What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-06-12 12:02:50 | CVE-2021-3560 flaw in polkit auth system service affects most of Linux distros (lien direct) | An authentication bypass flaw in the polkit auth system service used on most Linux distros can allow to get a root shell. An authentication bypass vulnerability in the polkit auth system service, tracked as CVE-2021-3560, which is used on most Linux distros can allow an unprivileged attacker to get a root shell. “A flaw was found […] | Vulnerability | ||
|
2021-06-09 13:19:39 | Google fixes a critical Android RCE flaw in the System component (lien direct) | Google's June security bulletin addresses more than 90 vulnerabilities in Android and Pixel devices, including a Critical RCE (CVE-2021-0507). Google's June security bulletin addresses more than 90 vulnerabilities in Android and Pixel devices, including a Critical RCE tracked as CVE-2021-0507 that could allow to take over a device. “The most severe vulnerability in this section […] | Vulnerability | ||
|
2021-06-07 11:34:48 | Experts found an RCE vulnerability in QNAP Q\'center (lien direct) | Researchers at cybersecurity firm Shielder discovered a remote code execution on QNAP Q'center through a manipulated QPKG installation package. Researchers at cybersecurity firm Shielder discovered a remote code execution flaw on QNAP Q'center through a manipulated QPKG installation package. The vulnerability was discovered by the cyber security expert`zi0Black` from Shielder Q'center now provides Q'center Virtual […] | Vulnerability | ||
|
2021-06-04 21:44:06 | Hackers scan for VMware vCenter servers vulnerable to CVE-2021-21985 RCE (lien direct) | Hackers are actively scanning the Internet for VMware vCenter servers vulnerable against a critical RCE flaw recently fixed by VMware. Threat actors are actively scanning the Internet for VMware vCenter servers affected by a critical remote code execution (RCE) vulnerability tracked as CVE-2021-21985. The CVE-2021-21985 flaw is caused by the lack of input validation in […] | Vulnerability Threat | ||
|
2021-06-02 18:20:37 | Critical 0day in the Fancy Product Designer WordPress plugin actively exploited (lien direct) | A critical zero-day vulnerability in the Fancy Product Designer WordPress plugin exposes more than 17,000 websites to attacks. Researchers from the Wordfence team at WordPress security company Defiant warn that a critical zero-day vulnerability, tracked as CVE-2021-24370, in the Fancy Product Designer WordPress plugin is actively exploited in the wild. Fancy Product Designer is a […] | Vulnerability | ||
|
2021-05-29 07:16:23 | SonicWall fixes an NSM On-Prem bug, patch it asap! (lien direct) | SonicWall urges customers to address a post-authentication flaw that affects on-premises versions of the Network Security Manager (NSM). SonicWall urges customers to ‘immediately’ address a post-authentication vulnerability, tracked as CVE-2021-20026, impacting on-premises versions of the Network Security Manager (NSM). The vulnerability rated with an 8.8 severity score could be simply exploited without user interaction. The flaw could […] | Vulnerability | ||
|
2021-05-28 20:16:19 | CVE-2020-15782 flaw in Siemens PLCs allows remote hack (lien direct) | Industrial cybersecurity firm Claroty discovered a new flaw in Siemens PLCs that can be exploited by a remote and unauthenticated attacker to hack the devices. Researchers at industrial cybersecurity firm Claroty have discovered a high-severity vulnerability in Siemens PLCs, tracked as CVE-2020-15782, that could be exploited by remote and unauthenticated attackers to bypass memory protection. The […] | Hack Vulnerability | ||
|
2021-05-27 07:38:54 | M1RACLES, the unpatchable bug that impacts new Apple M1 chips (lien direct) | A security expert has discovered a vulnerability in Apple M1 chips, dubbed M1RACLES, that cannot be fixed. Software engineer Hector Martin from Asahi Linux has discovered a vulnerability in the new Apple M1 chips, tracked as CVE-2021-30747, that was named M1RACLES. The expert pointed out that the issue can only be fixed with a redesign […] | Vulnerability | ||
|
2021-05-25 21:00:05 | Ivanti fixes high severity flaw in Pulse Connect Secure VPN (lien direct) | A flaw in Pulse Connect Secure VPN could allow an authenticated remote attacker to execute arbitrary code with elevated privileges. Ivanti addressed a high severity Buffer Overflow vulnerability in Secure VPN appliances that could allow a remote authenticated attacker to execute arbitrary code with elevated privileges. The vulnerability tracked as CVE-2021-22908, has received a CVSS […] | Vulnerability | ||
|
2021-05-23 13:25:19 | (Déjà vu) CVE-2021-31166 Windows HTTP flaw also impacts WinRM servers (lien direct) | The wormable CVE-2021-31166 vulnerability in the HTTP Protocol Stack of the Windows IIS server also affects WinRM on Windows 10 and Server systems. Microsoft Patch Tuesday for May 2021 security updates addressed 55 vulnerabilities in Microsoft including a critical HTTP Protocol Stack Remote Code Execution vulnerability tracked as CVE-2021-31166. The flaw could be exploited by an unauthenticated […] | Vulnerability | ||
|
2021-05-20 07:04:09 | Blind SQL Injection flaw in WP Statistics impacted 600K+ sites (lien direct) | Experts discovered a Time-Based Blind SQL Injection vulnerability in the WP Statistics plugin which is installed on over 600,000 WordPress sites. Researchers from the Wordfence Threat Intelligence discovered a Time-Based Blind SQL Injection vulnerability in WP Statistics, which is a WordPress plugin with over 600,000 active installs. The plugin was developed by VeronaLabs, it provides complete […] | Vulnerability Threat | ||
|
2021-05-17 13:45:30 | Expert released PoC exploit code for Windows CVE-2021-31166 bug (lien direct) | A security researcher has published a working proof-of-concept exploit code for a wormable Windows IIS server vulnerability tracked as CVE-2021-31166. Microsoft Patch Tuesday for May 2021 security updates addressed 55 vulnerabilities in Microsoft including a critical HTTP Protocol Stack Remote Code Execution vulnerability tracked as CVE-2021-31166. The flaw could be exploited by an unauthenticated attacker by […] | Vulnerability | ||
|
2021-05-13 15:53:29 | Cisco fixes AnyConnect Client VPN zero-day disclosed in November (lien direct) | Cisco has addressed a zero-day in the Cisco AnyConnect Secure Mobility Client VPN software, with publicly available proof-of-concept exploit code. Cisco has addressed a zero-day vulnerability in Cisco AnyConnect Secure Mobility Client, tracked as CVE-2020-3556, that was disclosed in November. The availability of a proof-of-concept exploit code for the zero-day was confirmed by the Cisco Product Security […] | Vulnerability | ★★★★★ | |
|
2021-05-11 21:37:37 | Hackers target Windows users exploiting a Zero-Day in Reader (lien direct) | Adobe confirmed that a zero-day vulnerability affecting Adobe Reader for Windows has been exploited in the wild in limited attacks. Adobe security updates for May 2021 address at least 43 CVEs in Experience Manager, InDesign, Illustrator, InCopy, Adobe Genuine Service, Acrobat and Reader, Magento, Creative Cloud Desktop, Media Encoder, Medium, and Animate. Five of the […] | Vulnerability | ||
|
2021-05-05 07:58:42 | Experts found critical authentication bypass flaw in HPE Edgeline Infrastructure Manager (lien direct) | Researchers found a critical vulnerability in HPE Edgeline Infrastructure Manager that could be exploited by a remote attacker to bypass authentication. Researchers from Tenable have disclosed a critical authentication bypass vulnerability in HPE Edgeline Infrastructure Manager (EIM), tracked as CVE-2021-29203, that could be exploited by attackers to compromise a customer's cloud infrastructure. “A security vulnerability […] | Vulnerability | ||
|
2021-05-03 21:08:43 | Expert released PoC exploit for Microsoft Exchange flaw (lien direct) | Security researcher released technical details and a PoC code for a high-severity vulnerability in Microsoft Exchange Server reported by the NSA. A security expert released technical details and proof-of-concept exploit (PoC) code for the high-severity vulnerability CVE-2021-28482 in Microsoft Exchange that could be exploited by remote attackers to execute arbitrary code on vulnerable systems. April […] | Vulnerability | ||
|
2021-05-03 17:39:49 | Pulse Secure fixes zero-day in Pulse Connect Secure (PCS) SSL VPN actively exploited (lien direct) | Pulse Secure has fixed a zero-day flaw in the Pulse Connect Secure (PCS) SSL VPN appliance that threat actors are actively exploiting in the wild. Pulse Secure has addressed a zero-day vulnerability (CVE-2021-22893) in the Pulse Connect Secure (PCS) SSL VPN appliance that is being actively exploited by threat actors in attacks against defense firms […] | Vulnerability Threat | ★★★★ | |
|
2021-04-29 21:28:53 | (Déjà vu) Command injection flaw in PHP Composer allowed supply-chain attacks (lien direct) | A vulnerability in the PHP Composer could have allowed an attacker to execute arbitrary commands and backdoor every PHP package. The maintainers of the PHP Composer package have addressed a critical vulnerability, tracked as CVE-2021-29472, that could have allowed an attacker to execute arbitrary commands and establish a backdoor in every PHP package. Composer is the major […] | Vulnerability | ||
|
2021-04-25 13:11:55 | 10,000+ unpatched ABUS Secvest home alarms can be deactivated remotely (lien direct) | 10,000+ unpatched ABUS Secvest home alarm systems could be remotely disabled exposing customers to intrusions and thefts. Researchers from Eye Security have found thousands of unpatched ABUS Secvest home alarm systems exposed online despite the vendor has addressed a critical bug (CVE-2020-28973) in January. A remote attacker could exploit the vulnerability to disable alarm systems and expose homes and […] | Vulnerability | ||
|
2021-04-21 05:38:01 | China-linked APT used Pulse Secure VPN zero-day to hack US defense contractors (lien direct) | At least one China-linked APT group exploited a new zero-day flaw in Pulse Secure VPN equipment to break into the networks of US defense contractors. According to coordinated reports published by FireEye and Pulse Secure, two hacking groups have exploited a new zero-day vulnerability in Pulse Secure VPN equipment to break into the networks of US defense contractors […] | Hack Vulnerability | ||
|
2021-04-17 18:57:03 | Google Project Zero updates vulnerability disclosure policy moving to a “90+30” model (lien direct) | Google Project Zero security team has updated its vulnerability disclosure policy, it gives users 30 days to patch flaws before disclosing associated technical details. The Google Project Zero security team announced an update to its vulnerability disclosure policy, it could include additional 30 days to the disclosure process for some bugs to give end-users enough […] | Vulnerability | ||
|
2021-04-16 17:37:35 | (Déjà vu) Critical RCE can allow attackers to compromise Juniper Networks devices (lien direct) | Cybersecurity provider Juniper Networks addressed a critical vulnerability that could be exploited by attackers to remotely hijack or disrupt vulnerable devices. Cybersecurity vendor Juniper Networks addressed a critical vulnerability in Junos OS, tracked as CVE-2021-0254, that could allow an attacker to remotely hijack or disrupt affected devices. This flaw stems from the improper buffer size […] | Vulnerability | ||
|
2021-04-13 16:17:38 | (Déjà vu) Experts released PoC exploit code for a critical RCE in QNAP NAS devices (lien direct) | The exploit code for a remote code execution vulnerability affecting QNAP network-attached storage (NAS) devices that run the Surveillance Station video management system is available online. An exploit for a remote code execution vulnerability affecting QNAP network-attached storage (NAS) devices was publicly released. The vulnerability, tracked as CVE-2020-2501, is a stack-based buffer overflow issue that affects […] | Vulnerability | ||
|
2021-04-13 09:04:44 | Expert publicly released Chromium-based browsers exploit demonstrated at Pwn2Own 2021 (lien direct) | An Indian security researcher has published a proof-of-concept (PoC) exploit code for a vulnerability impacting Google Chrome and other Chromium-based browsers. The Indian security researcher Rajvardhan Agarwal has publicly released a proof-of-concept exploit code for a recently discovered vulnerability that affects Google Chrome, Microsoft Edge, and other Chromium-based browsers (i.e. Opera, Brave). The researchers uploaded the PoC […] | Vulnerability | ||
|
2021-04-09 17:55:09 | Cisco will not release updates to fix critical RCE flaw in EoF Business Routers (lien direct) | Cisco announced it will not release security updates to address a critical security vulnerability affecting some of its Small Business routers. Cisco is urging customers that are using some of its Small Business routers to replace their devices because they will no longer receive security updates. According a security advisory published by the company, Cisco […] | Vulnerability | ||
|
2021-04-08 20:22:27 | Moodle flaw exposed users to account takeover (lien direct) | Wizcase experts discovered a security flaw in the open-source learning platform Moodle that could allow accounts takeover. At the beginning of October 2020, the Wizcase cyber research team, led by Ata Hakcil, discovered a security vulnerability in the open-source learning platform Moodle. Anyone who had an account on a given school's Moodle (with TeX filter enabled) could […] | Vulnerability | ||
|
2021-04-08 12:32:53 | Cisco fixed multiple flaws in SD-WAN vManage Software, including a critical RCE (lien direct) | Cisco has addressed a critical pre-authentication remote code execution (RCE) vulnerability in the SD-WAN vManage Software. Cisco has addressed multiple vulnerabilities in Cisco SD-WAN vManage Software that could be exploited by an unauthenticated, remote attacker to execute arbitrary code or by an authenticated, local attacker to gain escalated privileges on vulnerable systems. The most severe vulnerability […] | Vulnerability | ||
|
2021-04-07 22:04:37 | New Cring ransomware deployed targeting unpatched Fortinet VPN devices (lien direct) | Attackers are actively exploiting the CVE-2018-13379 flaw in Fortinet VPN to deploy the Cring ransomware to organizations in the industrial sector. Threat actors are actively exploiting the CVE-2018-13379 vulnerability in Fortinet VPNs to deploy a new piece of ransomware, tracked as Cring ransomware (also known as Crypt3r, Vjiszy1lo, Ghost, Phantom), to organizations in the industrial sector. […] | Ransomware Vulnerability Threat | ||
|
2021-04-06 07:44:52 | (Déjà vu) Experts discovered a privilege escalation issue in popular Umbraco CMS (lien direct) | Experts discovered a vulnerability in the popular CMS Umbraco that could allow low privileged users to escalate privileges to “admin.” Security experts from Trustwave have discovered a privilege escalation vulnerability in the popular website CMS, Umbraco. The vulnerability affects an API endpoint that fails to properly check the user's authorization prior to returning results found to […] | Vulnerability | ||
|
2021-04-02 12:37:02 | Airlift Express Fixes Vulnerabilities in Its E-commerce Store (lien direct) | PrivacySavvy experts discovered an OTP vulnerability in Airlift Express, which could lead to account hacks and exploits by cybercriminals. A team of security researchers from PrivacySavvy recently discovered an OTP vulnerability in Airlift Express, which could lead to account hacks and exploits by cybercriminals. Fortunately, the company has successfully fixed the security loopholes, but the […] | Vulnerability Guideline | ||
|
2021-04-01 19:46:24 | VMware fixes authentication bypass in Carbon Black Cloud Workload appliance (lien direct) | VMware has addressed a critical authentication bypass vulnerability in the VMware Carbon Black Cloud Workload appliance. VMware has addressed a critical vulnerability, tracked as CVE-2021-21982, in the VMware Carbon Black Cloud Workload appliance that could be exploited by attackers to bypass authentication. Carbon Black Cloud Workload is a data center security product that protects customers’ workloads […] | Vulnerability | ★★★★ | |
|
2021-04-01 14:39:54 | VMware fixed flaws in vROps that can be chained to compromise organizations (lien direct) | VMware addressed two vulnerabilities in its vRealize Operations (vROps) product that can expose organizations to a significant risk of attacks The vROps delivers self-driving IT operations management for private, hybrid, and multi-cloud environments in a unified, AI-powered platform. Security researcher Egor Dimitrenko from Positive Technologies discovered a server-side request forgery (SSRF) vulnerability tracked as CVE-2021-21975 […] | Vulnerability | ||
|
2021-03-31 14:48:52 | (Déjà vu) Chinese experts earned $20,000 for reporting a Chrome Sandbox Escape (lien direct) | Researchers have reported to Google a sandbox escape vulnerability in the Chrome web browser to Google that awarded them $20,000. Experts from the Chinese cybersecurity company Qihoo 360 have reported to Google another sandbox escape vulnerability (CVE-2021-21194) affecting the Chrome web browser. The tech giant awarded the researchers Leecraso and Guang Gong from the 360 Alpha […] | Vulnerability | ||
|
2021-03-30 15:30:14 | Reflected XSS Vulnerability In “Ivory Search” WP Plugin Impact Over 60K sites (lien direct) | Researchers discovered a reflected XSS vulnerability in the Ivory Search WordPress Plugin installed on over 60,000 sites. On March 28, 2021, Astra Security Threat Intelligence Team responsibly disclosed a vulnerability in Ivory Search, a WordPress Search Plugin installed on over 60,000 sites. This security vulnerability could be exploited by an attacker to perform malicious actions […] | Vulnerability Threat | ||
|
2021-03-30 11:16:20 | Hundreds of thousands of projects affected by a flaw in netmask npm package (lien direct) | A vulnerability in the netmask npm package, tracked as CVE-2021-28918, could be exploited by attackers to conduct a variety of attacks. A vulnerability in the netmask npm package, tracked as CVE-2021-28918, could expose private networks to multiple attacks. The flaw is caused by the improper input validation of octal strings in netmask npm package, it […] | Vulnerability | ||
|
2021-03-27 10:25:23 | (Déjà vu) Apple released out-of-band updates for a new Zero‑Day actively exploited (lien direct) | Apple has released new out-of-band updates for iOS, iPadOS, macOS and watchOS to address another zero‑day flaw, tracked CVE-2021-1879, actively exploited. Apple has released a new set of out-of-band patches for iOS, iPadOS, macOS and watchOS to address a critical zero-day vulnerability, tracked as CVE-2021-1879, that is being actively exploited in the wild. The vulnerability resides […] | Vulnerability | ||
|
2021-03-25 18:03:48 | 62,000 Microsoft Exchange Servers potentially left unpatched, weeks after software bugs were first uncovered (lien direct) | The CyberNews investigation team found 62,174 potentially vulnerable unpatched Microsoft Exchange Servers. A number of entities in the US and worldwide remain vulnerable to software bugs that were reported by Microsoft weeks ago. The CyberNews investigation team found 62,174 potentially vulnerable unpatched Microsoft Exchange Servers. The vulnerability is still being actively exploited, most famously by […] | Vulnerability | ||
|
2021-03-23 15:24:35 | Google fixes an Android vulnerability actively exploited in the wild (lien direct) | Google addressed a zero-day vulnerability affecting Android devices that use Qualcomm chipsets which is actively exploited in the wild. Google has addressed a zero-day vulnerability, tracked as CVE-2020-11261, affecting Android devices that use Qualcomm chipsets. According to the IT giant, threat actors are actively exploiting the vulnerability in attacks in the wild. The CVE-2020-11261 flaw, is […] | Vulnerability Threat | ||
|
2021-03-22 20:42:43 | Adobe addresses a critical vulnerability in ColdFusion product (lien direct) | Adobe has released security updates to address a critical vulnerability in the ColdFusion product (versions 2021, 2016, and 2018) that could lead to arbitrary code execution. Adobe has released security patches to address a critical vulnerability in Adobe ColdFusion that could be exploited by attackers to execute arbitrary code on vulnerable systems. The issue, tracked as CVE-2021-21087 is […] | Vulnerability Guideline | ||
|
2021-03-22 09:42:12 | RCE flaw in Apache OFBiz could allow to take over the ERP system (lien direct) | The Apache Software Foundation fixed a high severity remote code execution flaw in Apache OFBiz that could have allowed attackers to take over the ERP system. The Apache Software Foundation addressed last week a high severity vulnerability in Apache OFBiz, tracked as CVE-2021-26295, that could have allowed a remote, unauthenticated attacker to take over the […] | Vulnerability | ||
|
2021-03-19 21:42:59 | Threat actors are attempting to exploit CVE-2021-22986 in F5 BIG-IP devices in the wild (lien direct) | Cybersecurity experts warn of ongoing attacks aimed at exploiting a recently patched critical vulnerability in F5 BIG-IP and BIG-IQ networking devices. Cybersecurity experts from NCC Group and Bad Packets security firm this week detected a wave of attacks exploiting a recently patched critical vulnerability, tracked as CVE-2021-22986, in F5 BIG-IP and BIG-IQ networking devices. “After seeing lots […] | Vulnerability | ||
|
2021-03-10 09:20:38 | A flaw in The Plus Addons for Elementor WordPress plugin allows sites takeover (lien direct) | Researchers from the Wordfence team found a critical vulnerability in The Plus Addons for Elementor WordPress plugin that could be exploited to take over a website. Researchers at the Wordfence team of the security firm Defiant have spotted a critical flaw in The Plus Addons for Elementor WordPress plugin that could be exploited by attackers […] | Vulnerability | ||
|
2021-03-09 14:57:45 | (Déjà vu) Apple fixes CVE-2021-1844 RCE that affects iOS, macOS, watchOS, and Safari (lien direct) | Apple released out-of-band patches to address a remote code execution, tracked as CVE-2021-1844, that affect iOS, macOS, watchOS, and Safari web browser. Apple has released out-of-band security patches to address a critical iOS, macOS, watchOS, and Safari web browser to address a security flaw tracked as CVE-2021-1844. The vulnerability was discovered by Clément Lecigne of […] | Vulnerability | ||
|
2021-03-08 17:58:38 | UnityMiner targets unpatched QNAP NAS in cryptocurrency mining campaign (lien direct) | Experts warn of ongoing attacks targeting QNAP network-attached storage (NAS) devices to abuse them in cryptocurrency mining. Researchers at 360Netlab are warning of a cryptocurrency malware campaign targeting unpatched network-attached storage (NAS) devices. via the unauthorized remote command execution vulnerability (CVE-2020-2506 & CVE-2020-2507) Threat actors are exploiting two unauthorized remote command execution vulnerabilities, tracked as CVE-2020-2506 & […] | Malware Vulnerability Threat | ||
|
2021-03-06 21:43:11 | (Déjà vu) Multiple Cisco products exposed to DoS attack due to a Snort issue (lien direct) | Cisco announced that a vulnerability in the Snort detection engine exposes several of its products to denial-of-service (DoS) attacks. Cisco announced this week that several of its products are exposed to denial-of-service (DoS) attacks due to a vulnerability in the Snort detection engine. The vulnerability resides in the Ethernet Frame Decoder of the Snort detection […] | Vulnerability | ||
|
2021-03-04 16:39:12 | VMware addresses Remote Code Execution issue in View Planner (lien direct) | VMware released a security patch for a remote code execution vulnerability that affects the VMware View Planner product. VMware released a security patch for a remote code execution flaw, tracked as CVE-2021-21978, that affects the VMware View Planner. The View Planner is a free tool for Performance Sizing and Benchmarking of Virtual Desktop Infrastructure environments. […] | Tool Vulnerability | ||
|
2021-03-03 23:14:44 | Clop ransomware gang leaks data allegedly stolen from cybersecurity firm Qualys (lien direct) | Cybersecurity firm Qualys seems to have suffered a data breach, threat actors allegedly exploited zero-day flaw in their Accellion FTA server. Cybersecurity firm Qualys is the latest victim of a cyber attack, the company was likely hacked by threat actors that exploited a zero-day vulnerability in their Accellion FTA server. A couple of weeks ago, security experts […] | Ransomware Vulnerability Threat | ||
|
2021-03-03 15:55:30 | (Déjà vu) Bug bounty hunter awarded $50,000 for a Microsoft account hijack flaw (lien direct) | A researcher received a $50,000 bug bounty by Microsoft for having reported a vulnerability that could’ve allowed to hijack any account. Microsoft has awarded the security researcher Laxman Muthiyah $50,000 for reporting a vulnerability that could have allowed anyone to hijack users’ accounts without consent. According to the expert, the vulnerability only impacts consumer accounts. […] | Vulnerability | ||
|
2021-02-27 21:48:48 | Experts found a critical authentication bypass flaw in Rockwell Automation software (lien direct) | A critical authentication bypass vulnerability could be exploited by remote attackers to Rockwell Automation programmable logic controllers (PLCs). A critical authentication bypass vulnerability, tracked as CVE-2021-22681, can be exploited by remote attackers to compromise programmable logic controllers (PLCs) manufactured by Rockwell Automation. The vulnerability was independently reported to Rockwell by researchers at the Soonchunhyang University […] | Vulnerability | ||
|
2021-02-25 21:41:33 | (Déjà vu) Cisco fixes three critical bugs in ACI Multi-Site Orchestrator, Application Services Engine, and NX-OS (lien direct) | Cisco addressed over a dozen vulnerabilities in its products, including three critical bugs in ACI Multi-Site Orchestrator, Application Services Engine, and NX-OS software. Cisco released security updates to address over a dozen vulnerabilities affecting multiple products, including three critical flaws impacting its ACI Multi-Site Orchestrator, Application Services Engine, and NX-OS software. The most severe vulnerability […] | Vulnerability |
To see everything:
Our RSS (filtrered)
