CVEs – Page 2 – PossibleThreat Articles

Happy Birthday, CVE!

November 1, 2019 0 Comments cna, common vulnerabilities and exposures, cve numbering authority, CVEs, mitre, mitre corporation, national vulnerabilities database, nist, security threats

Credit to Author: Danny Bradbury| Date: Fri, 01 Nov 2019 12:49:16 +0000

The Common Vulnerabilities and Exposures (CVE) system is 20 years old this week.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/vrPGAuEivhc” height=”1″ width=”1″ alt=””/>

Security Sophos

Adobe fixes 46 critical bugs in patchfest

October 17, 2019 0 Comments acrobat, acrobat reader, Adobe, CVEs, Organisations, Patch Tuesday, Patches, security threats

Credit to Author: Danny Bradbury| Date: Thu, 17 Oct 2019 09:54:55 +0000

Adobe patched a total of 82 vulnerabilities across a range of products on Tuesday, including 46 critical bugs.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/g6fa2l2I0F8″ height=”1″ width=”1″ alt=””/>

Security Sophos

October Patch Tuesday: Microsoft fixes critical remote desktop bug

October 9, 2019 0 Comments Azure, cve-2019-1060, cve-2019-1255, cve-2019-1333, cve-2019-1365, cve-2019-1366, cve-2019-1367, cve-2019-1368, CVEs, edge browser, Internet Explorer, Microsoft, Microsoft Edge, Operating Systems, Organisations, Patch Tuesday, Patches, remote code, remote code execution, security threats, Technologies, vulnerability, Web Browsers, Windows

Credit to Author: Danny Bradbury| Date: Wed, 09 Oct 2019 12:14:46 +0000

Microsoft fixed 59 vulnerabilities in October’s Patch Tuesday, including several critical remote code execution (RCE) flaws.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/jWWY6mMadts” height=”1″ width=”1″ alt=””/>

Security Sophos

WhatsApp vulnerability could compromise Android smartphones

October 4, 2019 0 Comments Android, cve-2019-11932, CVEs, double free memory vulnerability, facebook, malicious gif, Privacy, rce, remote code execution, security threats, vulnerability, whatsapp

Credit to Author: John E Dunn| Date: Fri, 04 Oct 2019 12:10:03 +0000

A researcher has released details of a WhatsApp flaw that could be used to compromise the app and the mobile device the app is running on.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/fPnnKlP45pM” height=”1″ width=”1″ alt=””/>

Security Sophos

Exim suffers another ‘critical’ remote code execution flaw

October 2, 2019 0 Comments critical flaw, cve-2019-16928, CVEs, email server, Exim, rce, remote code execution, security threats, vulnerability

Credit to Author: John E Dunn| Date: Wed, 02 Oct 2019 12:28:02 +0000

This latest Exim flaw could lead to at least a denial of service crash in the software but also the possibility of remote code execution.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/MxuCX_Qs0nA” height=”1″ width=”1″ alt=””/>

Security Sophos

Microsoft rushes out fix for Internet Explorer zero-day

September 25, 2019 0 Comments cve-2019-1255, cve-2019-1367, CVEs, ie, Internet Explorer, Microsoft, Operating Systems, Patch, Patching, security threats, vulnerability, Web Browsers, Windows, Windows 10, windows defender, zero-day vulnerability

Credit to Author: John E Dunn| Date: Wed, 25 Sep 2019 11:48:58 +0000

Microsoft has rushed to patch two flaws affecting IE versions 9 to 11, one of which the company says is being exploited in real attacks.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/JKx5VMBH6xs” height=”1″ width=”1″ alt=””/>

Security Sophos

Jira development and ticketing software hit by critical flaws

September 24, 2019 0 Comments altassian, CVEs, jira data center, jira service desk data center, jira service desk server, security threats, vulnerability

Credit to Author: John E Dunn| Date: Tue, 24 Sep 2019 10:10:40 +0000

Admins have a spot of patching work on their hands after the company released updates addressing two critical flaws.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/VgbcYoVOVyk” height=”1″ width=”1″ alt=””/>

Security Sophos

No surprises in the top 25 most dangerous software errors

September 19, 2019 0 Comments buffer flaws, common vulnerabilities and exposures, common weakness enumeration, cross-site scripting, CVEs, cwe, mitre, security bugs, security threats, vulnerability, XSS

Credit to Author: Danny Bradbury| Date: Thu, 19 Sep 2019 08:58:17 +0000

An in-depth study of reported bugs has produced a list of the top 25 bug categories in software today – with some old familiar names topping the list.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/rJcjSJP7NLU” height=”1″ width=”1″ alt=””/>

Security Sophos

Update now! Microsoft patches its Android RDP app to fix flaw

August 22, 2019 0 Comments Android, Android Remote Desktop Protocol (RDP), BlueKeep, CVEs, Google, Microsoft, RDP, security threats, vulnerability, Windows 10

Credit to Author: John E Dunn| Date: Thu, 22 Aug 2019 10:57:17 +0000

Microsoft has found itself with a large amount of RDP-related patching work during 2019.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/fJThaqiOYmw” height=”1″ width=”1″ alt=””/>

Security Sophos

Multiple HTTP/2 DoS flaws found by Netflix

August 19, 2019 0 Comments CVEs, Denial of Service, DOS, Flaw, http, HTTP/2, Netflix, security threats, vulnerability

Credit to Author: Danny Bradbury| Date: Mon, 19 Aug 2019 11:58:14 +0000

Netflix has identified several denial of service (DoS) flaws in HTTP/2, a popular network protocol that underpins large parts of the web. Exploiting them could bring servers grinding to a halt.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/lnFwWgp85fY” height=”1″ width=”1″ alt=””/>