Security Vulnerabilities - Page 17 - Results from #320

Discover Security Vulnerabilities News

Shutterstock 595578476 Compressor Esm H200

Critical TLS flaw opens Exim servers to remote compromise

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A ‘critical’ security vulnerability has been discovered in the Exim mail server that requires admins’ urgent attention. Learn more about the flaw and how to protect your servers:

Brittany Day
Sep 10, 2019

Millions of Exim servers vulnerable to root-granting exploit

Are you an Exim user? Have you heard that Exim has been impacted by its second major bug this summer? Learn more:

Brittany Day
Sep 07, 2019

Major Security Flaw Found in Google Chrome, Patch Must Be Installed ASAP

A security flaw in Google Chrome allows an attacker to eventually take control a vulnerable host, and Google recommends users to deploy a patch as soon as possible. All versions of the browser are affected, including Google Chrome for Linux. Learn more:

Brittany Day
Sep 02, 2019

Google warns of system-controlling Chrome bug

Are you a Google Chrome user? If so, have you heard about the system-controlling Chrome bug in Blink? Get the details:

Brittany Day
Aug 30, 2019

Red Hat Enterprise Linux 6 and CentOS 6 Receive Important Kernel Security Update

Have you heard that the Red Hat Enterprise Linux 6 and CentOS 6 GNU/Linux operating systems have received an important Linux kernel security update that addresses several critical vulnerabilities and fixes various bugs? Learn more about this update:

Brittany Day
Aug 26, 2019

The Dangers of Open-Source Vulnerabilities, and What You Can Do About It

Neglecting basic security practices exposes companies to long-standing security threats. Learn what you can do to mitigate the risk that security vulnerabilities pose to your business:

Brittany Day
Aug 19, 2019

61 impacted versions of Apache Struts left off security advisories

Are you an Apache Struts user who follows security advisories? If so, they may be giving you a false sense of security.

Brittany Day
Aug 19, 2019

Shutterstock 501896839 Compressor Esm H200

Multiple HTTP/2 DoS flaws found by Netflix

Have you heard that Netflix hasidentifiedseveral denial of service (DoS) flaws in numerous implementations of HTTP/2, a popular network protocol that underpins large parts of the web? Exploiting them could make servers grind to a halt. These vulnerabilities affect various Linux distributions and open-source vendors and projects. Learn the details in this article:

Brittany Day
Aug 19, 2019

All Microsoft Certified Drivers from Intel, Nvidia, AMD, Others Are Vulnerable

All major BIOS vendors, along with the likes of AMD, Nvidia, Intel, Huawei, and many others, are offering drivers that have serious security issues. A new report, called Screwed Drivers, from Eclypsium, revealed the worrying extent of the problem.

Brittany Day
Aug 12, 2019

KDE rips out ability for KConfig to run shell code

The feature that a researcher discovered could be used to execute malicious code had no actual use case.

Brittany Day
Aug 08, 2019

Kde Desktop Linux Vulnerability Esm H200

KDE Linux Desktops Could Get Hacked Without Even Opening Malicious Files

If you are running a KDE desktop environment on your Linux operating system, you need to be extra careful and avoid downloading any ".desktop" or ".directory" file for a while.

Brittany Day
Aug 07, 2019

Compromised Data Security Breach Vulnerability By Woolzian Gettyimages 475563052 2400x1600 100788413 Large Esm H200

New Spectre-like CPU vulnerability bypasses existing defenses

The SWAPGS vulnerability can allow attackers to access contents of kernel memory addresses. Microsoft and Intel have coordinated on a mitigation.

Brittany Day
Aug 07, 2019

Cisco Video Surveillance Manager Software Esm H200

Cisco ‘Knowingly’ Sold Hackable Video Surveillance System to U.S. Government

Cisco Systems has agreed to pay $8.6 million to settle a lawsuit that accused the company of knowingly selling video surveillance system containing severe security vulnerabilities to the U.S. federal and state government agencies.

Brittany Day
Aug 01, 2019

IoT home security camera allows hackers to listen in over HTTP

Security researchers have uncovered a security flaw in a popular home security camera which permits remote spying without any form of authentication.

Brittany Day
Jul 31, 2019

Critical VxWorks flaws expose millions of devices to hacking

Researchers have found 11 serious vulnerabilities in VxWorks, the world's most popular real-time operating system (RTOS) that powers over 2 billion devices including enterprise network firewalls and routers, industrial controllers and medical equipment. Many of the flaws allow attackers to take over devices remotely by just sending network packets, which make them particularly dangerous.

Brittany Day
Jul 29, 2019

Alleged critical VLC flaw is nothing to worry about -- and is nothing to do with VLC

There has been a lot of confusion over the last few days after news spread of a supposedvulnerability in the media player VLC. Despite being labelled as "critical", VLC's developers, VideoLAN, denied there was a problem at all.

Brittany Day
Jul 25, 2019

Linux Botnet Adding BlueKeep-Flawed Windows RDP Servers to Its Target List

Have you heard about the BlueKeep vulnerability that has been discovered in Windows RDP servers? Cybersecurity researchers have identified a new variant ofWatchBog, a Linux-based cryptocurrency mining malware botnet, which now also includes a module to scan the Internet for Windows RDP servers vulnerable to theBluekeep flaw.BlueKeep is a highly-critical, wormable, remote code execution vulnerability in the Windows Remote Desktop Services that could allow an unauthenticated remote attacker to take full control over vulnerable systems just by sending specially crafted requests over RDP protocol.Though thepatches for the BlueKeepvulnerability (CVE–2019-0708) was already released by Microsoft in May this year, more than800,000 Windows machinesaccessible over the Internet are still vulnerable to the critical flaw.

Brittany Day
Jul 25, 2019

Screenshot 2019 07 23 At 10 39 46 Esm H200

Remote code execution vulnerability in VLC remains unpatched

Have you heard that a serious vulnerability has been discovered in the latest release of the VLC media player and no patch is available? Non-profit VideoLAN's VLC player is popular software used to both play and convert a variety of audio and visual files. Available for Windows, Linux, Mac OS X, Unix, iOS, and Android systems, the open-source media player has now become the focus of a recent security advisory released by the German Computer Emergency Response Team (CERT-Bund). In the advisory, CERT-Bund warns that VLC media player version 3.0.7.1, the latest build available, contains a vulnerability which has been awarded a CVSS score of 9.8 out of 10.

Brittany Day
Jul 23, 2019

A Critical Google Chrome Security Bug Can Now Bring You No Less than $30,000

Attention ethical hackers: Google has just announced that it decided to increase the bounties offered for Google Chrome browser security vulnerabilities, with the maximum payment now reaching $30,000!

Brittany Day
Jul 19, 2019

Security Vulnerabilities - Page 2.5

How to Keep Your Linux System Safe from Kernel Bugs

Spectre V2: A New Threat to Linux Systems

Native Spectre v2 Exploit Uncovered: Implications & Analysis for Linux Security Practitioners

Discover Security Vulnerabilities News

Critical TLS flaw opens Exim servers to remote compromise

Millions of Exim servers vulnerable to root-granting exploit

Major Security Flaw Found in Google Chrome, Patch Must Be Installed ASAP

Google warns of system-controlling Chrome bug

Red Hat Enterprise Linux 6 and CentOS 6 Receive Important Kernel Security Update

The Dangers of Open-Source Vulnerabilities, and What You Can Do About It

61 impacted versions of Apache Struts left off security advisories

Multiple HTTP/2 DoS flaws found by Netflix

All Microsoft Certified Drivers from Intel, Nvidia, AMD, Others Are Vulnerable

KDE rips out ability for KConfig to run shell code

KDE Linux Desktops Could Get Hacked Without Even Opening Malicious Files

New Spectre-like CPU vulnerability bypasses existing defenses

Cisco ‘Knowingly’ Sold Hackable Video Surveillance System to U.S. Government

IoT home security camera allows hackers to listen in over HTTP

Critical VxWorks flaws expose millions of devices to hacking

Alleged critical VLC flaw is nothing to worry about -- and is nothing to do with VLC

Linux Botnet Adding BlueKeep-Flawed Windows RDP Servers to Its Target List

Remote code execution vulnerability in VLC remains unpatched

A Critical Google Chrome Security Bug Can Now Bring You No Less than $30,000

LinuxSecurity Poll

What is the best browser with a built-in VPN?

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

About Us

Powered By