Alerts

Microsoft has released an updated Microsoft Edge Stable Channel (Version 124.0.2478.67) to fix multiple vulnerabilities. The addressed vulnerabilities could allow the remote attacker to execute arbitrary code and gain access to the affected system by persuading the victim to visit a specially crafted website. Sample of the addressed vulnerabilities: Microsoft Edge (Chromium-based) Code Execution Vulnerability […]

Cisco has released security updates to fix several vulnerabilities in Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) Software. The addressed vulnerabilities could allow the attacker to conduct denial of service attacks, or execute arbitrary code, and gain access to the affected products. Sample of the addressed vulnerabilities: 1. Cisco ASA and

SolarWinds has released a security update to address two vulnerabilities affecting SolarWinds platform 2024.4.1 and prior versions. The addressed vulnerabilities could allow the attacker to manipulate data and view, add, modify, or delete information in the back-end database, or perform cross-site scripting (XSS) attacks using a specially crafted URL to execute script in the victim’s

Microsoft has released an updated Microsoft Edge Stable Channel (Version 124.0.2478.51) to fix multiple vulnerabilities. The addressed vulnerabilities could allow the remote attacker to bypass security restrictions, obtain sensitive information, or execute arbitrary code and gain access to the affected system by persuading the victim to visit a specially crafted website. Sample of the addressed

SolarWinds has released a security update to address a vulnerability affecting SolarWinds Serv-U 15.4.1.128 and prior versions. The addressed vulnerability could allow the remote attacker to execute arbitrary code and gain access to the affected system. SolarWinds Serv-U Directory Traversal Vulnerability (CVE-2024-28073): CVSS: 8.4 Attack Vector: Network Attack Complexity: Low Privileges Required: High User Interaction:

Cisco has released security updates to fix multiple vulnerabilities across Cisco Integrated Management Controller (IMC) and Cisco IOS/IOS XE Software. The addressed vulnerabilities could allow the attacker to bypass security restrictions or execute arbitrary code and gain access to the affected system. Sample of the addressed vulnerabilities: 1. Cisco Integrated Management Controller (IMC) Software Command

Mozilla has released an updated Firefox version 125, and Firefox ESR version 115.10 to fix multiple vulnerabilities. The addressed vulnerabilities could allow the remote attacker to execute arbitrary code and gain access to the affected products, perform denial of service attacks, bypass security restrictions, and obtain information by persuading the victim to visit a specially

Google has released an updated Chrome version “124.0.6367.60/.61” for Windows and Mac, and version “124.0.6367.60” for Linux. The addressed vulnerabilities could allow the remote attacker to bypass security, obtain information, or execute arbitrary code and gain access to the affected system by persuading the victim to visit a specially crafted Website. Sample of the addressed

Microsoft has released an updated Microsoft Edge version 123.0.2420.97 to address multiple vulnerabilities. The addressed vulnerabilities could allow the remote attacker to execute arbitrary code and gain access to the affected system by persuading the victim to visit a specially crafted website. Sample of the addressed vulnerabilities: 1. Microsoft Edge Code Execution Vulnerability (CVE-2024-3515): CVSS:

Juniper has released security updates to fix several vulnerabilities affecting multiple Juniper products. The addressed vulnerabilities could allow the attacker to obtain sensitive information, manipulate files, conduct cross-site scripting attacks, perform denial of service attacks, or execute arbitrary code and gain access to the affected product. Sample of the addressed vulnerabilities: 1. Juniper Networks Paragon

Google has released an updated Chrome version 123.0.6312.122/.123 for Windows, versions 123.0.6312.122/.123/.124 for Mac, and version 123.0.6312.122 for Linux. The addressed vulnerabilities could allow the remote attacker to execute arbitrary code and gain access to the affected system by persuading the victim to visit a specially crafted website. Sample of the addressed vulnerabilities: 1. Google

SAP has released security updates to address several vulnerabilities affecting multiple SAP products. SAP has released a patch that fixes several vulnerabilities affecting multiple SAP products such as SAP NetWeaver AS Java User Management Engine, SAP BusinessObjects Web Intelligence, AP Asset Accounting, SAP Edge Integration Cell, SAP NetWeaver AS ABAP and ABAP Platform, AP Group

Apache has released a security update to address a vulnerability in multiple versions of Apache HTTP Server. The addressed vulnerability could allow the remote attacker to cause an out-ofmemory (OOM) crash and perform denial of service attacks on the affected system by sending a stream of continuation frames that will not be appended to the