Critical Vulnerabilities – Page 4

Cisco Releases Patches in Industrial Network Director

Cisco has patched critical vulnerabilities impacting its Industrial Network Director and Modeling Labs solutions. The critical severity flaw in the web interface of the Industrial Network Detector tracked as CVE-2023-20036…

PravinKarthik April 21, 2023

CISA KEV Update Part IV – April 2023

U.S. CISA has added the following five new issues to its Known Exploited Vulnerabilities Catalog: CVE-2019-8526 – Apple macOS Use-After-Free Vulnerability. The CVE-2019-8526 flaw has been exploited by the DazzleSpy backdoor in watering hole…

PravinKarthik April 18, 2023

Fortinet Patches Critical Vulnerabilities in FortiNAC and FortiWeb

Fortinet has patched two critical bugs in its FortiNAC and FortiWeb products that if exploited could allow an unauthenticated attacker to execute unauthorized code or commands via a specifically crafted…

PravinKarthik February 18, 2023

CISA adds Vulnerabilities to Known Exploited Catalog Part II – February 2023

The US CISA adds Intel, Terramaster, GoAnywhere MFT flaws, respectively tracked as CVE-2015-2291, CVE-2022-24990 and CVE-2023-0669 to its Known Exploited Vulnerabilities Catalog. The first flaw tracked as CVE-2015-2291 with a…

PravinKarthik February 11, 2023

Gitlab Patches Critical Flaws that lead to RCE

GitLab has released patches for two critical security flaws in Git that allows attackers to remotely execute arbitrary code and take advantage of integer overflows. The flaws, tracked as CVE-2022-41903…

PravinKarthik January 18, 2023

Cisco Warned on Critical Vulnerabilities in its Routers

Cisco has warned its customers of two critical vulnerabilities in the web management interface of some of its small business routers that could allow a remote attacker to gain access…

PravinKarthik January 12, 2023

Synology Patches Critical Vulnerabilities

Synology has patched several critical vulnerabilities, including flaws likely exploited recently at the Pwn2Own hacking contest. First vulnerability tracked as CVE-2022-43931 affects Synology VPN Plus Server, which turns routers into…

PravinKarthik January 3, 2023

Atlassian fixes Critical bugs in Bitbucket and Crowd

Atlassian has patched critical vulnerabilities in its Crowd and Bitbucket products. In the Bitbucket source code repository hosting service, Atlassian fixed CVE-2022-43781, a critical command injection vulnerability that affects Bitbucket…

PravinKarthik November 19, 2022