A new zero-day vulnerability in Citrix’s Session Recording Manager can be exploited to enable unauthenticated remote code execution (RCE) against Citrix Virtual Apps and Desktops, according to watchTowr. The attack surface management provider… Article Source https://www.infosecurity-magazine.com/news/new-citrix-zeroday-vulnerability/
Code Execution, Data Tampering Flaw in Nvidia NeMo Gen-AI Framework SecurityWeek Article Source https://www.securityweek.com/code-execution-data-tampering-flaw-in-nvidia-nemo-gen-ai-framework/
Investing.com — Deutsche Bank analysts on Tuesday initiated research coverage of Hewlett Packard Enterprise (NYSE:) with a Hold rating and a $22 price target. Despite several potential upsides, the bank’s analysts have concerns about the… Article Source https://www.investing.com/news/stock-market-news/deutsche-bank-starts-hpe-coverage-at-hold-flags-execution-risk-amid-junpier-deal-3655247
Intel is preparing to release its own dedicated gaming graphics cards based on the Xe2 “Battlemage” graphics architecture. This technology was initially introduced in the Core Ultra 200V “Lunar Lake-MX” processor as an integrated graphics processing unit (iGPU). Intel’s new lineup aims to expand its presence in the gaming graphics market for both laptops and … Read more
Intel’s upcoming high-end Arc Battlemage graphics cards, known as “X2” and “X3”, are expected to feature up to 56 Xe2 cores and a 256-bit bus interface. The information about these graphics cards comes from nbd.ltd and volza, which track customs and shipping data online. The X2 model was rumored to be based on the BMG-G10 … Read more
VMware‘s vCenter Server, a vital platform for managing virtual machines and ESXi hosts, has been found vulnerable to critical security flaws. Three vulnerabilities, CVE-2024-37079, CVE-2024-37080, and CVE-2024-37081, have been identified, posing risks of remote code execution and local privilege escalation. CVE-2024-37079 and CVE-2024-37080 are heap overflow vulnerabilities in the vCenter Server’s DCERPC protocol implementation, allowing … Read more
Several critical code execution vulnerabilities have been discovered in VMware vCenter Server, prompting the company to release patches to address the security risks. These vulnerabilities could potentially allow attackers to execute arbitrary code on affected systems, posing a significant threat to data security and system integrity. The vulnerabilities were identified as part of a routine … Read more
Cybersecurity firm Eclypsium has uncovered significant security vulnerabilities in the Phoenix SecureCore UEFI firmware used by various Intel CPU and motherboard vendors across different generations. These vulnerabilities, dubbed “UEFIcanhazbufferoverflow,” are due to an insecure call to the UEFI service “GetVariable,” which could lead to a stack buffer overflow and allow malicious code execution. This kind … Read more
Researchers at Eclypsium have identified a new vulnerability in the Phoenix SecureCode UEFI firmware that runs on Intel Core processors. This vulnerability, known as CVE-2024-0762, has the potential to impact millions of laptops from various manufacturers like Acer, ASUS, Dell, Fujitsu, HP, Lenovo, and MSI. In a blog post on June 20, Eclypsium researchers highlighted … Read more
Several critical vulnerabilities have been discovered in VMware software that could allow remote code execution attacks. These vulnerabilities were found in VMware vCenter Server, a centralized management tool for virtualized environments. The security flaws could potentially allow threat actors to gain control of systems, access sensitive information, and disrupt operations. The vulnerabilities affect versions 6.5, … Read more