This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2025-05-10T20:13:31+00:00 www.secnews.physaphae.fr InfoSecurity Mag - InfoSecurity Magazine The Zero Day Initiative\'s first Pwn2Own Automotive competition has handed out over $1m for 24 zero-days]]> 2024-01-25T10:15:00+00:00 https://www.infosecurity-magazine.com/news/pwn2own-unearths-dozens-zeroday/ www.secnews.physaphae.fr/article.php?IdArticle=8442921 False Vulnerability,Threat None 5.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine US security agency CISA orders all civilian federal agencies to take immediate steps to mitigate two Ivanti zero-day flaws]]> 2024-01-22T10:15:00+00:00 https://www.infosecurity-magazine.com/news/cisa-emergency-directive-action/ www.secnews.physaphae.fr/article.php?IdArticle=8441611 False Vulnerability,Threat None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine CISA\'s advisory provides mitigations for vulnerabilities in ICS products used in critical infrastructure industries like energy, manufacturing and transportation]]> 2024-01-12T15:00:00+00:00 https://www.infosecurity-magazine.com/news/cisa-critical-infrastructure-patch/ www.secnews.physaphae.fr/article.php?IdArticle=8438297 False Vulnerability,Industrial None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Bitdefender researchers revealed the vulnerability allows an attacker to send commands to the thermostat and replace its firmware]]> 2024-01-12T10:00:00+00:00 https://www.infosecurity-magazine.com/news/vulnerability-bosch-smart/ www.secnews.physaphae.fr/article.php?IdArticle=8438183 False Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Ivanti has released mitigation steps after reports of active exploitation of Connect Secure and Policy Secure vulnerabilities]]> 2024-01-11T09:30:00+00:00 https://www.infosecurity-magazine.com/news/two-ivanti-zerodays-actively/ www.secnews.physaphae.fr/article.php?IdArticle=8437803 False Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Cyber-attacks and misinformation top WEF\'s list of global risks, with cybercrime poised to exploit tech advancements and AI dominance raising concerns about vulnerability]]> 2024-01-10T14:45:00+00:00 https://www.infosecurity-magazine.com/news/top-wef-global-risk-list-2024-cyber/ www.secnews.physaphae.fr/article.php?IdArticle=8437536 False Vulnerability,Threat None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Critical Hyper-V flaw is one of 12 remote code execution vulnerabilities fixed this Patch Tuesday]]> 2024-01-10T09:30:00+00:00 https://www.infosecurity-magazine.com/news/microsoft-12-rce-bugs-january/ www.secnews.physaphae.fr/article.php?IdArticle=8437450 False Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The vulnerability could lead to remote code execution on affected systems]]> 2024-01-09T16:45:00+00:00 https://www.infosecurity-magazine.com/news/flaw-ai-plugin-exposes-50000-wp/ www.secnews.physaphae.fr/article.php?IdArticle=8437217 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Ivanti releases updates to fix 22 vulnerabilities in its Avalanche mobile device management product]]> 2023-12-21T10:30:00+00:00 https://www.infosecurity-magazine.com/news/ivanti-customers-patch-13-critical/ www.secnews.physaphae.fr/article.php?IdArticle=8426702 False Vulnerability,Mobile None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The Qualys report also showed over 7000 vulnerabilities had proof-of-concept exploit code]]> 2023-12-19T15:00:00+00:00 https://www.infosecurity-magazine.com/news/2023-26000-vulnerabilities-97/ www.secnews.physaphae.fr/article.php?IdArticle=8425496 False Vulnerability,Threat None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Unauthorized actors breached health data, including details related to dental procedures and claims]]> 2023-12-18T17:00:00+00:00 https://www.infosecurity-magazine.com/news/moveit-flaw-hits-delta-dental-7m/ www.secnews.physaphae.fr/article.php?IdArticle=8424876 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The FBI and CISA detected that hackers linked to the Russian foreign intelligence service (SVR) have been targeting a JetBrains TeamCity vulnerability since September 2023]]> 2023-12-14T15:30:00+00:00 https://www.infosecurity-magazine.com/news/cozy-bear-russia-jetbrains-teamcity/ www.secnews.physaphae.fr/article.php?IdArticle=8422706 False Vulnerability APT 29 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine More ransomware attacks now start with vulnerability exploitation than phishing, says Corvus Insurance]]> 2023-12-14T10:30:00+00:00 https://www.infosecurity-magazine.com/news/vulnerabilities-initial-access/ www.secnews.physaphae.fr/article.php?IdArticle=8422557 False Ransomware,Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Microsoft has released updates for dozens of vulnerabilities including one zero-day flaw]]> 2023-12-13T10:30:00+00:00 https://www.infosecurity-magazine.com/news/microsoft-fixes-34-cves-one-zero/ www.secnews.physaphae.fr/article.php?IdArticle=8422010 False Vulnerability,Threat None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Users of popular WordPress plugin Backup Migration are urged to patch a new critical vulnerability]]> 2023-12-12T10:00:00+00:00 https://www.infosecurity-magazine.com/news/backup-migration-wordpress-plugin/ www.secnews.physaphae.fr/article.php?IdArticle=8421441 False Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Users are urged to patch critical vulnerability in Apache Struts 2 immediately]]> 2023-12-12T09:30:00+00:00 https://www.infosecurity-magazine.com/news/apache-warns-critical/ www.secnews.physaphae.fr/article.php?IdArticle=8421442 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Two years after a critical vulnerability was found in utility Log4j, 38% of apps still use buggy versions]]> 2023-12-11T09:30:00+00:00 https://www.infosecurity-magazine.com/news/twofifths-log4j-apps-vulnerable/ www.secnews.physaphae.fr/article.php?IdArticle=8420967 False Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Vulnerabilities may be linked to commercial spyware operations]]> 2023-12-01T10:30:00+00:00 https://www.infosecurity-magazine.com/news/apple-patches-actively-exploited/ www.secnews.physaphae.fr/article.php?IdArticle=8418284 False Vulnerability,Commercial None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Fortiguard Labs identified multiple threat actors leveraging CVE-2023-46604]]> 2023-11-29T17:00:00+00:00 https://www.infosecurity-magazine.com/news/gotitan-botnet-prctrl-rat-exploit/ www.secnews.physaphae.fr/article.php?IdArticle=8417837 False Vulnerability,Threat None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Zero-day bug could allow remote control of servers]]> 2023-11-29T10:00:00+00:00 https://www.infosecurity-magazine.com/news/hackers-exploit-critical/ www.secnews.physaphae.fr/article.php?IdArticle=8417741 False Vulnerability,Threat None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Critical vulnerability is being exploited in the wild]]> 2023-11-29T09:30:00+00:00 https://www.infosecurity-magazine.com/news/google-fixes-sixth-chrome-zeroday/ www.secnews.physaphae.fr/article.php?IdArticle=8417742 False Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Identified as CVE-2023-46604, the vulnerability has a CVSS score of 9.8]]> 2023-11-22T17:00:00+00:00 https://www.infosecurity-magazine.com/news/apache-activemq-flaw-exposes-linux/ www.secnews.physaphae.fr/article.php?IdArticle=8415998 False Malware,Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Multiple threat actor groups including Lockbit affiliates are found to be exploiting a vulnerability in Citrix NetScaler gateway appliances, government agencies have warned]]> 2023-11-22T11:45:00+00:00 https://www.infosecurity-magazine.com/news/lockbit-affiliates-exploit-citrix/ www.secnews.physaphae.fr/article.php?IdArticle=8415869 False Vulnerability,Threat None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Researchers warn that millions of consumers\' PII could be at risk due to exploitable vulnerabilities and a lack of basic security protocols in e-commerce web apps]]> 2023-11-21T14:00:00+00:00 https://www.infosecurity-magazine.com/news/black-friday-security-gaps-e/ www.secnews.physaphae.fr/article.php?IdArticle=8415384 False Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Patch Tuesday includes fixes for three actively exploited bugs]]> 2023-11-15T10:00:00+00:00 https://www.infosecurity-magazine.com/news/microsoft-fixes-five-zeroday/ www.secnews.physaphae.fr/article.php?IdArticle=8412279 False Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine ESET Research reported the vulnerability to the Roundcube team on October 12]]> 2023-10-25T16:00:00+00:00 https://www.infosecurity-magazine.com/news/winter-vivern-zero-day-targets/ www.secnews.physaphae.fr/article.php?IdArticle=8400183 False Vulnerability,Threat None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Salt Security discovered the vulnerabilities in implementations of the OAuth protocol]]> 2023-10-24T16:00:00+00:00 https://www.infosecurity-magazine.com/news/api-security-flaw-grammarly-vidio/ www.secnews.physaphae.fr/article.php?IdArticle=8399781 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Microsoft has warned organizations using JetBrains TeamCity server to take immediate steps to mitigate this threat]]> 2023-10-19T10:15:00+00:00 https://www.infosecurity-magazine.com/news/north-korean-exploiting-critical/ www.secnews.physaphae.fr/article.php?IdArticle=8397653 False Vulnerability,Threat None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The tech giant has issued guidance to mitigate exploitation of the flaw, which has the highest severity rating]]> 2023-10-17T11:00:00+00:00 https://www.infosecurity-magazine.com/news/cisco-critical-vulnerability-ios/ www.secnews.physaphae.fr/article.php?IdArticle=8396674 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine With over 20,000 active installations, the plugin is used for user-generated content submissions]]> 2023-10-12T16:00:00+00:00 https://www.infosecurity-magazine.com/news/wp-plugin-user-submitted-posts/ www.secnews.physaphae.fr/article.php?IdArticle=8394787 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The flaw impacts curl and libcurl, causing SOCKS5 proxy handshake to suffer heap buffer overflow]]> 2023-10-11T15:30:00+00:00 https://www.infosecurity-magazine.com/news/curl-releases-fixes-high-severity/ www.secnews.physaphae.fr/article.php?IdArticle=8394378 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The incident occurred between May 27 and 31 2023, before MOVEit Transfer vulnerability was publicly disclosed]]> 2023-10-10T15:30:00+00:00 https://www.infosecurity-magazine.com/news/flagstar-bank-moveit-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8393820 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Qualys identified and exploited the vulnerability in Fedora 37/38, Ubuntu 22.04/23.04, Debian 12/13]]> 2023-10-05T14:30:00+00:00 https://www.infosecurity-magazine.com/news/critical-glibc-bug-puts-linux-risk/ www.secnews.physaphae.fr/article.php?IdArticle=8391877 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Chip giants have released updates to fix the vulnerabilities]]> 2023-10-04T09:30:00+00:00 https://www.infosecurity-magazine.com/news/arm-qualcomm-hit-multiple-zeroday/ www.secnews.physaphae.fr/article.php?IdArticle=8391352 False Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The open letter, signed by 50 leading cybersecurity figures, urges the EU to reconsider its proposals around vulnerability disclosure requirements]]> 2023-10-03T14:30:00+00:00 https://www.infosecurity-magazine.com/news/eu-cyber-resilience-act/ www.secnews.physaphae.fr/article.php?IdArticle=8391025 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Patchstack uncovered an unauthenticated role privilege escalation flaw and an account takeover vulnerability]]> 2023-09-27T16:30:00+00:00 https://www.infosecurity-magazine.com/news/simple-membership-flaws-exposes-wp/ www.secnews.physaphae.fr/article.php?IdArticle=8388713 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Palo Alto Networks found that over 45% of organizations\' high-risk exposures in the cloud were due to cloud providers introducing new services]]> 2023-09-15T14:00:00+00:00 https://www.infosecurity-magazine.com/news/cloud-blame-almost-all-security/ www.secnews.physaphae.fr/article.php?IdArticle=8383706 False Vulnerability,Cloud None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine But IBM warns credential compromise is number one initial access vector]]> 2023-09-14T08:30:00+00:00 https://www.infosecurity-magazine.com/news/cloud-cves-surge-200-in-a-year/ www.secnews.physaphae.fr/article.php?IdArticle=8382575 False Vulnerability,Studies,Cloud None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Federal agencies have one month to fix BlastPass vulnerabilities]]> 2023-09-12T09:00:00+00:00 https://www.infosecurity-magazine.com/news/us-government-ordered-patch-apple/ www.secnews.physaphae.fr/article.php?IdArticle=8381713 False Vulnerability LastPass 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The unpatched bug in PHPFusion could result in the theft of sensitive data, Synopsys researchers warn]]> 2023-09-06T10:30:00+00:00 https://www.infosecurity-magazine.com/news/high-severity-vulnerability-cms/ www.secnews.physaphae.fr/article.php?IdArticle=8379606 False Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine SAML flaw in enabled rogue customers to access others\' SaaS data]]> 2023-09-05T16:00:00+00:00 https://www.infosecurity-magazine.com/news/mendios-saml-vulnerability-exposed/ www.secnews.physaphae.fr/article.php?IdArticle=8379203 False Vulnerability,Cloud None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Although the patches for these vulnerabilities have already been released, public attacks are still occurring]]> 2023-09-01T09:50:00+00:00 https://www.infosecurity-magazine.com/news/adobe-coldfusion-vulnerabilities/ www.secnews.physaphae.fr/article.php?IdArticle=8377874 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Vulnerability could be exploited to gain elevated privileges]]> 2023-08-25T09:00:00+00:00 https://www.infosecurity-magazine.com/news/reply-url-takeover-issue-azure/ www.secnews.physaphae.fr/article.php?IdArticle=8374411 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine QuiteRAT, the North-Korea-Backed group\'s new malware, exploits a 2022 ManageEngine ServiceDesk vulnerability]]> 2023-08-25T07:30:00+00:00 https://www.infosecurity-magazine.com/news/lazarus-internet-healthcare/ www.secnews.physaphae.fr/article.php?IdArticle=8374396 False Malware,Vulnerability APT 38,APT 38 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Group-IB said cyber-criminals used the flaw to create archives packaged with DarkMe, GuLoader and Remcos RAT]]> 2023-08-23T16:00:00+00:00 https://www.infosecurity-magazine.com/news/winrar-flaw-affects-traders/ www.secnews.physaphae.fr/article.php?IdArticle=8373703 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Researchers find four vulnerabilities in popular model]]> 2023-08-23T08:30:00+00:00 https://www.infosecurity-magazine.com/news/tplink-smart-bulb-wifi-passwords/ www.secnews.physaphae.fr/article.php?IdArticle=8373557 False Vulnerability None 1.00000000000000000000 InfoSecurity Mag - InfoSecurity Magazine Latest vulnerability affects Ivanti Sentry]]> 2023-08-22T09:00:00+00:00 https://www.infosecurity-magazine.com/news/ivanti-critical-zeroday-bug/ www.secnews.physaphae.fr/article.php?IdArticle=8373025 False Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Latest CyCognito report exposes 74% PII vulnerability, prompting urgent data protection]]> 2023-08-18T16:00:00+00:00 https://www.infosecurity-magazine.com/news/study-reveals-web-apps/ www.secnews.physaphae.fr/article.php?IdArticle=8371799 False Vulnerability,Studies None 4.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Aqua Nautilus exposed naming policy, ownership verification and module exposure vulnerabilities]]> 2023-08-17T16:00:00+00:00 https://www.infosecurity-magazine.com/news/flaws-powershell-gallery-enable/ www.secnews.physaphae.fr/article.php?IdArticle=8371312 False Vulnerability None 1.00000000000000000000 InfoSecurity Mag - InfoSecurity Magazine Citrix ShareFile vulnerability dates back to June]]> 2023-08-17T09:30:00+00:00 https://www.infosecurity-magazine.com/news/cisa-patching-actively-exploited/ www.secnews.physaphae.fr/article.php?IdArticle=8371163 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The vulnerabilities put critical infrastructure organizations at risk of attacks such as remote code execution (RCE) and denial of service (DoS)]]> 2023-08-14T09:32:00+00:00 https://www.infosecurity-magazine.com/news/microsoft-codesys-flaws-power-plant/ www.secnews.physaphae.fr/article.php?IdArticle=8369853 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine A number of popular crypto wallet providers have been affected by the vulnerabilities, including Coinbase WaaS, Zengo and Binance]]> 2023-08-09T21:16:00+00:00 https://www.infosecurity-magazine.com/news/zero-day-vulnerabilities-crypto/ www.secnews.physaphae.fr/article.php?IdArticle=8368090 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Tracked as CVE-2023-34034, the flaw has a CVSS score of 9.8]]> 2023-08-09T15:30:00+00:00 https://www.infosecurity-magazine.com/news/access-control-flaw-spring-webflux/ www.secnews.physaphae.fr/article.php?IdArticle=8367934 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Guardio Labs detected the campaign and detailed its findings in a technical blog post]]> 2023-08-04T15:30:00+00:00 https://www.infosecurity-magazine.com/news/phishing-exploits-0-day-salesforce/ www.secnews.physaphae.fr/article.php?IdArticle=8365728 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Security agencies urge timely patching]]> 2023-08-04T09:00:00+00:00 https://www.infosecurity-magazine.com/news/legacy-flaws-dominate-top-12/ www.secnews.physaphae.fr/article.php?IdArticle=8365613 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Agency says two bugs are being chained in attacks]]> 2023-08-02T08:30:00+00:00 https://www.infosecurity-magazine.com/news/cisa-in-new-warning-ivanti/ www.secnews.physaphae.fr/article.php?IdArticle=8364661 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Wiz Research said the vulnerabilities were discovered in the Linux filesystem, OverlayFS]]> 2023-07-28T15:30:00+00:00 https://www.infosecurity-magazine.com/news/40-ubuntu-cloud-workloads/ www.secnews.physaphae.fr/article.php?IdArticle=8362803 False Vulnerability,Cloud None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The advisory issues recommendations for developers and end users on reducing the prevalence of access control vulnerabilities]]> 2023-07-28T13:00:00+00:00 https://www.infosecurity-magazine.com/news/australia-us-warning-web-app/ www.secnews.physaphae.fr/article.php?IdArticle=8362737 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The popular forms builder plugin for WordPress has over 900,000 active installations]]> 2023-07-27T16:00:00+00:00 https://www.infosecurity-magazine.com/news/high-severity-flaws-ninja-forms/ www.secnews.physaphae.fr/article.php?IdArticle=8362288 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The issue arises from the logging of credentials in hex encoding in platform system audit logs]]> 2023-07-26T16:30:00+00:00 https://www.infosecurity-magazine.com/news/vmware-patches-flaw-exposing-admin/ www.secnews.physaphae.fr/article.php?IdArticle=8361815 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine FortiGuard Labs described the vulnerabilities in an advisory published on Monday]]> 2023-07-25T15:30:00+00:00 https://www.infosecurity-magazine.com/news/flaws-microsoft-message-queuing/ www.secnews.physaphae.fr/article.php?IdArticle=8361290 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Erik Hope revealed the attack was traced back to a vulnerability in a government supplier]]> 2023-07-24T14:30:00+00:00 https://www.infosecurity-magazine.com/news/cyber-attack-strikes-norwegian/ www.secnews.physaphae.fr/article.php?IdArticle=8360801 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Fortinet discovered Multiple DDoS botnets, including Dark.IoT, a variant based on Mirai]]> 2023-07-20T15:00:00+00:00 https://www.infosecurity-magazine.com/news/zyxel-flaw-exploited-ddos-botnets/ www.secnews.physaphae.fr/article.php?IdArticle=8359275 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Rapid7 has observed that some vulnerabilities in Adobe ColdFusion were still being exploited several days after the patches were published]]> 2023-07-18T16:30:00+00:00 https://www.infosecurity-magazine.com/news/vulnerabilities-adobe-coldfusion/ www.secnews.physaphae.fr/article.php?IdArticle=8358369 False Vulnerability None 1.00000000000000000000 InfoSecurity Mag - InfoSecurity Magazine Fortinet suggests attackers are leveraging vulnerabilities like CVE-2021-40444 and CVE-2022-30190]]> 2023-07-14T15:30:00+00:00 https://www.infosecurity-magazine.com/news/lokibot-malware-targets-windows/ www.secnews.physaphae.fr/article.php?IdArticle=8356590 False Malware,Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The vulnerability affects Cisco Nexus 9000 Series Fabric Switches]]> 2023-07-06T16:00:00+00:00 https://www.infosecurity-magazine.com/news/cisco-switches-flaw-exposes-traffic/ www.secnews.physaphae.fr/article.php?IdArticle=8352962 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Bishop Fox said they have successfully developed an exploit for the vulnerability]]> 2023-07-04T16:00:00+00:00 https://www.infosecurity-magazine.com/news/two-thirds-fortigate-risk/ www.secnews.physaphae.fr/article.php?IdArticle=8352192 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine CWE Top 25 list is calculated from two years of vulnerability data]]> 2023-06-30T09:30:00+00:00 https://www.infosecurity-magazine.com/news/mitre-most-dangerous-software/ www.secnews.physaphae.fr/article.php?IdArticle=8350970 False Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The vulnerability affects versions 7.4.0 and below of the WordPress plugin]]> 2023-06-14T15:30:00+00:00 https://www.infosecurity-magazine.com/news/unauth-idor-woocommerce/ www.secnews.physaphae.fr/article.php?IdArticle=8345371 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The release notes did not initially mention the critical SSL-VPN RCE vulnerability being addressed]]> 2023-06-13T16:30:00+00:00 https://www.infosecurity-magazine.com/news/fortinet-addresses-fortigate-ssl/ www.secnews.physaphae.fr/article.php?IdArticle=8344892 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Numen Cyber said exploiting the vulnerability does not require novel techniques]]> 2023-06-09T10:40:00+00:00 https://www.infosecurity-magazine.com/news/experts-release-exploit-windows/ www.secnews.physaphae.fr/article.php?IdArticle=8343633 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The vulnerability (CVE-2023-34362) can grant escalated privileges and unauthorized access]]> 2023-06-05T16:00:00+00:00 https://www.infosecurity-magazine.com/news/zero-day-exploited-moveit-transfer/ www.secnews.physaphae.fr/article.php?IdArticle=8342202 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Vulnerability being "widely exploited" in Mirai-based botnet attacks]]> 2023-06-01T08:30:00+00:00 https://www.infosecurity-magazine.com/news/zyxel-customers-urged-patch/ www.secnews.physaphae.fr/article.php?IdArticle=8341150 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The vulnerability was discovered by Salt Security and has a CVSS score of 9.6]]> 2023-05-25T16:00:00+00:00 https://www.infosecurity-magazine.com/news/expo-framework-api-flaw-reveals/ www.secnews.physaphae.fr/article.php?IdArticle=8339402 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The vulnerability (CVE-2023-32784) was discovered by security researcher Dominik Reichl]]> 2023-05-19T16:00:00+00:00 https://www.infosecurity-magazine.com/news/keepass-flaw-exposes-master/ www.secnews.physaphae.fr/article.php?IdArticle=8337918 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Patchstack cybersecurity experts described the vulnerability in an advisory published on Thursday]]> 2023-05-12T15:30:00+00:00 https://www.infosecurity-magazine.com/news/addons-plugin-flaw-exposes-one/ www.secnews.physaphae.fr/article.php?IdArticle=8336103 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Vulnerability derives from an error the camera experiences when handling a maliciously crafted HTTP cookie]]> 2023-05-02T15:30:00+00:00 https://www.infosecurity-magazine.com/news/high-severity-flaw-tbk-dvr-camera/ www.secnews.physaphae.fr/article.php?IdArticle=8332872 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine A malicious actor with local admin privileges could exploit the vulnerability to escape from the VM]]> 2023-04-26T16:05:00+00:00 https://www.infosecurity-magazine.com/news/critical-flaw-patched-vmware/ www.secnews.physaphae.fr/article.php?IdArticle=8331270 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Bug has potential to facilitate 2200x amplification attacks]]> 2023-04-26T09:30:00+00:00 https://www.infosecurity-magazine.com/news/new-slp-vulnerability-massive-ddos/ www.secnews.physaphae.fr/article.php?IdArticle=8331203 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Most CISOs think vulnerability management is getting harder]]> 2023-04-24T09:30:00+00:00 https://www.infosecurity-magazine.com/news/cloud-complexity-means-bugs-missed/ www.secnews.physaphae.fr/article.php?IdArticle=8330536 False Vulnerability,Cloud None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The cross-site scripting flaw affects SFX version 9.1.1436.9590 or earlier and has a CVSS of 8.2]]> 2023-03-31T15:30:00+00:00 https://www.infosecurity-magazine.com/news/new-azure-flaw-fabrixss-enables-rce/ www.secnews.physaphae.fr/article.php?IdArticle=8323807 False Vulnerability,General Information,Industrial None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine SafeMoon claims exploited vulnerability was to blame]]> 2023-03-30T08:30:00+00:00 https://www.infosecurity-magazine.com/news/thieves-steal-9m-crypto-liquidity/ www.secnews.physaphae.fr/article.php?IdArticle=8323376 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The vulnerability has a CVSS score of 7.2 and was exploited against several companies in the US]]> 2023-03-29T16:00:00+00:00 https://www.infosecurity-magazine.com/news/clop-ransomware-exploits/ www.secnews.physaphae.fr/article.php?IdArticle=8322993 False Ransomware,Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The breach was caused by a bug in an open-source library]]> 2023-03-29T10:15:00+00:00 https://www.infosecurity-magazine.com/news/chatgpt-vulnerability-payment/ www.secnews.physaphae.fr/article.php?IdArticle=8322906 False Vulnerability ChatGPT,ChatGPT 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The vulnerability refers to a type confusion bug in the WebKit browser engine]]> 2023-03-28T16:00:00+00:00 https://www.infosecurity-magazine.com/news/apple-patches-older-iphone-ipad/ www.secnews.physaphae.fr/article.php?IdArticle=8322563 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Information disclosure vulnerability aCropalypse could enable malicious actors to recover sections of screenshots]]> 2023-03-27T16:30:00+00:00 https://www.infosecurity-magazine.com/news/microsoft-fixes-flaw-windows/ www.secnews.physaphae.fr/article.php?IdArticle=8322110 False Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The vulnerability could allow an unauthenticated attacker to gain admin privileges and take over a website]]> 2023-03-24T17:00:00+00:00 https://www.infosecurity-magazine.com/news/woocommerce-flaw-affect-half/ www.secnews.physaphae.fr/article.php?IdArticle=8321272 False Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine 2023-03-16T17:00:00+00:00 https://www.infosecurity-magazine.com/news/us-server-breached-via-telerik/ www.secnews.physaphae.fr/article.php?IdArticle=8319187 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine 2023-03-14T16:30:00+00:00 https://www.infosecurity-magazine.com/news/cisa-creates-ransomware-warning/ www.secnews.physaphae.fr/article.php?IdArticle=8318489 False Ransomware,Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine 2023-02-03T17:00:00+00:00 https://www.infosecurity-magazine.com/news/atlassian-patches-critical-flaw/ www.secnews.physaphae.fr/article.php?IdArticle=8306901 False Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine 2023-02-01T09:30:00+00:00 https://www.infosecurity-magazine.com/news/nearly-30000-qnap-devices-exposed/ www.secnews.physaphae.fr/article.php?IdArticle=8306144 False Ransomware,Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine 2023-01-31T09:30:00+00:00 https://www.infosecurity-magazine.com/news/qnap-patch-critical-remote-code/ www.secnews.physaphae.fr/article.php?IdArticle=8305822 False Vulnerability None 1.00000000000000000000 InfoSecurity Mag - InfoSecurity Magazine 2023-01-27T18:00:00+00:00 https://www.infosecurity-magazine.com/news/vulnerabilities-healthcare/ www.secnews.physaphae.fr/article.php?IdArticle=8304881 False Vulnerability,Guideline None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine 2023-01-13T16:00:00+00:00 https://www.infosecurity-magazine.com/news/cisco-vulnerability-in-end-of-life/ www.secnews.physaphae.fr/article.php?IdArticle=8300907 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine 2023-01-12T16:00:00+00:00 https://www.infosecurity-magazine.com/news/chrome-symstealer-flaw-could/ www.secnews.physaphae.fr/article.php?IdArticle=8300575 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine 2023-01-10T16:00:00+00:00 https://www.infosecurity-magazine.com/news/github-adds-vulnerability-code/ www.secnews.physaphae.fr/article.php?IdArticle=8299579 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine 2022-12-14T16:00:00+00:00 https://www.infosecurity-magazine.com/news/apple-fixes-exploited-iphone-zero/ www.secnews.physaphae.fr/article.php?IdArticle=8291240 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine 2022-12-07T18:00:00+00:00 https://www.infosecurity-magazine.com/news/cryptocurrency-firms-warned/ www.secnews.physaphae.fr/article.php?IdArticle=8288765 False Vulnerability None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine 2022-11-29T18:12:00+00:00 https://www.infosecurity-magazine.com/news/oracle-fusion-middleware-flaw/ www.secnews.physaphae.fr/article.php?IdArticle=8283886 False Vulnerability None 4.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine 2022-11-25T18:00:00+00:00 https://www.infosecurity-magazine.com/news/connectwise-fixes-xss-rce/ www.secnews.physaphae.fr/article.php?IdArticle=8222233 False Vulnerability,Threat None 2.0000000000000000