searchtwitterarrow rightmail strokearrow leftmail solidfacebooklinkedinplusangle upmagazine plus
Help Net Security - Daily information security news with a focus on enterprise security.
Help Net Security - Daily information security news with a focus on enterprise security.
  • News
  • Features
  • Expert analysis
  • Videos
  • Events
  • Whitepapers
  • Industry news
  • Product showcase
  • Newsletters

PoC

Get our top stories in your inbox

Advantech’s industrial serial device servers open to attack

May 15, 2023

Three vulnerabilities in Advantech’s EKI series of serial device servers could be exploited to execute arbitrary commands on the OS level. Source: CyberDanube The …

PoC exploit for abused PaperCut flaw is now public (CVE-2023-27350)

April 25, 2023

An unauthenticated RCE flaw (CVE-2023-27350) in widely-used PaperCut MF and NG print management software is being exploited by attackers to take over vulnerable application …

Prevent and detect Adobe ColdFusion exploitation (CVE-2023-26360, CVE-2023-26359)

April 4, 2023

When Adobe released security updates for its ColdFusion application development platform last month, it noted that one of the vulnerabilities (CVE-2023-26360) had been …

PoC exploit for recently patched Microsoft Word RCE is public (CVE-2023-21716)

March 6, 2023

A PoC exploit for CVE-2023-21716, a critical RCE vulnerability in Microsoft Word that can be exploited when the user previews a specially crafted RTF document, is now publicly …

PoC exploit, IoCs for Fortinet FortiNAC RCE released (CVE-2022-39952)

February 21, 2023

Horizon3.ai’s Attack Team has released a PoC exploit for CVE-2022-39952, a critical vulnerability affecting FortiNAC, Fortinet’s network access control solution. …

Fortinet plugs critical security hole in FortiNAC, with a PoC incoming (CVE-2022-39952)

February 20, 2023

Fortinet has dropped fixes for 40 vulnerabilities in a variety of its products, including two critical vulnerabilities (CVE-2022-39952, CVE-2021-42756) affecting its FortiNAC …

Admins, patch your Cisco enterprise security solutions! (CVE-2023-20032)

February 17, 2023

Cisco has released security updates for several of its enterprise security and networking products, fixing (among other things): A critical vulnerability (CVE-2023-20032) in …

Vulnerabilities open Korenix JetWave industrial networking devices to attack

February 13, 2023

Three vulnerabilities found in a variety of Korenix JetWave industrial access points and LTE cellular gateways may allow attackers to either disrupt their operation or to use …

Researchers release PoC exploit for critical Windows CryptoAPI bug (CVE-2022-34689)

January 26, 2023

Akamai researchers have published a PoC exploit for a critical vulnerability (CVE-2022-34689) in Windows CryptoAPI, which validates public key certificates. “An attacker …

Vulnerable NetComm routers and a public PoC exploit (CVE-2022-4873, CVE-2022-4874)

January 18, 2023

Two vulnerabilities (CVE-2022-4873, CVE-2022-4874) found in three NetComm router models could be exploited to achieve remote code execution on vulnerable devices, and …

PoC for critical ManageEngine bug to be released, so get patching! (CVE-2022-47966)

January 17, 2023

If your enterprise is running ManageEngine products that were affected by CVE-2022-47966, check now whether they’ve been updated to a non-vulnerable version because …

Cacti servers under attack by attackers exploiting CVE-2022-46169

January 16, 2023

If you’re running the Cacti network monitoring solution and you haven’t updated it since early December, now is the time to do it to foil attackers exploiting a …

Posts navigation

1 2 3 4 5 6 … 10

Featured news

  • Cl0p’s MOVEit attack tally surpasses 2,000 victim organizations
  • Has Sony been hacked again?
  • Are developers giving enough thought to prompt injection threats when building code?
CIS Benchmarks Communities: Where configurations meet consensus

Sponsored

eBook: 9 Ways to Secure Your Cloud App Dev Pipeline

Free entry-level cybersecurity training and certification exam

Guide: Attack Surface Management (ASM)

Don't miss

Cl0p’s MOVEit attack tally surpasses 2,000 victim organizations

Has Sony been hacked again?

Are developers giving enough thought to prompt injection threats when building code?

5 free vulnerability scanners you should check out

MITRE ATT&CK project leader on why the framework remains vital for cybersecurity pros

Cybersecurity news
Help Net Security - Daily information security news with a focus on enterprise security.
© Copyright 1998-2023 by Help Net Security
Read our privacy policy | About us | Advertise
Follow us