Endpoint Security and Management / Security Research and Intelligence

QNAP Patches Critical Vulnerabilities in NAS Appliances

QNAP addresses multiple vulnerabilities in its product line affecting Surveillance Station and Photo Station applications using a vulnerability management tool.…

Comments Off on QNAP Patches Critical Vulnerabilities in NAS Appliances

February 18, 2021

Endpoint Security and Management / Patch Management / Security Research and Intelligence / Vulnerability Management

Adobe Fixes Critical Zero-Day Flaw Actively Exploited in the Wild – Security Updates February 2021

Adobe Security updates February 2021 released security updates providing fixes for 33 critical vulnerabilities in Adobe Magento, Adobe Acrobat, Reader, Photoshop,…

Comments Off on Adobe Fixes Critical Zero-Day Flaw Actively Exploited in the Wild – Security Updates February 2021

February 11, 2021

Endpoint Security and Management / Security Research and Intelligence

Patch Tuesday: Microsoft Security Bulletin Summary for February 2021

Microsoft has roll-out its February 2021 patch Tuesday security updates on this month's for 56 vulnerabilities, including a zero-day in…

Comments Off on Patch Tuesday: Microsoft Security Bulletin Summary for February 2021

February 10, 2021

Security Research and Intelligence

Cisco Releases Security Updates for Multiple Products

Cisco Security Updates February 2021 has been released address high severity vulnerabilities for twelve different Cisco products using a patch…

Comments Off on Cisco Releases Security Updates for Multiple Products

February 5, 2021

Endpoint Security and Management / Security Research and Intelligence

Three More Potential Vulnerabilities Found In SolarWinds Software!

Three new security vulnerabilities have recently been identified in various SolarWinds products. Three of the vulnerabilities are severe, and the…

Comments Off on Three More Potential Vulnerabilities Found In SolarWinds Software!

February 4, 2021

Security Research and Intelligence

SonicWall Zero-Day Vulnerability Is Being Exploited in the Wild

The Sonicwall Zero day Attack. NCC Group recently reported that an active zero-day SonicWall SMA 100 zero-day vulnerability being exploited in…

Comments Off on SonicWall Zero-Day Vulnerability Is Being Exploited in the Wild

February 2, 2021

Security Research and Intelligence

Heap-Based Buffer Overflow in Sudo Allows Attackers to Gain Root Privileges

The Vulnerability (CVE-2021-3156) exists in Sudo, a powerful utility to run programs with the security privileges of another user. The…

Comments Off on Heap-Based Buffer Overflow in Sudo Allows Attackers to Gain Root Privileges

January 28, 2021

Security Research and Intelligence

CSRF and Command Runner Command Injection Vulnerabilities in Cisco DNA Center

The Cisco DNA Center software has been reported with a high-severity security vulnerability (CVE-2021-1257) that allows cross-site request forgery (CSRF)…

Comments Off on CSRF and Command Runner Command Injection Vulnerabilities in Cisco DNA Center

January 27, 2021

SecPod News Updates / Security Research and Intelligence

Oracle Critical Updates January 2021

Oracle Security Patches January 2021 has released 329 new security patches as a part of its quarterly patch cycle. 273…

Comments Off on Oracle Critical Updates January 2021

January 21, 2021

Security Research and Intelligence / Vulnerability Management

Multiple Flaws in Orbit Fox WordPress Plugin Allow a Complete Takeover of Sites

The Threat Intelligence team of Wordfence discovered two security vulnerabilities in the Orbit Fox WordPress plugin on November 19, 2020.…

Comments Off on Multiple Flaws in Orbit Fox WordPress Plugin Allow a Complete Takeover of Sites

January 18, 2021