#ExploitDisclosure

Patch Now: Another Google Zero-Day Under Exploit in the Wild

by

May 16, 2024 at 08:57AM A new zero-day vulnerability has been disclosed for Google Chrome, marking the third such bug revealed within a week. Google has released an emergency fix for the high-severity flaw (CVE-2024-4947) affecting Mac, Windows, and Linux. This type-confusion weakness in the Chrome V8 JavaScript engine can lead to browser crashes and … Read more

Jenkins jitters as 45,000 servers still vulnerable to RCE attacks after patch released

by

January 30, 2024 at 12:55PM Summary: Tens of thousands of public-facing Jenkins servers are vulnerable to the critical vulnerability CVE-2024-23897, with the majority of exposures in the US, China, India, Germany, Republic of Korea, France, and the UK. Admins are urged to patch against the risk of remote code execution, as exploits are publicly available. … Read more