Skip to content
GeekWire
  • HOME
  • NEWS
    • CERT
    • EXPLOITS
    • NCSC
    • NVD
    • SECURELIST
    • US-CERT
  • BLOG
    • Books
    • OSINT
    • Pentest
    • Privacy
  • GHDB
  • CHDB
  • OSINT
  • ARCHIVE
  • ABOUT
    • Privacy Policy
    • Terms of Use
    • External Links
    • Sitemap
GeekWire
GeekWire
  • HOME
  • NEWS
    • CERT
    • EXPLOITS
    • NCSC
    • NVD
    • SECURELIST
    • US-CERT
  • BLOG
    • Books
    • OSINT
    • Pentest
    • Privacy
  • GHDB
  • CHDB
  • OSINT
  • ARCHIVE
  • ABOUT
    • Privacy Policy
    • Terms of Use
    • External Links
    • Sitemap

Bug

RansomHouse: Bug bounty hunters gone rogue?

24 May 2022

A new cybercrime outfit that calls itself RansomHouse is attempting to carve out a niche of the cyber extortion market for itself by …

Tags Bug, IT, News

High-Severity Bug Reported in Google’s OAuth Client Library for Java

19 May 2022

Google last month addressed a high-severity flaw in its OAuth client library for Java that could be abused by a malicious actor with a …

Tags Bug, Clients, Computer Science, Google, Java

Critical VMware Bug Exploits Continue, as Botnet Operators Jump In

17 May 2022

A critical VMware bug tracked as CVE-2022-22954 continues to draw cybercriminal moths to its remote code-execution flame, with recent …

Tags Botnets, Bug, Critical, Operators, Security Pro

Critical Zyxel Firewall Bug Under Active Attack After PoC Exploit Debut

16 May 2022

Zyxel firewalls are under active cyberattack after a critical security vulnerability was disclosed last week that could allow …

Tags After, Bug, Critical, Firewalls, Zyxel

Nasty Zyxel remote execution bug is being exploited

16 May 2022

At the end of last week, Rapid7 disclosed a nasty bug in Zyxel firewalls that could allow for an unauthenticated remote attacker to execute …

Tags Bug, Critical, Firewalls, IT, Zyxel

Intel Memory Bug Poses Risk for Hundreds of Products

11 May 2022

Chipmaker Intel is reporting a memory bug impacting microprocessor firmware used in “hundreds” of products. According to an advisory …

Tags Bug, Intel, Memory, Products, Risks

Critical Gems Takeover Bug Reported in RubyGems Package Manager

10 May 2022

The maintainers of the RubyGems package manager have addressed a critical security flaw that could have been abused to remove gems and …

Tags Bug, Critical, Gems, IT, Takeover

Critical Cisco VM-Escape Bug Threatens Host Takeover

5 May 2022

The vendor also disclosed two other security vulnerabilities that would allow remote, unauthenticated attackers to inject commands as root …

Tags Bug, Cisco, Critical, Hosts, Infrastructure Development

Critical RCE Bug Reported in dotCMS Content Management Software

4 May 2022

A pre-authenticated remote code execution vulnerability has been disclosed in dotCMS, an open-source content management system written in …

Tags Bug, Content Management, Critical, IT, Softwares

Unpatched DNS Bug Puts Millions of Routers, IoT Devices at Risk

4 May 2022

An unpatched Domain Name System (DNS) bug in a popular standard C library can allow attackers to mount DNS poisoning attacks against …

Tags Bug, Devices, DNS, Infrastructure Development, Networking

Unpatched DNS-Poisoning Bug Affects Millions of Devices, Stumps Researchers

3 May 2022

The security vulnerability puts wide swaths of industrial networks and IoT devices at risk of compromise, researchers …

Tags Bug, Devices, IT, News, Researchers

NPM Bug Allowed Attackers to Distribute Malware as Legitimate Packages

27 April 2022

A “logical flaw” has been disclosed in NPM, the default package manager for the Node.js JavaScript runtime environment, that enables …

Tags Attackers, Bug, IT, Malware, Packages

Firms Push for CVE-Like Cloud Bug System

26 April 2022

Big gaps exist in the 22-year-old Common Vulnerability and Exposures (CVE) system that do not address dangerous flaws in cloud services …

Tags Bug, Cloud, Cloud Computing, Cloud Security, Hybrid Cloud

Bug bounty platform Intigriti raises $23M to empower ethical hackers

26 April 2022

Netherlands-based bug bounty and vulnerability disclosure platform Intigriti NV said today it has raised €21.1 million ($23 million) in a …

Tags Bug, Cyber, IT, News
Post navigation
Older posts
Page1 Page2 … Page20 Next →
Cookie-Free

NVD

  • CVE-2021-40317 – Piwigo 11.5.0 is affected by a SQL injection vulnerability via admin.php and the id parame …26 May 2022
  • CVE-2022-29665 – CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via …26 May 2022
  • CVE-2021-42859 – A memory leak issue was discovered in Mini-XML v3.2 that could cause a denial of service. …26 May 2022
  • CVE-2022-29666 – CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via …26 May 2022
  • CVE-2021-42860 – A stack buffer overflow exists in Mini-XML v3.2. When inputting an unformed XML string to …26 May 2022
  • CVE-2022-29667 – CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via …26 May 2022

EXPLOITS

  • qdPM 9.1 – Remote Code Execution (RCE) (Authenticated) (v2)26 May 2022
  • m1k1o’s Blog v.10 – Remote Code Execution (RCE) (Authenticated)23 May 2022
  • OpenCart v3.x Newsletter Module – Blind SQLi23 May 2022
  • Showdoc 2.10.3 – Stored Cross-Site Scripting (XSS)17 May 2022
  • SolarView Compact 6.0 – OS Command Injection17 May 2022
  • T-Soft E-Commerce 4 – SQLi (Authenticated)17 May 2022

SECURELIST

  • Managed detection and response in 202126 May 2022
  • The Verizon 2022 DBIR25 May 2022
  • What’s wrong with automotive mobile apps?25 May 2022
  • ISaPWN – research on the security of ISaGRAF Runtime23 May 2022
  • Evaluation of cyber activities and the threat landscape in Ukraine17 May 2022
  • HTML attachments in phishing e-mails16 May 2022

Information Cyber Network Enterprise Security News

Copyright © 2022 GeekWire | Cookie-Free | Privacy Policy | We are not responsible for the content of external sites.

GeekWire Information Cyber Network Enterprise Security News

Next Page »