Security News

Zerodium offers $2 millions for remote iOS jailbreak, $1 million for WhatsApp RCE
2019-01-08 11:04

Zero-day exploit broker Zerodium has raised again the payouts it offers for most desktops/servers and mobile exploits. A “zero click” iOS remote jailbreak is now priced at $2 million, a WhatsApp,...

Patch now (if you can!): Latest Android update fixes clutch of RCE flaws
2018-12-06 12:07

Android’s December security bulletin arrived this week with another decent crop of vulnerabilities to add to the patching list for devices running version 7.0 Nougat to version 9.0 Pie, including...

Google Patches 11 Critical RCE Android Vulnerabilities
2018-12-04 16:56

Google’s December Android Security Bulletin tackles 53 unique flaws.

Adobe plugs critical RCE Flash Player flaw, update ASAP! Exploitation may be imminent
2018-11-21 08:30

Adobe has released a Flash Player update that plugs a critical vulnerability (CVE-2018-15981) that could lead to remote code execution, and is urging users to implement it as soon as possible. The...

Apache Struts 2.3.x vulnerable to two year old RCE flaw
2018-11-06 11:28

The Apache Software Foundation is urging users that run Apache Struts 2.3.x to update the Commons FileUpload library to close a serious vulnerability that could be exploited for remote code...

Thousands of Applications Vulnerable to RCE via jQuery File Upload
2018-10-23 12:31

The flaw has existed for eight years thanks to a security change in Apache.

Two Critical RCE Bugs Patched in Drupal 7 and 8
2018-10-20 17:09

Drupal's advisory also included three patches for "moderately critical" bugs.

PoC exploit for Windows Shell RCE released
2018-10-12 09:53

Here’s one more reason to hurry with the implementation of the latest Microsoft patches: a PoC exploit for a remote code execution vulnerability that can be exploited via Microsoft Edge has been...

D-Link Patches RCE Bugs in Wireless Access Point Gear
2018-10-05 19:07

D-Link has released the beta version of the controller which addresses the reported vulnerabilities.

Old WordPress Plugin Being Exploited in RCE Attacks
2018-09-17 17:19

Old instances of the popular WordPress Duplicator Plugin are leaving sites open to remote code execution attacks.