Versa Networks Patches Vulnerability Exposing Authentication Tokens

September 23, 2024 at 07:55AM Versa Networks has issued patches for a vulnerability (CVE-2024-45229) in Versa Director, a virtualization and service creation platform. The flaw in the REST API could expose authentication tokens, with potential exploitation leading to network management. Versa advises immediate updates for affected software versions and reassures no known exploitations in production … Read more

New PoC Exploit for Apache OfBiz Vulnerability Poses Risk to ERP Systems

January 11, 2024 at 10:21AM Cybersecurity researchers have developed a proof-of-concept code exploiting a critical flaw in Apache OFBiz, allowing memory-resident payload execution. Despite a fix in version 18.12.11, threat actors attempt to exploit the flaw, aiming at vulnerable instances. The CVE-2023-51467 allows remote code execution, posing a serious threat despite security guardrails. Based on … Read more