Security News

Critical Flaws in Ollama AI Framework Could Enable DoS, Model Theft, and Poisoning
2024-11-04 14:08

Cybersecurity researchers have disclosed six security flaws in the Ollama artificial intelligence (AI) framework that could be exploited by a malicious actor to perform various actions, including...

Hackers target critical zero-day vulnerability in PTZ cameras
2024-10-31 18:23

Hackers are attempting to exploit two zero-day vulnerabilities in PTZOptics pan-tilt-zoom (PTZ) live streaming cameras used in industrial, healthcare, business conferences, government, and...

Admins better Spring into action over latest critical open source vuln
2024-10-29 14:33

Patch up: The Spring framework dominates the Java ecosystem If you're running an application built using the Spring development framework, now is a good time to check it's fully updated – a new,...

Week in review: Fortinet patches critical FortiManager 0-day, VMware fixes vCenter Server RCE
2024-10-27 09:00

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Fortinet releases patches for publicly undisclosed critical FortiManager vulnerability In the last...

Fortinet Warns of Critical Vulnerability in FortiManager Under Active Exploitation
2024-10-24 06:23

Fortinet has confirmed details of a critical security flaw impacting FortiManager that has come under active exploitation in the wild. Tracked as CVE-2024-47575 (CVSS score: 9.8), the...

FortiManager critical vulnerability under active attack
2024-10-23 22:47

Security shop and CISA urge rapid action Updated Fortinet has gone public with news of a critical flaw in its software management platform.…

Fortinet warns of new critical FortiManager flaw used in zero-day attacks
2024-10-23 15:05

Fortinet publicly disclosed today a critical FortiManager API vulnerability, tracked as CVE-2024-47575, that was exploited in zero-day attacks to steal sensitive files containing configurations,...

VMware fixes critical RCE, make-me-root bugs in vCenter - for the second time
2024-10-22 17:02

If the first patches don't work, try, try again VMware has pushed a second patch for a critical, heap-overflow bug in the vCenter Server that could allow a remote attacker to fully compromise...

VMware fixes bad patch for critical vCenter Server RCE flaw
2024-10-22 14:08

VMware has released another security update for CVE-2024-38812, a critical VMware vCenter Server remote code execution vulnerability that was not correctly fixed in the first patch from September...

VMware fixes critical vCenter Server RCE bug – again! (CVE-2024-38812)
2024-10-22 11:00

Broadcom has released new patches for previously fixed vulnerabilities (CVE-2024-38812, CVE-2024-38813) in vCenter Server, one of which hasn’t been fully addressed the first time and could allow...