#securityflaws

Microsoft Fixes 90 New Flaws, Including Actively Exploited NTLM and Task Scheduler Bugs

November 13, 2024 by Xynik

November 13, 2024 at 07:15AM Microsoft’s November 2024 Patch Tuesday addressed 90 security flaws, including two actively exploited vulnerabilities in Windows NTLM and Task Scheduler. Notably, CVE-2024-43451 affects NTLMv2 hash disclosure, while CVE-2024-49039 allows privilege escalation. The update also highlights critical vulnerabilities in Azure CycleCloud and .NET, alongside adopting CSAF for improved vulnerability reporting. **Meeting … Read more

Critical Flaws in Ollama AI Framework Could Enable DoS, Model Theft, and Poisoning

November 4, 2024 by Xynik

November 4, 2024 at 09:45AM Cybersecurity researchers identified six vulnerabilities in the Ollama AI framework, enabling attacks like denial-of-service, model poisoning, and theft. Two unresolved issues remain unpatched, emphasizing the need for users to restrict internet exposure of certain endpoints. Of 9,831 instances analyzed, one in four is vulnerable. ### Meeting Takeaways – Cybersecurity Vulnerabilities … Read more

Yahoo Discloses NetIQ iManager Flaws Allowing Remote Code Execution

October 31, 2024 by Xynik

October 31, 2024 at 08:51AM Yahoo researchers discovered multiple vulnerabilities in OpenText’s NetIQ iManager, with some potentially allowing unauthenticated remote code execution (RCE) through chaining. These findings underscore significant security concerns in the software. **Meeting Takeaways:** 1. **Vulnerability Discovery**: Yahoo researchers identified multiple vulnerabilities in OpenText’s NetIQ iManager. 2. **Risk Level**: Some of these vulnerabilities … Read more

Alert: Over 700,000 DrayTek Routers Exposed to Hacking via 14 New Vulnerabilities

October 2, 2024 by Xynik

October 2, 2024 at 10:15AM A series of critical vulnerabilities in DrayTek routers, including buffer overflow and cross-site scripting flaws, have been discovered, posing a significant security risk. Over 700,000 exposed devices globally are affected, requiring immediate patching. The incident highlights the importance of secure network practices, especially for critical infrastructure organizations. Joint cybersecurity guidance … Read more

Gov’t, Judicial IT Systems Beset by Access Control Bugs

October 1, 2024 by Xynik

October 1, 2024 at 05:16PM Numerous high- and critical-severity bugs were discovered in government agency software platforms, posing security risks to sensitive personal data such as Social Security numbers and voter registrations. Security researcher Jason Parker exposed vulnerabilities in 19 platforms, including an issue with Georgia’s voter cancellation portal. Outdated systems and inadequate funding contribute … Read more

Progress Software Releases Patches for 6 Flaws in WhatsUp Gold – Patch Now

September 27, 2024 by Xynik

September 27, 2024 at 12:42PM Progress Software has addressed six security flaws in WhatsUp Gold, including two critical vulnerabilities, through updates in version 24.0.1. The CVE identifiers for the flaws and their respective CVSS scores have been listed. Security researcher Sina Kheirkhah and others have been credited with discovering and reporting the flaws. Users are … Read more

CUPS flaws enable Linux remote code execution, but there’s a catch

September 26, 2024 by Xynik

September 26, 2024 at 06:09PM Attackers can exploit multiple vulnerabilities in the CUPS open-source printing system (CVE-2024-47076, CVE-2024-47175, CVE-2024-47176, CVE-2024-47177) discovered by Simone Margaritelli to execute remote code. The cups-browsed daemon, when enabled, can be exploited to automatically install a malicious printer, but mitigations such as disabling the service are available. Red Hat has rated … Read more

Recent WhatsUp Gold Vulnerabilities Possibly Exploited in Ransomware Attacks

September 17, 2024 by Xynik

September 17, 2024 at 06:03AM Two critical vulnerabilities in Progress Software’s WhatsUp Gold were recently exploited in possible ransomware attacks. Trend Micro observed remote code execution attempts following the public disclosure of the flaws and suspects a ransomware group’s involvement due to the use of multiple remote access tools. CISA has added one of the … Read more

SolarWinds Issues Patch for Critical ARM Vulnerability Enabling RCE Attacks

September 17, 2024 by Xynik

September 17, 2024 at 01:15AM SolarWinds released fixes for two security flaws in its Access Rights Manager (ARM) software. The critical vulnerability (CVE-2024-28991) with a 9.0 CVSS score allows remote code execution. A medium-severity flaw (CVE-2024-28990) was also addressed. Security researcher Piotr Bazydlo discovered the flaws, and updates to ARM version 2024.3.1 are recommended to … Read more

Progress WhatsUp Gold Exploited Just Hours After PoC Release for Critical Flaw

September 13, 2024 by Xynik

September 13, 2024 at 08:15AM Malicious actors are leveraging publicly available proof-of-concept exploits for security flaws in Progress Software WhatsUp Gold, leading to opportunistic attacks shortly after the release. The attacks involved bypassing authentication and exploiting PowerShell scripts to download remote access tools, indicating potential involvement of ransomware actors. This is the second active weaponization … Read more