Tag: rce
-
More than 16,000 Ivanti VPN gateways still vulnerable to RCE CVE-2024-21894
Experts warn of roughly 16,500 Ivanti Connect Secure and Poly Secure gateways still vulnerable to a remote code execution (RCE) flaw. Shadowserver res… First seen on securityaffairs.com Jump to article: securityaffairs.com/161544/security/ivanti-16500-vulnerable-istances.html
-
D-Link RCE Vulnerability That Affects 92,000 Devices Exploited in Wild
Cybercriminals have actively exploited a critical vulnerability in D-Link Network Attached Storage (NAS) devices globally. Identified as CVE-2024-3273… First seen on gbhackers.com Jump to article: gbhackers.com/d-link-rce-vulnerability-exploited-in-wild/
-
CVE-2024-3094: RCE Vulnerability Discovered in XZ Utils
CVE-2024-3094 is a critical Remote Code Execution (RCE) vulnerability found in the popular open-source XZ Utils library. This vulnerability affects XZ… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/04/cve-2024-3094-rce-vulnerability-discovered-in-xz-utils/
-
New Ivanti RCE flaw may impact 16,000 exposed VPN gateways
Approximately 16,500 Ivanti Connect Secure and Poly Secure gateways exposed on the internet are likely vulnerable to a remote code execution (RCE) fla… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-ivanti-rce-flaw-may-impact-16-000-exposed-vpn-gateways/
-
Ivanti fixes VPN gateway vulnerability allowing RCE, DoS attacks
IT security software company Ivanti has released patches to fix multiple security vulnerabilities impacting its Connect Secure and Policy Secure gatew… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/ivanti-fixes-vpn-gateway-vulnerability-allowing-rce-dos-attacks/
-
Apple Security Bug Opens iPhone, iPad to RCE
First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/apple-security-bug-opens-iphone-ipad-rce
-
Patch Now: Critical Fortinet RCE Bug Under Active Attack
First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/patch-critical-fortinet-rce-bug-active-attack
-
Turnier verschoben: Mögliche RCE-Schwachstelle bedroht Apex-Legends-Spieler
Mindestens zwei Teilnehmer der Apex Legends Global Series wurden während des laufenden Turniers gehackt. Die ausgenutzte Schwachstelle könnte auch and… First seen on golem.de Jump to article: www.golem.de/news/turnier-verschoben-moegliche-rce-schwachstelle-bedroht-apex-legends-spieler-2403-183303.html
-
Fortra Patches Critical RCE Vulnerability in FileCatalyst Transfer Tool
Fortra has released details of a now-patched critical security flaw impacting its;FileCatalyst;file transfer solution that could allow unauthenticated… First seen on thehackernews.com Jump to article: thehackernews.com/2024/03/fortra-patches-critical-rce.html
-
Ivanti Releases Urgent Fix for Critical Sentry RCE Vulnerability
Ivanti has disclosed details of a critical remote code execution flaw impacting Standalone Sentry, urging customers to apply the fixes immediately to … First seen on thehackernews.com Jump to article: thehackernews.com/2024/03/ivanti-releases-urgent-fix-for-critical.html
-
Fortra Releases Update on Critical Severity RCE Flaw
First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/fortra-releases-update-on-critical-severity-rce-flaw
-
Week in review: Ivanti fixes RCE vulnerability, Nissan breach affects 100,000 individuals
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Outsmarting cybercriminal innovation with strategies… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/03/24/week-in-review-ivanti-fixes-rce-vulnerability-nissan-breach-affects-100000-individuals/
-
Cheating Hack Halts Apex Legends E-Sports Tourney
Electronic Arts is trying to track down the RCE exploit that allowed hackers to inject cheats into games during the recent Apex Legends Global Series…. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/apex-legends-tourney-spoiled-by-hackers
-
Kubernetes RCE Vulnerability Allows Remote Code Execution
Tomer Peled, an Akamai cybersecurity security researcher, recently discovered a Kubernetes RCE vulnerability that allows threat actors to remotely exe… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/03/kubernetes-rce-vulnerability-allows-remote-code-execution/
-
Exploit Released For Critical Fortinet RCE Flaw: Patch Soon!
FortiClientEMS (Enterprise Management Server), the security solution used for scalable and centralized management, was discovered with an SQL injectio… First seen on gbhackers.com Jump to article: gbhackers.com/exploit-fortinet-rce-flaw-patch/
-
Ivanti urges customers to fix critical RCE flaw in Standalone Sentry solution
Ivanti urges customers to address a critical remote code execution vulnerability impacting the Standalone Sentry solution. Ivanti addressed a critical… First seen on securityaffairs.com Jump to article: securityaffairs.com/160864/security/ivanti-critical-rce.html
-
Exploit released for Fortinet RCE bug used in attacks, patch now
Security researchers have released a proof-of-concept (PoC) exploit for a critical vulnerability in Fortinet’s FortiClient Enterprise Management Serve… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/exploit-released-for-fortinet-rce-bug-used-in-attacks-patch-now/
-
Ivanti fixes RCE vulnerability reported by NATO cybersecurity researchers (CVE-2023-41724)
Ivanti has fixed a critical RCE vulnerability (CVE-2023-41724) in Ivanti Standalone Sentry that has been reported by researchers with the NATO Cyber S… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/03/20/cve-2023-41724-cve-2023-46808/
-
PoC exploit for critical Fortra FileCatalyst MFT vulnerability released (CVE-2024-25153)
Proof-of-concept (PoC) exploit code for a critical RCE vulnerability (CVE-2024-25153) in Fortra FileCatalyst MFT solution has been published. About CV… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/03/19/cve-2024-25153-poc-exploit/
-
PoC exploit for critical RCE flaw in Fortra FileCatalyst transfer tool released
Fortra addressed a critical remote code execution vulnerability impacting its FileCatalyst file transfer product. Fortra has released updates to addre… First seen on securityaffairs.com Jump to article: securityaffairs.com/160694/hacking/fortra-filecatalyst-critical-flaw.html
-
Apex Legends players worried about RCE flaw after ALGS hacks
Electronic Arts has postponed the North American (NA) finals of the ongoing Apex Legends Global Series (ALGS) after hackers compromised players mid-ma… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/apex-legends-players-worried-about-rce-flaw-after-algs-hacks/
-
Microsoft Patch Tuesday security updates for March 2024 fixed 59 flaws
Microsoft Patch Tuesday security updates for March 2024 addressed 59 security vulnerabilities in its products, including RCE flaws. Microsoft released… First seen on securityaffairs.com Jump to article: securityaffairs.com/160412/security/microsoft-patch-tuesday-march-2024.html
-
Fortinet Warns of Yet Another Critical RCE Flaw
First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/fortinet-warns-of-yet-another-critical-rce-flaw
-
Patch Now: Kubernetes RCE Flaw Allows Full Takeover of Windows Nodes
Tags: container, exploit, flaw, kubernetes, open-source, rce, remote-code-execution, update, vulnerability, windowsAttackers can remotely execute code with system privileges by exploiting a vulnerability in the source code of the open source container management sy… First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/patch-now-kubernetes-flaw-allows-for-full-takeover-of-windows-nodes
-
Fortinet warns of critical RCE bug in endpoint management software
Fortinet patched a critical vulnerability in its FortiClient Enterprise Management Server (EMS) software that can allow attackers to gain remote code … First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fortinet-warns-of-critical-rce-bug-in-endpoint-management-software/
-
Single RCE Bug Features Among 60 CVEs in March Patch Tuesday
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/rce-bug-60-cves-patch-tuesday/
-
Microsoft March 2024 Patch Tuesday fixes 60 flaws, 18 RCE bugs
Today is Microsoft’s March 2024 Patch Tuesday, and security updates have been released for 60 vulnerabilities, including eighteen remote code executio… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-march-2024-patch-tuesday-fixes-60-flaws-18-rce-bugs/
-
New ScreenConnect RCE flaw exploited in ransomware attacks
Tags: attack, authentication, breach, exploit, flaw, lockbit, ransomware, rce, remote-code-execution, vulnerabilityAttackers are exploiting a maximum severity authentication bypass vulnerability to breach unpatched ScreenConnect servers and deploy LockBit ransomwar… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-screenconnect-rce-flaw-exploited-in-ransomware-attacks/
-
Joomla XSS Bugs Open Millions of Websites to RCE
First seen on darkreading.com Jump to article: www.darkreading.com/application-security/joomla-xss-bugs-open-millions-websites-rce
-
ConnectWise urges ScreenConnect admins to patch critical RCE flaw
ConnectWise warned customers to patch their ScreenConnect servers immediately against a maximum severity flaw that can be used in remote code executio… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/connectwise-urges-screenconnect-admins-to-patch-critical-rce-flaw/