Apache SSRF bug Exploited

Threat actors are exploiting a recently addressed server-side request forgery (SSRF) vulnerability, tracked as CVE-2021-40438, in Apache HTTP servers. This flaw can be exploited against httpd web servers that have…
VMware fixes SSRF Vulnerability

VMware fixes SSRF Vulnerability

VMware has released security updates for vCenter Server after fixing arbitrary file read and SSRF vulnerabilities in the vSphere Web Client (FLEX/Flash). It's recommended that enterprises running vulnerable instances of…
Cisco Bug could lead to DoS Condition in Firewall

Cisco Bug could lead to DoS Condition in Firewall

A vulnerability in Cisco's firewall products that could be exploited to achieve denial of service. tracked as CVE-2021-34704 with a CVSSv3.0 score of 8.6, was found in the networking giant's Cisco Adaptive Security Appliance…
ZOOM Fixes Path Traversal Flaws

ZOOM Fixes Path Traversal Flaws

Zoom has shipped patches for high severity vulnerabilities that expose enterprise users to remote code execution and command injection attacks with connection with Keybase connector client The network proxy page…
Azure Virtual Desktop Bug Fix

Azure Virtual Desktop Bug Fix

Microsoft has fixed a bug blocking some Azure Virtual Desktop (AVD) devices from downloading and installing monthly security via WSUS since early July. The issue impacted both client (Windows 10…

Apache Fixes In Wild Zero Day

The Apache Software Foundation has released a security patch to address a vulnerability in its HTTP Web Server project that has been actively exploited in the wild. Tracked as CVE-2021-41773,…