Critical Alert: Spring Core(SpringShell) Remote Code Execution Vulnerability Exploited In The Wild

The Spring Framework is an application framework and inversion of the control container for the Java platform developed by VMware.…

Continue ReadingCritical Alert: Spring Core(SpringShell) Remote Code Execution Vulnerability Exploited In The Wild

Mozilla Fixes Two Actively Exploited Zero-Days in Firefox and Thunderbird

Mozilla has released an out-of-band security update for Firefox, Firefox ESR, Firefox Focus, Firefox for Android, and Thunderbird, fixing two…

Continue ReadingMozilla Fixes Two Actively Exploited Zero-Days in Firefox and Thunderbird

Google Fixed Actively Exploited Chrome Zero-Day Vulnerability-Patch Now!

A high-severity zero-day flaw, tracked as CVE-2022-0609 in Google Chrome, is exploited in attacks. It is fixed with the release…

Continue ReadingGoogle Fixed Actively Exploited Chrome Zero-Day Vulnerability-Patch Now!

Apple Has Addressed A Zero-Day Vulnerability Which Is Being Actively Exploited In The Wild

This year, Apple released security updates for their third zero-day vulnerability. The affected software processes maliciously crafted web content, leading…

Continue ReadingApple Has Addressed A Zero-Day Vulnerability Which Is Being Actively Exploited In The Wild

VMware vCenter Servers Under Active Attack, Patch Now!

VMware, the virtualization giant, has patched 19 vulnerabilities, including one critical vulnerability, ten important vulnerabilities, and eight moderate vulnerabilities, in…

Continue ReadingVMware vCenter Servers Under Active Attack, Patch Now!

Microsoft Open Management Infrastructure (OMI) Critical Vulnerabilities Under Active Exploitation – OMIGOD

Microsoft Open Management Infrastructure (OMI) is an open-source project which allows users to manage configurations across remote and local environments…

Continue ReadingMicrosoft Open Management Infrastructure (OMI) Critical Vulnerabilities Under Active Exploitation – OMIGOD

Zoho Patches Critical Zero-day Flaw in its ADSelfService plus Exploited in The Wild

Zoho recently published a security advisory to patch a remote code execution (RCE) vulnerability existing in Zoho ADSelfService plus. The…

Continue ReadingZoho Patches Critical Zero-day Flaw in its ADSelfService plus Exploited in The Wild

Microsoft August 2021 Patch Tuesday Addresses 44 CVEs Including Three Zero-Days

Microsoft has released August Patch Tuesday security updates with a total of 44 vulnerabilities in the family of Windows and…

Continue ReadingMicrosoft August 2021 Patch Tuesday Addresses 44 CVEs Including Three Zero-Days