October 9, 2024 at 03:06PM Ivanti has alerted customers to three new vulnerabilities in its Cloud Services Appliance (CVA) that are currently being exploited, alongside a previously disclosed zero-day vulnerability. The company advises users to review administrative access and EDR alerts, and recommends migrating to CSA version 5.0 if compromised. ### Meeting Takeaways: 1. **New … Read more
October 8, 2024 at 05:35PM Qualcomm has released 20 patches for chipsets’ firmware, addressing critical vulnerabilities, including exploited flaws in DSP software. Notably, CVE-2024-43047 carries a CVSS severity rating of 7.8, exploited by nation-state attackers or surveillanceware vendors. The update is urged for affected devices, with specific impacts on Snapdragon models and FastConnect Wi-Fi/Bluetooth kit. … Read more
October 2, 2024 at 10:20AM DrayTek issued security updates for multiple router models, addressing 14 vulnerabilities, including a critical remote code execution flaw. Around 785,000 routers could be affected, with over 704,500 having their web interface exposed. Five critical flaws were highlighted, warranting immediate attention. No active exploitation has been reported, and users are encouraged … Read more
September 20, 2024 at 11:37AM The US Cybersecurity and Infrastructure Security Agency (CISA) has added the latest Ivanti weakness, a path traversal flaw, to its Known Exploited Vulnerability catalog. This came after a string of high-profile path traversal bugs affecting IT vendors. Ivanti has released a fix for the critical severity bug affecting its Cloud … Read more
September 4, 2024 at 08:36AM Zyxel has released patches addressing critical vulnerabilities in their networking devices. The patches cover multiple access point and security router models, as well as firewall series devices. The vulnerabilities could allow remote attackers to execute arbitrary commands or cause a denial-of-service condition. Zyxel advises affected product owners to obtain the … Read more
September 4, 2024 at 08:31AM Zyxel has released software updates to address a critical security flaw (CVE-2024-7261) affecting some access points and security routers, along with updates for seven other vulnerabilities. The flaws could result in unauthorized command execution, denial-of-service, or access to browser-based information. D-Link has announced that certain security vulnerabilities will not be … Read more
August 8, 2024 at 06:45AM Microsoft is developing security updates to tackle two vulnerabilities affecting Windows update architecture. The flaws can be exploited for downgrade attacks, allowing manipulation of system files and elevating privileges. Discovered by SafeBreach Labs researcher Alon Leviev, the vulnerabilities were presented at Black Hat USA 2024 and DEF CON 32, highlighting … Read more
August 7, 2024 at 04:31PM SafeBreach security researcher Alon Leviev disclosed at Black Hat 2024 two unpatched zero-days that can be exploited in downgrade attacks on up-to-date Windows 10, 11, and Windows Server systems. Microsoft issued advisories for CVE-2024-38202 and CVE-2024-21302, providing mitigation guidance. The vulnerabilities allow for system compromise, making fully patched systems susceptible … Read more
July 25, 2024 at 03:40AM The Internet Systems Consortium (ISC) has released patches for multiple security vulnerabilities in BIND 9 DNS software, which could be exploited for denial-of-service attacks. The list of four vulnerabilities includes logic errors, excessive CPU load, crafting large numbers of resource record types, and malicious DNS client queries. The flaws have … Read more
July 19, 2024 at 07:01AM SolarWinds released security updates for Access Rights Manager, resolving 13 vulnerabilities, including eight critical-severity bugs. Six critical flaws could be exploited for remote code execution, while the remaining two could allow attackers to read and delete arbitrary files. Five high-severity issues were also addressed, impacting domain admin access and arbitrary … Read more