November 12, 2024 at 08:24AM On November 2024 patch day, SAP released eight security notes, notably addressing a high-severity vulnerability in Web Dispatcher. This update highlights their ongoing efforts to enhance security measures. The information was reported by SecurityWeek. **Meeting Takeaways:** 1. **New Security Notes Released**: SAP has issued a total of eight new security … Read more
June 12, 2024 at 06:18AM Google and Mozilla released Chrome 126 and Firefox 127, respectively, with patches for high-severity memory safety vulnerabilities. Google awarded over $160,000 in bug bounty rewards to external researchers. The highest reward of $100,115 was for CVE-2024-5839, related to a medium-severity inappropriate Memory Allocator implementation. Firefox’s update addresses 15 vulnerabilities, including … Read more
April 15, 2024 at 09:54AM Juniper Networks recently released multiple advisories detailing over one hundred vulnerabilities in Junos OS, Junos OS Evolved, and other products. Critical-severity issues were found in third-party software, including cURL and Junos cRPD. High-severity flaws impacting Junos OS, Junos OS Evolved, and Paragon Active Assurance Control Center were also addressed. Customers … Read more
March 28, 2024 at 12:18PM Splunk announced security patches for its Enterprise product addressing high-severity vulnerabilities, including CVE-2024-29946 impacting the Dashboard Examples Hub and CVE-2024-29945 related to potential exposure of authentication tokens. Patches, mitigations, and workarounds are available. Additionally, vulnerabilities introduced via third-party packages in Splunk Enterprise and Universal Forwarder have been patched. Cisco recently … Read more
November 14, 2023 at 02:41PM Researchers have discovered 21 vulnerabilities in a popular brand of industrial router commonly used in the medical and manufacturing sectors. These vulnerabilities range from design flaws like hardcoded credentials to how the device handles potentially malicious inputs. Attackers who exploit these vulnerabilities can bypass security measures and target critical devices … Read more