Cisco Discloses bugs affecting IP phones
Cisco has disclosed a high-severity vulnerability impacting its IP Phone 7800 and 8800 Series. Tracked as CVE-2022-20968, an unauthenticated attacker can trigger the flaw to cause a stack overflow on…
SQL Injection Using JSON
Security researchers have developed a generic SQL injection technique that bypasses multiple web application firewalls (WAFs). Allowing potential attackers to easily hide their malicious payloads. Since the vendors are failing…
Sophos Addresses High severity security flaws
Sophos has released patches to address vulnerabilities in Sophos Firewall version 19.5, including arbitrary code execution bugs. The most severe issue addressed is a critical code injection vulnerability tracked as…
Agrius Wiper linked to Iran in action
An Iranian APT group known as Agrius has conducted supply chain-focused attacks against the diamond industry in three continents. ESET threat intelligence team analyzed a supply chain attack targeted at…
NetGear patches Nighthawk Vulnerability
Resarchers have found a security flaw in NetGear firmware that allows unrestricted communication with the internet facing ports of the device listening through IPv6. The vulnerability affects Netgear model RAX30,…