Drupal Updates Patch Another Vulnerability Related to Archive Files
Security updates released this week by the developers of the Drupal content management system (CMS) patch a vulnerability identified in a third-party library. Core...
Tagged: vulnerability
Automated exploit of critical SAP SolMan vulnerability detected in the wild
Automated probes for servers containing a severe vulnerability in SAP software have been detected a week after a working exploit was published online. The...
Microsoft Reminds Organizations of Upcoming Phase in Patching Zerologon Vulnerability
Microsoft this week published a reminder for organizations that a February 9 security update will kick off the second phase of patching for the...
Vulnerability Exposes F5 BIG-IP Systems to Remote DoS Attacks
A vulnerability discovered by a researcher in a BIG-IP product from F5 Networks can be exploited to launch remote denial-of-service (DoS) attacks. The security...
Typeform Patched an Information Hijacking Vulnerability – E Hacking News
Online survey and form creation tool Typeform allows clients to make website pages for easy information gathering from clients. Each such form made...
Google: Microsoft Improperly Patched Exploited Windows Vulnerability
Google Project Zero has disclosed a Windows zero-day vulnerability caused by the improper fix for CVE-2020-0986, a security flaw abused in a campaign dubbed...
Authentication Bypass Vulnerability Patched in Bouncy Castle Library
A high-severity authentication bypass vulnerability was recently addressed in the Bouncy Castle cryptography library. Founded in 2000, the project represents a collection of APIs...
Hackers Dropping Malware via Free WinZip Trial Popup Vulnerability – E Hacking News
Researchers have discovered a critical security flaw in WinZip 24 that targets users with malware. WinZip trial popup vulnerability allows hackers to perform...
Vulnerability in NI Controller Can Allow Hackers to Remotely Disrupt Production
A potentially serious vulnerability affecting CompactRIO controllers made by NI (National Instruments) could allow hackers to remotely disrupt production processes in an organization, according...
Cisco Patches Wormable, Zero-Click Vulnerability in Jabber
Three months after addressing a critical flaw in Jabber for Windows, Cisco released patches for a similar vulnerability in the video conferencing and instant...