August 8, 2024 at 03:46PM The U.S. Cybersecurity & Infrastructure Security Agency has warned of two vulnerabilities affecting Apache OFBiz, an open-source ERP system used across various industries. The flaws, CVE-2024-32113 and CVE-2024-36971, could lead to remote code execution and were added to CISA’s Known Exploited Vulnerability Catalog. Security updates or product discontinuation are required … Read more
August 6, 2024 at 02:32PM Google released 46 fixes for Android in its August security patch batch, addressing a high-severity Linux kernel flaw (CVE-2024-36971) with potential for remote code execution. The bug may already be exploited by spyware, highlighting the urgency of updating Android devices. Other high-severity vulnerabilities include a Qualcomm component flaw and 11 … Read more
August 6, 2024 at 02:24AM Google has addressed a high-severity security flaw in the Android kernel, identified as CVE-2024-36971, acknowledging its active exploitation. The patch also includes fixes for 47 flaws, with indications that the vulnerability may be exploited in targeted attacks. The company is collaborating with OEM partners to apply fixes where applicable. The … Read more