Windows Drive-By RCE Haunts.!
A drive-by remote code execution (RCE) vulnerability in Windows 10 that can be triggered simply by clicking a malicious URL could allow attackers full access to a victim’s files and…
NodeBB Vulnerability Could Lead RCE
Researchers have recently discovered critical flaws in the open source forum platform NodeBB might allow attackers to steal sensitive information and get access to admin accounts. On GitHub, NodeBB is…
NetGear… Geared up with Vulnerabilities
Netgear has released round of patches to remediate a high security remote code execution vulnerability affecting multiple routers that could be exploited by remote attackers to take control of an affected system. Tracked as CVE-2021-34991 (CVSS…
PaloAlto ZeroDay Exploit.
Researchers have identified an exploit in PaloAlto devices which allows for unauthenticated RCE and affects about an estimated count of 70,000+ VPN/firewalls. Tracked as CVE 2021-3064 and scoring a CVSS…
Posted inSecurity
Microsoft Exchange ZeroDay. RCE Exploit Fix – November 2021
Microsoft has released security updates as a part of this month Patch Tuesday and it has a Zero Day exploits in Exchange Server, those vulnerabilities found in: Exchange Server 2013Exchange…
CVE-2021-40539 ZOHO Bug Exploited By Nation State Actors
Cybersecurity experts has warned of an ongoing cyberespionage campaign that has already compromised at least nine organizations worldwide from critical sectors, including defense, healthcare, and energy. Threat actors exploited a…
Cisco Patches Certain Hardcoded Vulnerabilities
Cisco has patched two critical vulnerabilities that could have allowed unauthenticated attackers to log in to affected devices using hard-coded credentials or default SSH keys. The first flaw fixed by…
CISCO Flaw Could lead to Code Execution ! Patch It .
Cisco addressed a high severity OS command injection vulnerability, tracked as CVE-2021-1529, in Cisco SD WAN that could allow privilege escalation and lead to arbitrary code execution. Cisco SD WAN…