New Chrome 0-Day Actively Exploited
⚡ TL;DR | Go Straight to the Chrome 98 0-day Report Google released Chrome 98.0.4758.102, a security focussed release with 11 security fixes
Vulnerability
Linux Polkit Vulnerability Allows Full Root Access
A 12-year-old Polkit vulnerability has been disclosed that allows users to gain full root access. The vulnerability stems from a
Y2K22 Exchange Bug Cripples Emails
Microsoft was undoubtedly the first to surprise everyone in the new year. An issue in Exchange’s antivirus engine is causing
Critical Log4j Vulnerability Affects Millions of Applications
The Apache Software Foundation dropped a vulnerability cluster bomb on Friday, 10 December. Their Log4j java-based logging component contains a
Critical SonicWall VPN Vulnerability Allows Complete Takeover
SonicWall released a new security advisory for their Secure Mobile Access (SMA) 100-series VPN appliances. The most critical rated vulnerability
Two vCenter vSphere Web Client Vulnerabilities Fixed
A new VMware security advisory has been released including one arbitrary file read and a Server Side Request Forgery vulnerability
Linux TIPC Module Contains Critical Vulnerability
A new vulnerability in the Linux Kernel TIPC module has been disclosed affecting all Linux distributions with a Kernel version
New Vulnerability in Popular WinRAR Software
Winrar, one of the most popular data compression and archiving tools has been found to have another vulnerability in it.
Critical VMware vCenter Server File Upload Vulnerability Found
VMware released its latest security advisory which contains 19 new vulnerabilities for all three currently supported versions 6.5, 6.7, and
PrintNightmare Episode VI: Yet Another Print Spooler Vulnerability Disclosed
June 30 marked the start of PrintNightmare, since then a total of 6 separate remote code execution vulnerabilities have been
PetitPotam NTLM Relay Attack Allows Domain Takeover
Microsoft released a new security advisory covering PetitPotam. According to Microsoft this classic NTLM Relay Attack however when exploited it
PrintNightmare Bug Exposes Domain Controllers
PrintNightmare is a new bug that exposes Windows servers to remote code execution attacks through a Windows Print Spooler vulnerability that
Dell SupportAssist Vulnerability Hits 30 Million Devices
Dell’s SupportAssist package strikes again with a new vulnerability. This time the Dell SupportAssist vulnerability enables privileged remote attackers to
73 Vulnerabilities Disclosed in Intel June 2021 Platform Update
Intel released its June 2021 platform update which contains fixes for 73 vulnerabilities detected in their utility tools, BIOS versions,
Cisco Webex Vulnerability Detected In Multiple Products
Cisco released security updates to fix vulnerabilities for some of their products. If these Cisco Webex Player vulnerabilities aren’t patched,
WiFi Vulnerability Leaves Your Network Vulnerable to FragAttacks
The discovered WiFi vulnerability dubbed Fragattacks affects all modern security protocols of Wi-Fi. However, these flaws are hard to abuse
Critical VMware vCenter Server Remote Code Execution Vulnerability Found
VMware recently released its latest security advisory urging customers to update their vCenter Servers as soon as possible. VMware vCenter
Dell BIOS Driver Software Receives Patch To Fix Critical Security Issues
Researchers from SentinelLabs discovered five critical vulnerabilities (dubbed as CVE-2021-21551) within a driver installed on Dell devices. Millions of Dell
Protecting Your Network Devices From Ransomware
Ever since the boom of ransomware in 2011, reports of companies getting infected have become a regular occurrence. Especially after
Apple Patches Zero-day Vulnerability in macOS 11.3
Apple has just released a new version of their latest operating system called “Big Sur”. Along with this version 11.3
Multiple Vulnerabilities within Google Chrome – Audit Now!
Type Confusion Vulnerability Publicly Exploited in the Wild There are multiple arbitrary code execution vulnerabilities detected in Google Chrome (versions
Vulnerabilities Detected in Mozilla Firefox 87 & Firefox ESR
Multiple vulnerabilities were detected within Mozilla Firefox 87, Thunderbird, and Firefox ESR. The most critical is an arbitrary code execution
4 Microsoft Exchange Zero-day Flaws Patched
Microsoft has released emergency out-of-band security updates to plug 7 Exchange Server vulnerabilities, 4 of which are Zero-day flaws being
Intel Releases Patch For High Severity Flaws in Graphics Drivers
Intel detected security flaws within its graphics drivers and other products (INTEL-SA-00315 & INTEL-SA-00438). Five high-severity flaws need patching. These
Are you prepared for Adobe Flash Player End of Life?
Adobe Flash Player is End of Support on December 31, 2020 Adobe will no longer support Flash Player after December