Security News

Here’s an overview of some of last week’s most interesting news and articles: The overlooked part of an infosec strategy: Cyber insurance underwriting When a data breach or cyber attack hits the...

Two remote code execution (RCE) vulnerabilities in Apache Solr could be exploited by attackers to compromise the underlying server. One – CVE-2019-12409 – has already been patched, while the other...

Linux users running the enterprise-search platform Solr are potentially vulnerable to remote code execution attack.

DataStax, the company behind the leading database built on Apache Cassandra, announced early access to the DataStax Change Data Capture (CDC) Connector for Apache Kafka. The DataStax CDC Connector...

Researchers found that 24 security advisories inaccurately listed affected versions for the open-source development framework.

Two dozen security advisories for the Apache Struts open source development framework have been updated after researchers determined that they contained incorrect information regarding which...

Up to 24 Apache Struts Security Advisories listed the wrong versions that were impacted by vulnerabilities, researchers warn.

Charles Fol, the security engineer that unearthed the Carpe Diem Apache HTTP Server bug (CVE-2019-0211), has released an exploit for it. “This is between a POC and a proper exploit. I added tons...

A flaw in the world’s most popular web server could give an attacker a way to gain full control of Unix-based systems.

Rogue 'worker' processes can sneak in with elevated privileges at startup Apache HTTP Server has been given a patch to address a potentially serious elevation of privilege vulnerability.…