Security News

Google Fixes GCP Composer Flaw That Could've Led to Remote Code Execution

2024-09-16 13:07

A now-patched critical security flaw impacting Google Cloud Platform (GCP) Composer could have been exploited to achieve remote code execution on cloud servers by means of a supply chain attack...

#codeexecution #GCP #google #remote

Apache OFBiz Update Fixes High-Severity Flaw Leading to Remote Code Execution

2024-09-06 05:22

A new security flaw has been addressed in the Apache OFBiz open-source enterprise resource planning (ERP) system that, if successfully exploited, could lead to unauthenticated remote code...

#apache #codeexecution #remote #update #CVE-2024-45195

Apache fixes critical OFBiz remote code execution vulnerability

2024-09-05 21:33

Apache has fixed a critical security vulnerability in its open-source OFBiz (Open For Business) software, which could allow attackers to execute arbitrary code on vulnerable Linux and Windows...

#apache #codeexecution #critical #remote #vulnerability

Cisco Fixes Two Critical Flaws in Smart Licensing Utility to Prevent Remote Attacks

2024-09-05 04:40

Cisco has released security updates for two critical security flaws impacting its Smart Licensing Utility that could allow unauthenticated, remote attackers to elevate their privileges or access...

#attack #cisco #critical #remote #smart #CVE-2024-20439

Critical WPML Plugin Flaw Exposes WordPress Sites to Remote Code Execution

2024-08-28 04:14

A critical security flaw has been disclosed in the WPML WordPress multilingual plugin that could allow authenticated users to execute arbitrary code remotely under certain circumstances. The...

#codeexecution #critical #remote #wordpress #CVE-2024-6386

Remote Work: A Ticking Time Bomb Waiting to be Exploited

2024-08-26 14:01

ThreatLocker has created a list of the top 15 actions to secure an organization if employing a remote or hybrid workforce. Learn more in this free e-book from ThreatLocker. [...]

#remote

Critical Flaws in Traccar GPS System Expose Users to Remote Attacks

2024-08-26 07:45

Two security vulnerabilities have been disclosed in the open-source Traccar GPS tracking system that could be potentially exploited by unauthenticated attackers to achieve remote code execution...

#attack #critical #GPS #remote

Critical SAP flaw allows remote attackers to bypass authentication

2024-08-13 21:43

SAP has released its security patch package for August 2024, addressing 17 vulnerabilities, including a critical authentication bypass that could allow remote attackers to fully compromise the...

#authentication #bypass #critical #remote #SAP

Industrial Remote Access Tool Ewon Cosy+ Vulnerable to Root Access Attacks

2024-08-12 06:57

Security vulnerabilities have been disclosed in the industrial remote access solution Ewon Cosy+ that could be abused to gain root privileges to the devices and stage follow-on attacks. The elevated access could then be weaponized to decrypt encrypted firmware files and encrypted data such as passwords in configuration files, and even get correctly signed X.509 VPN certificates for foreign devices to take over their VPN sessions.

#attack #remote #remoteaccess #root #rootaccess

Sonos Speaker Flaws Could Have Let Remote Hackers Eavesdrop on Users

2024-08-09 13:18

Cybersecurity researchers have uncovered weaknesses in Sonos smart speakers that could be exploited by malicious actors to clandestinely eavesdrop on users. Successful exploitation of one of these flaws could allow a remote attacker to obtain covert audio capture from Sonos devices by means of an over-the-air attack.

#hacker #remote #sonos #CVE-2023-50809 #CVE-2023-50810

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

Security News