Flash Notices (16)

Flash Notice: Critical Citrix Zero-Day Exploited by Attackers

A critical zero-day vulnerability (CVE-2022-27518) was found in Citrix ADC and Gateway. It is an unauthenticated remote code execution vulnerability.

Flash Notice: Critical Fortinet Zero-Day Vulnerability Exploited in the Wild

A critical zero-day vulnerability (CVE-2022-42475) was found in multiple versions of Fortinet’s FortiOS SSL-VPN.

Flash Notice: Google Patches Actively Exploited Zero-Day

A zero-day vulnerability impacting all browser versions of Google Chrome (including Opera & Microsoft Edge) is being actively exploited by threat actors.

Flash Notice: Oracle Vulnerability Actively Exploited

A patched vulnerability (CVE-2021-35587) found in Oracle’s Fusion Middleware Access Manager (OAM) is currently under active exploitation.

Flash Notice: Two High-Severity Vulnerabilities Found in F5 BIG-IP and BIG-IQ Products

This week, Rapid7 researchers discovered two high-severity vulnerabilities in F5 BIG-IP and BIG-IQ products running customized distribution of CentOS.

Flash Notice: Citrix and VMware Disclose Critical Vulnerabilities, Could Impact Remote Workspaces

This week Citrix issued patches for 3 vulnerabilities impacting their Gateway & ADC products. VMware also warned customers about 3 critical vulnerabilities

Flash Notice: OpenSSL Project - Two High Severity Vulnerabilities

Two critical vulnerabilities that were found in OpenSSL Project’s open-source cryptographic library have now been downgraded to high-severity.

Flash Notice: Cisco VPN Vulnerabilities Exploited in the Wild

This week, Cisco announced that there are two vulnerabilities affecting their AnyConnect product. They are being tracked as CVE-2020-3433 & CVE-2020-3153.

Flash Notice: Windows Zero-Day Exploited - JavaScript Files Bypass Security Warnings

A Windows zero-day vulnerability is allowing threat actors to use malicious stand-alone JavaScript files to bypass Mark-of-the-web security warnings.

Flash Notice: Critical Fortinet Vulnerability Impacting Fortigate Firewalls and FortiProxy Web Proxies

A critical Fortinet authentication bypass vulnerability tracked as CVE-2022-40684 exists in FortiGate firewalls and FortiProxy web proxies.

Prev 14 15 16 17 18 Next