuesday-bugs
-
CISA warns critical Geoserver GeoTools RCE flaw is exploited in attacks
First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-warns-critical-geoserver-geotools-rce-flaw-is-exploited-in-attacks/
-
Microsoft Outlook Faced Critical Zero-Click RCE Vulnerability
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/microsoft-outlook-zero-click-rce/
-
PHP bug executes RCEs, cryptominers and DDoS attacks
First seen on scmagazine.com Jump to article: www.scmagazine.com/news/php-bug-executes-rces-cryptominers-and-ddos-attacks
-
Active exploitation of Ghostscript RCE underway
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/active-exploitation-of-ghostscript-rce-underway
-
New OpenSSH Vulnerability Could Lead to RCE as Root on Linux Systems
OpenSSH maintainers have released security updates to contain a critical security flaw that could result in unauthenticated remote code execution with… First seen on thehackernews.com Jump to article: thehackernews.com/2024/07/new-openssh-vulnerability-could-lead-to.html
-
Prompt Injection Flaw in Vanna AI Exposes Databases to RCE Attacks
Cybersecurity researchers have disclosed a high-severity security flaw in the Vanna.AI library that could be exploited to achieve remote code executio… First seen on thehackernews.com Jump to article: thehackernews.com/2024/06/prompt-injection-flaw-in-vanna-ai.html
-
RCE bug in widely used Ghostscript library now exploited in attacks
A remote code execution vulnerability in the Ghostscript document conversion toolkit, widely used on Linux systems, is currently being exploited in at… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/rce-bug-in-widely-used-ghostscript-library-now-exploited-in-attacks/
-
Vanna AI Prompt Injection Vulnerability Enables RCE
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36048/Vanna-AI-Prompt-Injection-Vulnerability-Enables-RCE.html
-
Critical OpenSSH Flaw Enables Full System Compromise
A newly discovered RCE vulnerability, which can lead to full system compromise, has put over 14 million OpenSSH server instances are potentially at ri… First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/openssh-flaw-system-compromise/
-
Critical RCE Vulnerability Discovered in Ollama AI Infrastructure Tool
Tags: ai, cybersecurity, flaw, infrastructure, intelligence, open-source, rce, remote-code-execution, tool, update, vulnerabilityCybersecurity researchers have detailed a now-patch security flaw affecting the Ollama open-source artificial intelligence (AI) infrastructure platfor… First seen on thehackernews.com Jump to article: thehackernews.com/2024/06/critical-rce-vulnerability-discovered.html
-
Threat Actor Claiming of Sandbox Escape RCE in 0-day Google Chrome
Threat Actor has claimed to have discovered a critical zero-day vulnerability in Google Chrome. This exploit, which reportedly enables a sandbox escap… First seen on gbhackers.com Jump to article: gbhackers.com/claiming-sandboxrce-0-day/
-
Patched: RCE Flaw That Affects Critical Manufacturing
Hackers Have Not Yet Exploited the CVSS 10-Rated Flaw, Says PTC. Software maker for critical manufacturing organizations PTC patched a critical flaw t… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/patched-rce-flaw-that-affects-critical-manufacturing-a-25699
-
New regreSSHion OpenSSH RCE bug gives root on Linux servers
First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-regresshion-openssh-rce-bug-gives-root-on-linux-servers/
-
Hackers Claiming of Sandbox Escape RCE in 0-DAY Google Chrome
Tags: browser, chrome, exploit, google, group, hacker, rce, remote-code-execution, vulnerability, zero-dayA group of hackers has claimed to have discovered a critical zero-day vulnerability in Google Chrome. This exploit, which reportedly enables a sandbox… First seen on gbhackers.com Jump to article: gbhackers.com/claiming-sandboxrce-0-day/
-
‘Perfect 10’ Apple Supply Chain Bug, Millions of Apps at Risk of CocoaPods RCE
First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/07/cocoapods-apple-vulns-richixbw/
-
regreSSHion OpenSSH RCE Vulnerability Impacts 700K Linux Systems
The Qualys Threat Research Unit has identified a newly discovered vulnerability in OpenSSH, dubbed >>regreSSHion
-
regreSSHion RCE Flaw Impacts 700K Linux Systems
The Qualys Threat Research Unit has identified a newly discovered vulnerability in OpenSSH, dubbed >>regreSSHion
-
regreSSHion: RCE Vulnerability in OpenSSH Server (CVE-2024-6387)
First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/07/regresshion-rce-vulnerability-in-openssh-server-cve-2024-6387/
-
Critical VMware Bugs Open Swaths of VMs to RCE, Data Theft
First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/critical-vmware-bugs-open-swaths-of-vms-to-rce-data-theft
-
Threat Actor Claims 0Day Sandbox Escape RCE in Chrome Browser
A threat actor has claimed to have discovered a zero-day vulnerability in the widely-used Google Chrome browser. The claim was made public via a tweet… First seen on gbhackers.com Jump to article: gbhackers.com/threat-actor-claims-0day-sandbox-escape-rce-in-chrome-browser/
-
Patched Weeks Ago, RCE Bug in AI Tool Still a ‘Probllama’
Companies Eager for Tools Are Putting AI’s Transformative Power Ahead of Security. Hackers targeting a popular open-source project for running artific… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/patched-weeks-ago-rce-bug-in-ai-tool-still-probllama-a-25611
-
New Ollama RCE vulnerability immediately fixed
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/new-ollama-rce-vulnerability-immediately-fixed
-
POC exploit code published for 9.8-rated Apache HugeGraph RCE flaw
First seen on theregister.com Jump to article: www.theregister.com/2024/06/07/poc_apache_hugegraph/
-
Week in review: CDK Global cyberattack, critical vCenter Server RCE fixed
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: The rise of SaaS security teams In this Help Net Sec… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/06/23/week-in-review-cdk-global-cyberattack-vcenter-server-critical-rce-fixed/
-
Vulnerability Recap 6/10/24 RCE Attacks in Major Platforms
First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/vulnerability-recap-june-10-2024/
-
PoC Exploit Emerges for Critical RCE Bug in Ivanti Endpoint Manager
First seen on darkreading.com Jump to article: www.darkreading.com/application-security/poc-exploit-critical-rce-bug-ivanti-endpoint-manager
-
VMware fixed RCE and privilege escalation bugs in vCenter Server
VMware addressed vCenter Server vulnerabilities that can allow remote code execution or privilege escalation. VMware addressed multiple vCenter Server… First seen on securityaffairs.com Jump to article: securityaffairs.com/164659/hacking/vmware-fixed-vcenter-server-flaws.html
-
VMware fixes critical vCenter RCE vulnerability, patch now
VMware has issued a security advisory addressing critical vulnerabilities in vCenter Server, including remote code execution and local privilege escal… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/vmware-fixes-critical-vcenter-rce-vulnerability-patch-now/
-
Critical RCE flaws in vCenter Server fixed (CVE-2024-37079, CVE-2024-37080)
VMware by Broadcom has fixed two critical vulnerabilities (CVE-2024-37079, CVE-2024-37080) affecting VMware vCenter Server and products that contain i… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/06/18/cve-2024-37079-cve-2024-37080/