Vulnerability

Apple Imaginative and prescient Professional Vulnerability Uncovered Digital Keyboard Inputs to Attackers – Go Well being Professional

by
Apple Imaginative and prescient Professional Vulnerability Uncovered Digital Keyboard Inputs to Attackers – Go Well being Professional

Sep 13, 2024Ravie LakshmananDigital Actuality / Vulnerability Particulars have emerged a few now-patched safety flaw impacting Apple’s Imaginative and prescient Professional blended actuality headset that, if efficiently exploited, may permit malicious attackers to deduce knowledge entered on the machine’s digital keyboard. The assault, dubbed GAZEploit, has been assigned the CVE identifier CVE-2024-40865. “A novel assault … Read more

Ivanti Warns of Energetic Exploitation of Newly Patched Cloud Equipment Vulnerability – Go Well being Professional

by
Ivanti Warns of Energetic Exploitation of Newly Patched Cloud Equipment Vulnerability – Go Well being Professional

Sep 14, 2024Ravie LakshmananEnterprise Safety / Risk Intelligence Ivanti has revealed {that a} newly patched safety flaw in its Cloud Service Equipment (CSA) has come underneath lively exploitation within the wild. The high-severity vulnerability in query is CVE-2024-8190 (CVSS rating: 7.2), which permits distant code execution underneath sure circumstances. “An OS command injection vulnerability in … Read more

Apache patches OFBiz bypass vulnerability – Go Well being Professional

by
Apache patches OFBiz bypass vulnerability – Go Well being Professional

Apache patched a bypass vulnerability in its extensively used Apache OFBiz open-source enterprise useful resource and planning software program that would have led to an unauthenticated distant code execution on the Linux and Home windows platforms. In a Sept. 5 weblog submit, researchers at Rapid7 defined that even an attacker missing legitimate credentials may exploit … Read more

Hacktivists Exploits WinRAR Vulnerability in Assaults In opposition to Russia and Belarus – Go Well being Professional

by
Hacktivists Exploits WinRAR Vulnerability in Assaults In opposition to Russia and Belarus – Go Well being Professional

Sep 03, 2024Ravie LakshmananRansomware / Malware A hacktivist group generally known as Head Mare has been linked to cyber assaults that solely goal organizations positioned in Russia and Belarus. “Head Mare makes use of extra up-to-date strategies for acquiring preliminary entry,” Kaspersky stated in a Monday evaluation of the group’s techniques and instruments. “As an … Read more

SonicWall Points Crucial Patch for Firewall Vulnerability Permitting Unauthorized Entry – Go Well being Professional

by
SonicWall Points Crucial Patch for Firewall Vulnerability Permitting Unauthorized Entry – Go Well being Professional

Aug 26, 2024Ravie LakshmananVulnerability / Enterprise Safety SonicWall has launched safety updates to handle a crucial flaw impacting its firewalls that, if efficiently exploited, might grant malicious actors unauthorized entry to the units. The vulnerability, tracked as CVE-2024-40766 (CVSS rating: 9.3), has been described as an improper entry management bug. “An improper entry management vulnerability … Read more