Ivanti Issues Critical Security Updates for CSA and Connect Secure Vulnerabilities

December 10, 2024 at 10:12PM Ivanti has issued security updates for critical vulnerabilities in its Cloud Services Application and Connect Secure products, including flaws allowing privilege escalation and remote code execution. Users are urged to update to the latest versions as active exploitation has been a concern, despite Ivanti not having awareness of current attacks. … Read more

QNAP addresses critical flaws across NAS, router software

November 25, 2024 at 05:18PM QNAP has issued security bulletins addressing multiple vulnerabilities, including three critical ones in Notes Station 3 and QuRouter. Users are urged to update to the latest versions to mitigate risks. Other products also received important fixes. QNAP advises against direct Internet connections for devices to prevent exploitation. ### Meeting Takeaways: … Read more

Microsoft Fixes 90 New Flaws, Including Actively Exploited NTLM and Task Scheduler Bugs

November 13, 2024 at 07:15AM Microsoft’s November 2024 Patch Tuesday addressed 90 security flaws, including two actively exploited vulnerabilities in Windows NTLM and Task Scheduler. Notably, CVE-2024-43451 affects NTLMv2 hash disclosure, while CVE-2024-49039 allows privilege escalation. The update also highlights critical vulnerabilities in Azure CycleCloud and .NET, alongside adopting CSAF for improved vulnerability reporting. **Meeting … Read more

Critical Flaws in Ollama AI Framework Could Enable DoS, Model Theft, and Poisoning

November 4, 2024 at 09:45AM Cybersecurity researchers identified six vulnerabilities in the Ollama AI framework, enabling attacks like denial-of-service, model poisoning, and theft. Two unresolved issues remain unpatched, emphasizing the need for users to restrict internet exposure of certain endpoints. Of 9,831 instances analyzed, one in four is vulnerable. ### Meeting Takeaways – Cybersecurity Vulnerabilities … Read more

Yahoo Discloses NetIQ iManager Flaws Allowing Remote Code Execution

October 31, 2024 at 08:51AM Yahoo researchers discovered multiple vulnerabilities in OpenText’s NetIQ iManager, with some potentially allowing unauthenticated remote code execution (RCE) through chaining. These findings underscore significant security concerns in the software. **Meeting Takeaways:** 1. **Vulnerability Discovery**: Yahoo researchers identified multiple vulnerabilities in OpenText’s NetIQ iManager. 2. **Risk Level**: Some of these vulnerabilities … Read more

Alert: Over 700,000 DrayTek Routers Exposed to Hacking via 14 New Vulnerabilities

October 2, 2024 at 10:15AM A series of critical vulnerabilities in DrayTek routers, including buffer overflow and cross-site scripting flaws, have been discovered, posing a significant security risk. Over 700,000 exposed devices globally are affected, requiring immediate patching. The incident highlights the importance of secure network practices, especially for critical infrastructure organizations. Joint cybersecurity guidance … Read more

Gov’t, Judicial IT Systems Beset by Access Control Bugs

October 1, 2024 at 05:16PM Numerous high- and critical-severity bugs were discovered in government agency software platforms, posing security risks to sensitive personal data such as Social Security numbers and voter registrations. Security researcher Jason Parker exposed vulnerabilities in 19 platforms, including an issue with Georgia’s voter cancellation portal. Outdated systems and inadequate funding contribute … Read more

Progress Software Releases Patches for 6 Flaws in WhatsUp Gold – Patch Now

September 27, 2024 at 12:42PM Progress Software has addressed six security flaws in WhatsUp Gold, including two critical vulnerabilities, through updates in version 24.0.1. The CVE identifiers for the flaws and their respective CVSS scores have been listed. Security researcher Sina Kheirkhah and others have been credited with discovering and reporting the flaws. Users are … Read more

CUPS flaws enable Linux remote code execution, but there’s a catch

September 26, 2024 at 06:09PM Attackers can exploit multiple vulnerabilities in the CUPS open-source printing system (CVE-2024-47076, CVE-2024-47175, CVE-2024-47176, CVE-2024-47177) discovered by Simone Margaritelli to execute remote code. The cups-browsed daemon, when enabled, can be exploited to automatically install a malicious printer, but mitigations such as disabling the service are available. Red Hat has rated … Read more

Recent WhatsUp Gold Vulnerabilities Possibly Exploited in Ransomware Attacks

September 17, 2024 at 06:03AM Two critical vulnerabilities in Progress Software’s WhatsUp Gold were recently exploited in possible ransomware attacks. Trend Micro observed remote code execution attempts following the public disclosure of the flaws and suspects a ransomware group’s involvement due to the use of multiple remote access tools. CISA has added one of the … Read more