vulnerability Archives - Help Net Security

Cisco fixes critical vulnerabilities in its SD-WAN, DNA Center solutions

Cisco has released another batch of fixes for many of its products, including its SD-WAN and DNA Center solutions, its Email Security Appliance, Security Manager, SOHO …

IoT explodes worldwide, researchers investigate security issues present in the devices real users own

About 40 percent of households across the globe now contain at least one IoT device, according to Avast. In North America, that number is almost double, at 66 percent, …

Research shows Tesla Model 3 and Model S are vulnerable to GPS spoofing attacks

Tesla Model S and Model 3 electric cars are vulnerable to cyberattacks aimed at their navigation systems, according to research from Regulus Cyber. Staged attack caused the …

Another Oracle WebLogic Server RCE under active exploitation

June 19, 2019
exploit
KnownSec
Oracle

Oracle has released an out-of-band fix for CVE-2019-2729, a critical deserialization vulnerability in a number of versions of Oracle WebLogic Server, and is urging customers …

SACK TCP flaws can crash, slow down Linux-based systems

June 18, 2019
FreeBSD
Linux
Netflix

An engineering manager at Netflix has unearthed several TCP networking vulnerabilities in Linux and FreeBSD kernels that could lead to systems crashing or consuming too many …

Vulnerable TP-Link Wi-Fi extenders open to attack, patch now!

Several TP-Link Wi-Fi extender devices sport a critical remote code execution vulnerability that could allow attackers to take over the devices and command them with the same …

Web-based DNA sequencers getting compromised through old, unpatched flaw

Unknown attackers are trying to exploit a vulnerability in dnaLIMS, a Web based bioinformatics laboratory information management system, to implant a bind shell into the …

Linux servers under attack via latest Exim flaw

June 14, 2019
Cybereason
Exim
exploit

It didn’t take long for attackers to start exploiting the recently revealed Exim vulnerability (CVE-2019-10149). Active campaigns One security enthusiast detected …

Vulnerabilities allow attackers to take over infusion pumps

Two vulnerabilities in Windows CE-powered Alaris Gateway Workstations (AWGs), which provide support for widely used infusion pumps, could allow remote attackers to disable the …

Evernote Chrome extension flaw could have allowed access to personal info

June 13, 2019
browser
Chrome
Evernote

Guardio discovered a major flaw in Evernote’s Web Clipper Chrome extension’s code that left it vulnerable, potentially allowing threat actors to access personal …

vulnerability

Cisco fixes critical vulnerabilities in its SD-WAN, DNA Center solutions

IoT explodes worldwide, researchers investigate security issues present in the devices real users own

Research shows Tesla Model 3 and Model S are vulnerable to GPS spoofing attacks

Another Oracle WebLogic Server RCE under active exploitation

SACK TCP flaws can crash, slow down Linux-based systems

Vulnerable TP-Link Wi-Fi extenders open to attack, patch now!

Web-based DNA sequencers getting compromised through old, unpatched flaw

Linux servers under attack via latest Exim flaw

Vulnerabilities allow attackers to take over infusion pumps

Evernote Chrome extension flaw could have allowed access to personal info

Don't miss

Webinar: Inside a Docker cryptojacking exploit

Cisco fixes critical vulnerabilities in its SD-WAN, DNA Center solutions

(IN)SECURE Magazine issue 62 released

IoT explodes worldwide, researchers investigate security issues present in the devices real users own

How to add security to digital transformation processes

Research shows Tesla Model 3 and Model S are vulnerable to GPS spoofing attacks

Mozilla plugs critical Firefox zero-day used in targeted attacks

Another Oracle WebLogic Server RCE under active exploitation

Regulation readiness: Embracing the privacy legislation wave ahead

Executives now recognize cybersecurity as a key business driver

Slack + Snapchat = AppSec? Breaking down the complexity of messaging apps

Insecure password memory aids: A passwordless future could be the solution

Don't miss

Newsletters