Veeam patches 5 vital vulnerabilities, together with unauthenticated RCE flaw – Go Well being Professional

Veeam patches 5 vital vulnerabilities, together with unauthenticated RCE flaw – Go Well being Professional

Veeam launched patches for 13 high-severity and 5 vital vulnerabilities, together with one flaw in Veeam Backup & Replication that would result in unauthenticated distant code execution (RCE). The September 2024 Veeam safety bulletin, final up to date Thursday, consists of bugs found in six Veeam merchandise, with CVSS scores starting from 7.3 to 9.9. … Read more

Apache patches OFBiz bypass vulnerability – Go Well being Professional

Apache patches OFBiz bypass vulnerability – Go Well being Professional

Apache patched a bypass vulnerability in its extensively used Apache OFBiz open-source enterprise useful resource and planning software program that would have led to an unauthenticated distant code execution on the Linux and Home windows platforms. In a Sept. 5 weblog submit, researchers at Rapid7 defined that even an attacker missing legitimate credentials may exploit … Read more