Atlassian Confluence Server and Data Center Zero Day Vulnerability Under Active Exploitation. Patch Now!

An OGNL Injection Vulnerability was discovered in Atlassian Confluence Server and Data Center, and it is tracked with CVE-2022-26134. This…

Continue ReadingAtlassian Confluence Server and Data Center Zero Day Vulnerability Under Active Exploitation. Patch Now!

Follina: Microsoft Support Diagnostic Tool RCE Vulnerability Under Active Exploitation

A remote code execution vulnerability was discovered in MSDT (Microsoft Support Diagnostic Tool), and it is tracked with CVE-2022-30190. The vulnerability…

Continue ReadingFollina: Microsoft Support Diagnostic Tool RCE Vulnerability Under Active Exploitation

Mozilla Fixes Two Actively Exploited Zero-Days in Firefox and Thunderbird

Mozilla has released an out-of-band security update for Firefox, Firefox ESR, Firefox Focus, Firefox for Android, and Thunderbird, fixing two…

Continue ReadingMozilla Fixes Two Actively Exploited Zero-Days in Firefox and Thunderbird

Discover The Extremely Critical Apache Log4j Vulnerability (CVE-2021-44228)

All Java applications come with Log4j, a logging library/facade that allows programmers to release output logs to numerous output targets.…

Continue ReadingDiscover The Extremely Critical Apache Log4j Vulnerability (CVE-2021-44228)

Zoho Patches Critical Zero-day Flaw in its ADSelfService plus Exploited in The Wild

Zoho recently published a security advisory to patch a remote code execution (RCE) vulnerability existing in Zoho ADSelfService plus. The…

Continue ReadingZoho Patches Critical Zero-day Flaw in its ADSelfService plus Exploited in The Wild

Adobe Fixes Critical Zero-Day Flaw Actively Exploited in the Wild – Security Updates February 2021

Adobe had released security updates providing fixes for 33 critical vulnerabilities in Adobe Magento, Adobe Acrobat, Reader, Photoshop, Animate, Illustrator, and…

Continue ReadingAdobe Fixes Critical Zero-Day Flaw Actively Exploited in the Wild – Security Updates February 2021