Retbleed: Intel and AMD Processors Information Disclosure Vulnerability. Patch Now!

A new Speculative execution attack is discovered that affects both Intel and AMD processors that can result in information disclosure…

Continue ReadingRetbleed: Intel and AMD Processors Information Disclosure Vulnerability. Patch Now!

Atlassian Confluence Server and Data Center Zero Day Vulnerability Under Active Exploitation. Patch Now!

An OGNL Injection Vulnerability was discovered in Atlassian Confluence Server and Data Center, and it is tracked with CVE-2022-26134. This…

Continue ReadingAtlassian Confluence Server and Data Center Zero Day Vulnerability Under Active Exploitation. Patch Now!

Follina: Microsoft Support Diagnostic Tool RCE Vulnerability Under Active Exploitation

A remote code execution vulnerability was discovered in MSDT (Microsoft Support Diagnostic Tool), and it is tracked with CVE-2022-30190. The vulnerability…

Continue ReadingFollina: Microsoft Support Diagnostic Tool RCE Vulnerability Under Active Exploitation

Critical Alert: Spring Core(SpringShell) Remote Code Execution Vulnerability Exploited In The Wild

The Spring Framework is an application framework and inversion of the control container for the Java platform developed by VMware.…

Continue ReadingCritical Alert: Spring Core(SpringShell) Remote Code Execution Vulnerability Exploited In The Wild

Apple Has Addressed A Zero-Day Vulnerability Which Is Being Actively Exploited In The Wild

This year, Apple released security updates for their third zero-day vulnerability. The affected software processes maliciously crafted web content, leading…

Continue ReadingApple Has Addressed A Zero-Day Vulnerability Which Is Being Actively Exploited In The Wild

Log4Shell-Critical Remote Code Execution Vulnerability in H2database Console

JFrog has recently disclosed a remote code execution vulnerability on H2 Database consoles. This is based on a Java Naming…

Continue ReadingLog4Shell-Critical Remote Code Execution Vulnerability in H2database Console

Intel Addresses 3 High Severity Vulnerabilities in BIOS of Several Processors

Intel has recently disclosed a short advisory with details of high-severity for 3 CVEs here. They are CVE-2021-0157, CVE-2021-0158, and…

Continue ReadingIntel Addresses 3 High Severity Vulnerabilities in BIOS of Several Processors