vulnerabilities

Zero-Day Vulnerabilities CVE-2023-6548 and CVE-2023-6549 Exploited in Citrix NetScaler ADC and NetScaler Gateway

by
Zero-Day Vulnerabilities CVE-2023-6548 and CVE-2023-6549 Exploited in Citrix NetScaler ADC and NetScaler Gateway

Citrix recently announced the presence of two zero-day vulnerabilities in its NetScaler ADC and NetScaler Gateway appliances, which require urgent patches for resolution. CVE-2023-6548 is a remote code execution (RCE) vulnerability that allows an authenticated attacker with low-level privileges to exploit the system. On the other hand, CVE-2023-6549 is a denial of service (DoS) vulnerability … Read more

Cryptocurrency Mining Group Abuses Oracle WebLogic Server Vulnerabilities

by
Cryptocurrency Mining Group Abuses Oracle WebLogic Server Vulnerabilities

Security researchers have uncovered a cryptocurrency mining operation conducted by the 8220 gang that exploits vulnerabilities in Oracle WebLogic Server. Known as Water Sigbin, the threat actor uses fileless execution techniques to bypass detection mechanisms, allowing the malware code to run solely in memory. The initial access is gained through vulnerabilities such as CVE-2017-3506, CVE-2017-10271, … Read more

VMware vCenter Server addresses critical code execution vulnerabilities – SecurityWeek

by

Several critical code execution vulnerabilities have been discovered in VMware vCenter Server, prompting the company to release patches to address the security risks. These vulnerabilities could potentially allow attackers to execute arbitrary code on affected systems, posing a significant threat to data security and system integrity. The vulnerabilities were identified as part of a routine … Read more

Vulnerabilities in Citrix Exploited as Hackers Flag Shortcomings in IT Asset Inventory – Risk.net

by
Vulnerabilities in Citrix Exploited as Hackers Flag Shortcomings in IT Asset Inventory – Risk.net

Global banks are facing increasing pressure from regulators to improve management of their IT asset inventories to prevent cybercriminals from exploiting vulnerabilities in outdated software. Senior risk executives are emphasizing the importance of maintaining a centralized database of technology to better understand and address potential risks. Those who have not yet implemented these measures are … Read more

Citrix alerts of vulnerabilities in Netscaler being exploited by attackers

by
Citrix alerts of vulnerabilities in Netscaler being exploited by attackers

Citrix has warned its customers to promptly patch Netscaler ADC and Gateway appliances against two zero-day vulnerabilities that are being actively exploited. The vulnerabilities, tracked as CVE-2023-6548 and CVE-2023-6549, can lead to remote code execution and denial-of-service attacks on unpatched Netscaler instances. Attackers need to log in to low-privileged accounts on the target instance and … Read more

UNC3886 Chinese actors exploit VMware and Fortinet vulnerabilities for espionage purposes

by
UNC3886 Chinese actors exploit VMware and Fortinet vulnerabilities for espionage purposes

In the year 2021, a cyber espionage actor known as UNC3886, suspected to be linked to China, was discovered targeting strategic organizations by exploiting vulnerabilities in FortiOS and VMware to install backdoors on compromised machines. This threat actor demonstrated a sophisticated and evasive nature by deploying multiple layers of organized persistence to maintain access to … Read more

Notification of Multiple High-Risk Vulnerabilities (CVE-2024-37079, CVE-2024-37080, CVE-2024-37081) in VMware vCenter Server

by
Notification of Multiple High-Risk Vulnerabilities (CVE-2024-37079, CVE-2024-37080, CVE-2024-37081) in VMware vCenter Server

NSFOCUS CERT recently discovered high-risk vulnerabilities in VMware vCenter Server and released a security advisory regarding a heap overflow vulnerability and a privilege escalation vulnerability. These vulnerabilities could allow remote attackers to execute arbitrary code and grant root privileges to low-privileged accounts. The affected versions include VMware vCenter Server 8.0, 7.0, VMware Cloud Foundation (vCenter … Read more

Important VMware vulnerabilities allow for Remote Code Execution attacks – Latest news and analysis from Spiceworks

by

Several critical vulnerabilities have been discovered in VMware software that could allow remote code execution attacks. These vulnerabilities were found in VMware vCenter Server, a centralized management tool for virtualized environments. The security flaws could potentially allow threat actors to gain control of systems, access sensitive information, and disrupt operations. The vulnerabilities affect versions 6.5, … Read more

Google Chrome’s 126 update fixes numerous high-severity vulnerabilities

by
Google Chrome’s 126 update fixes numerous high-severity vulnerabilities

Google has released the Chrome 126 update to fix six vulnerabilities, including a high-severity type confusion flaw in the V8 script engine demonstrated at TyphoonPWN 2024 hacking competition. Seunghyun Lee reported this issue and received a $20,000 reward. Other high-severity issues addressed include inappropriate implementation in WebAssembly, out-of-bounds memory access, and use after free in … Read more

CERT-In issues warning about security vulnerabilities in Google Pixel phones – immediate update required

by
CERT-In issues warning about security vulnerabilities in Google Pixel phones – immediate update required

The Indian Computer Emergency Response Team (CERT-In) has identified new security vulnerabilities in Google Pixel phones that can be exploited by remote attackers. These flaws exist in various subcomponents of Pixel devices such as Exynos RIL, Modem, Fingerprint Sensor, and more, allowing attackers to gain access to sensitive information and potentially carry out denial of … Read more