Microsoft December 2022 Patch Tuesday Fixes 48 Vulnerabilities, Including 2 Zero-day!

Microsoft's December 2022 Patch Tuesday has arrived, bringing fixes for two zero-day vulnerabilities, one of which is currently being exploited.…

Continue ReadingMicrosoft December 2022 Patch Tuesday Fixes 48 Vulnerabilities, Including 2 Zero-day!

Fortinet Fixes Actively Exploited FortiOS SSL-VPN Flaw Allowing Remote Code Execution

Fortinet has issued an advisory warning about a critical heap-based buffer overflow vulnerability in multiple versions of its FortiOS SSL-VPN…

Continue ReadingFortinet Fixes Actively Exploited FortiOS SSL-VPN Flaw Allowing Remote Code Execution

Atlassian Addresses Two Critical Vulnerabilities in Atlassian Crowd and Bitbucket Products. Patch Now!

Atlassian released patches for two critical vulnerabilities affecting Bitbucket Server, Data Center, and Crowd products. These vulnerabilities are tracked as…

Continue ReadingAtlassian Addresses Two Critical Vulnerabilities in Atlassian Crowd and Bitbucket Products. Patch Now!

A Critical Vulnerability in vm2 Allows a Remote Attacker to Break Out of the Sandbox!

vm2 is a node module for creating a real sandbox in the node. It is also the most widely used Javascript…

Continue ReadingA Critical Vulnerability in vm2 Allows a Remote Attacker to Break Out of the Sandbox!

Zimbra Collaboration Suite High Severity Zero-Day RCE Vulnerability is Exploited in Wild!

Zimbra Collaboration Suite (ZCS), a widely used web client and email server, has an unpatched zero-day remote code execution (RCE)…

Continue ReadingZimbra Collaboration Suite High Severity Zero-Day RCE Vulnerability is Exploited in Wild!

Double Zero-day Attack: Microsoft Exchange Servers Under Active Exploitation! – Apply New Mitigations

  Microsoft warned that two zero-day vulnerabilities ( CVE-2022-41040 and CVE-2022-41082 ) are being used against Exchange Server without a…

Continue ReadingDouble Zero-day Attack: Microsoft Exchange Servers Under Active Exploitation! – Apply New Mitigations

Microsoft August 2022 Patch Tuesday Addresses 121 Security Flaws Including Two Zero-day Vulnerabilities!

Microsoft fixes 121 vulnerabilities, including 17 'critical' and the rest 'important' in its August 2022 Patch Tuesday update. Compared to…

Continue ReadingMicrosoft August 2022 Patch Tuesday Addresses 121 Security Flaws Including Two Zero-day Vulnerabilities!

Warning: Atlassian Critical Vulnerabilities Being Actively Exploited- Patch Now!

Atlassian released patches for three critical vulnerabilities. Out of the three flaws, two impacts Confluence Server, Confluence Data Center, and…

Continue ReadingWarning: Atlassian Critical Vulnerabilities Being Actively Exploited- Patch Now!