Atlassian Addresses Two Critical Vulnerabilities in Atlassian Crowd and Bitbucket Products. Patch Now!

Atlassian released patches for two critical vulnerabilities affecting Bitbucket Server, Data Center, and Crowd products. These vulnerabilities are tracked as…

Continue ReadingAtlassian Addresses Two Critical Vulnerabilities in Atlassian Crowd and Bitbucket Products. Patch Now!

A Critical Vulnerability in vm2 Allows a Remote Attacker to Break Out of the Sandbox!

vm2 is a node module for creating a real sandbox in the node. It is also the most widely used Javascript…

Continue ReadingA Critical Vulnerability in vm2 Allows a Remote Attacker to Break Out of the Sandbox!

Zimbra Collaboration Suite High Severity Zero-Day RCE Vulnerability is Exploited in Wild!

Zimbra Collaboration Suite (ZCS), a widely used web client and email server, has an unpatched zero-day remote code execution (RCE)…

Continue ReadingZimbra Collaboration Suite High Severity Zero-Day RCE Vulnerability is Exploited in Wild!

Double Zero-day Attack: Microsoft Exchange Servers Under Active Exploitation! – Apply New Mitigations

  Microsoft warned that two zero-day vulnerabilities ( CVE-2022-41040 and CVE-2022-41082 ) are being used against Exchange Server without a…

Continue ReadingDouble Zero-day Attack: Microsoft Exchange Servers Under Active Exploitation! – Apply New Mitigations