Previously patched vCenter vulnerabilities actively exploited

Previously patched vCenter vulnerabilities actively exploited

Broadcom appears to be playing catchup regarding a recent update for critical vulnerabilities in VMware vCenter Server. These vulnerabilities, which enable remote code execution and privilege escalation, were supposedly… Article Source https://www.techzine.eu/news/security/126360/previously-patched-vcenter-vulnerabilities-actively-exploited/

Now’s the time to update your Nvidia drivers as several high-severity vulnerabilities have been patched in the most recent update

Now’s the time to update your Nvidia drivers as several high-severity vulnerabilities have been patched in the most recent update

You should be regularly checking your Windows version is up-to-date, updating your games, and getting the latest game drivers but, if you don’t, now’s the time. A few vulnerabilities have been spotted with a previous version of Nvidia’s GPU… Article Source https://www.pcgamer.com/hardware/nows-the-time-to-update-your-nvidia-drivers-as-several-high-severity-vulnerabilities-have-been-patched-in-the-most-recent-update/

Chinese Velvet Ant Group Exploits Zero-Day Bug Patched by Cisco

Chinese Velvet Ant Group Exploits Zero-Day Bug Patched by Cisco

A recent report has shown that Chinese state-backed hackers took advantage of a zero-day vulnerability in Cisco Nexus switches that had just been patched. Cisco released a fix for CVE-2024-20399, a flaw in the Cisco NX-OS software’s command-line interface that could allow a local attacker to run arbitrary commands as root with administrator privileges. The … Read more

Critical vulnerabilities in VMware patched to prevent attackers from escaping virtual machines

Critical vulnerabilities in VMware patched to prevent attackers from escaping virtual machines

VMware released security patches to fix vulnerabilities in the USB controllers of various hypervisors, including ESXi, Workstation, Fusion, and Cloud Foundation. These vulnerabilities could allow attackers to execute malicious code on the host system, bypassing the isolation layer. Previous exploits in VM products have been used by attacker groups to deploy ransomware. The security patches … Read more