Alerts Archives - Page 29 of 52

Oracle Security Patch Update – 18 January 2024

Oracle released its critical patch update for January 2024, containing (389) new security patches for multiple affected products in Oracle code and third-party components included in Oracle products. The addressed vulnerabilities could allow the attacker to perform various attacks such as obtaining sensitive information, performing denial of service attacks, bypassing security restrictions, executing arbitrary code, and […]

Oracle Security Patch Update – 18 January 2024 Read More »

Microsoft Edge Security Update – 18 January 2024

Alerts

Microsoft has released an updated Microsoft Edge version 120.0.2210.144 to fix multiple vulnerabilities. The addressed vulnerabilities could allow the attacker to gain elevated privileges, perform denial of service attacks, bypass security restrictions, execute arbitrary code, and gain access to the affected system by persuading the victim to openspecially crafted content. Sample of the addressed vulnerabilities:

Microsoft Edge Security Update – 18 January 2024 Read More »

Google Chrome Security Update – 17 January 2024

Alerts

Google has released an updated Chrome version 120.0.6099.234 for Mac, 120.0.6099.224 for Linux, and version 120.0.6099.224/225 for Windows. The addressed vulnerabilities could allow the remote attacker to execute arbitrary code and gain access to the affected system by persuading the victim to visit a specially crafted website. Sample of the addressed vulnerabilities: Google Chrome Code

Google Chrome Security Update – 17 January 2024 Read More »

Citrix Security Updates – 17 January 2024

Alerts

Citrix has released security updates to address several vulnerabilities across multiple products. The addressed vulnerabilities could allow the remote attacker to execute arbitrary code, conduct cross-site scripting attacks, perform denial of service attacks, or gain access to the affected system. Sample of the addressed vulnerabilities: 1. Citrix NetScaler ADC and NetScaler Gateway Denial of Service

Citrix Security Updates – 17 January 2024 Read More »

Paessler PRTG Security Update – 16 January 2024

Alerts

Paessler has released a security update to fix a vulnerability in PRTG Network Monitor 23.4.90.1299 and earlier versions. The addressed vulnerability could allow the remote attacker to perform cross-site scripting attacks, inject arbitrary scripts, and bypass the authentication on the affected systems by persuading the PRTG user with an active session to visit a specially

Paessler PRTG Security Update – 16 January 2024 Read More »

VMware Security Update – 16 January 2024

Alerts, Announcements

VMware has released a security update to address a critical vulnerability across VMware Aria Automation (formerly vRealize Automation), and VMware Cloud Foundation (Aria Automation). The addressed vulnerability could allow the authenticated attacker to gain unauthorized access to remote organizations and workflows. VMware Aria Automation Missing Access Control Vulnerability (CVE-2023-34063): CVSS: 9.9 Attack Vector: Network Attack

VMware Security Update – 16 January 2024 Read More »

Atlassian Security Updates – 16 January 2024

Alerts

Atlassian has released security updates to address several vulnerabilities across multiple products. The addressed vulnerabilities could allow the attacker to bypass security restrictions, perform denial of service attacks, or execute arbitrary code and gain access to the affected system. Sample of the addressed vulnerabilities: Confluence Data Center and Server Remote Code Execution Vulnerability (CVE-2024-21674): CVSS:

Atlassian Security Updates – 16 January 2024 Read More »

Linux Security Updates – 14 January 2024

Alerts

Linux has released security updates to fix multiple vulnerabilities in AsyncSSH and OpenSSH. The addressed vulnerabilities could allow the remote attacker to launch a man-inthe-middle attack and strip an arbitrary number of messages after the initial key exchange, obtain sensitive information, or bypass security restrictions on the system by sending a specially crafted request to

Linux Security Updates – 14 January 2024 Read More »

Trend Micro Security Update – 14 January 2024

Alerts, Announcements

Trend Micro has released a security update to address several vulnerabilities across Trend Micro Apex Central. The addressed vulnerabilities could allow the remote attacker to trigger cross-site scripting attacks, obtain sensitive information, or execute arbitrary code and gain access to the affected system. Sample of the addressed vulnerabilities: 1. Trend Micro Apex Central Server-Side Request

Trend Micro Security Update – 14 January 2024 Read More »

Juniper Security Updates – 11 January 2024

Alerts, Announcements

Juniper has released security updates to fix several vulnerabilities across multiple products. The addressed vulnerabilities could allow the attacker to obtain sensitive information, cause a denial of service attack, bypass security restrictions, gain elevated privileges, or execute arbitrary code and gain access to the affected products. Sample of the addressed vulnerabilities: 1. Juniper Junos OS

Juniper Security Updates – 11 January 2024 Read More »

Cisco Security Updates – 11 January 2024

Alerts

Cisco has released security updates to fix several vulnerabilities in multiple Cisco products. The addressed vulnerabilities could allow the attacker to upload arbitrary files, gain elevated privileges to root, trigger cross-site scripting attacks, manipulate data by sending specially crafted SQL statements, or execute arbitrary commands and gain access to the affected products. Sample of the

Cisco Security Updates – 11 January 2024 Read More »

Ivanti Security Updates – 11 January 2024

Alerts, Announcements

Ivanti has released security updates to fix two zero-day vulnerabilities across Ivanti Connect Secure (ICS) and Ivanti Policy Secure. The addressed vulnerabilities could allow the remote attacker to execute arbitrary code, and bypass security restrictions on the affected systems by sending a specially crafted request. The addressed vulnerabilities: 1. Ivanti ICS and Ivanti Policy Secure

Ivanti Security Updates – 11 January 2024 Read More »

Google Chrome Security Update – 10 January 2024

Alerts

Google has released an updated Chrome version 120.0.6099.216/217 for Windows and 120.0.6099.216 for Mac and Linux. The addressed vulnerability could allow the remote attacker to bypass security restrictions caused by insufficient data validation in Extensions of the affected system by persuading the victim to visit a specially crafted website. Google Chrome Security Bypass Vulnerability (CVE-2024-0333):

Google Chrome Security Update – 10 January 2024 Read More »

Intel Security Updates – 10 January 2024

Alerts

Intel has released security updates to address several vulnerabilities in multiple Intel products The severity of the addressed vulnerabilities could allow the local authenticated attacker to gain elevated privileges or perform denial-of-service attacks on the affected products. Samples of the addressed vulnerabilities: 1. Intel NUC BIOS Firmware Privilege Escalation (CVE-2023-42429): CVSS: 7.5 Attack Vector: Local

Intel Security Updates – 10 January 2024 Read More »

Microsoft January 2024 Patch Tuesday

Alerts, Announcements

Microsoft has released its monthly patch of security updates, known as Patch Tuesday. Microsoft has fixed (49) vulnerabilities, with (2) classified as critical as they could allow the attacker to perform remote code execution, bypass security restrictions, gain elevated privilege, spoofing attacks, or gain access to the affected products. January’s Patch Tuesday was released to

Microsoft January 2024 Patch Tuesday Read More »

Fortinet Security Updates – 10 January 2024

Alerts

Fortinet has released security updates to fix multiple vulnerabilities across several products. The addressed vulnerabilities could allow the remote attacker to bypass security restrictions, escalate privilege, obtain sensitive information, perform denial of service attacks, or execute code and gain access to the affected products. Sample of the addressed vulnerabilities: FortiOS & FortiProxy Improper Authorization for

Fortinet Security Updates – 10 January 2024 Read More »

SAP January 2024 Security Patch Day

Alerts

SAP has released security updates to address several vulnerabilities affecting multiple products. SAP has released a patch that fixes several vulnerabilities affecting multiple SAP products such as SAP Application Interface Framework, SAP S/4HANA Finance, SAP Web Dispatcher, SAP NetWeaver Application Server ABAP, and ABAP Platform. The attacker could exploit some of these vulnerabilities to bypass

SAP January 2024 Security Patch Day Read More »

ManageEngine Security Updates – 09 January 2024

Alerts, Announcements

ManageEngine has released security updates to address a critical vulnerability across multiple product builds till 127259. The addressed vulnerability could allow the remote authenticated attacker to traverse directories by sending a specially crafted URL request containing “dot dot” sequences (/../) to create arbitrary files on the affected systems. ManageEngine OpManager Directory Traversal Vulnerability (CVE-2023-47211): CVSS:

ManageEngine Security Updates – 09 January 2024 Read More »

Microsoft Edge Security Update – 08 January 2024

Alerts

Microsoft has released an updated Microsoft Edge version 120.0.2210.121 to fix multiple vulnerabilities. The addressed vulnerabilities could allow the remote attacker to execute arbitrary code and gain access to the affected system by persuading the victim to visit a specially crafted website. Sample of the addressed vulnerabilities: Microsoft Edge Code Execution Vulnerability (CVE-2024-0222): CVSS: 8.8

Microsoft Edge Security Update – 08 January 2024 Read More »

Ivanti Security Updates – 06 January 2024

Alerts, Announcements

Ivanti has released security updates to address a critical flaw that affects Ivanti Endpoint Manager (EPM) version 2022 SU4 and all prior versions. The addressed vulnerability could allow the attacker to execute arbitrary SQL queries, retrieve output without the need for authentication, and control machines running the EPM agent. This applies to all instances of

Ivanti Security Updates – 06 January 2024 Read More »

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.