Exploits and vulnerabilities – Page 10

MOVEit Transfer fixes three new vulnerabilities

July 10, 2023 0 Comments cve-2023-36932, cve-2023-36933, cve-2023-36934, Exploits and vulnerabilities, moveit, news, progress, Ransomware, Vulnerabilities

Categories: Exploits and vulnerabilities

Categories: News

Categories: Ransomware

Tags: Progress

Tags: MOVEit

Tags: vulnerabilities

Tags: CVE-2023-36934

Tags: CVE-2023-36932

Tags: CVE-2023-36933

CISA has warned users about three new vulnerabilities in Progress Software’s MOVEit Transfer software.

(Read more…)

The post MOVEit Transfer fixes three new vulnerabilities appeared first on Malwarebytes Labs.

MalwareBytes Security

Warning issued over vulnerability in cardiac device monitoring software

July 7, 2023 0 Comments cve-2023-31222, deserialization, Exploits and vulnerabilities, medtronic, messaging, news, paceart optima, update

Categories: Exploits and vulnerabilities

Categories: News

Tags: Medtronic

Tags: Paceart Optima

Tags: CVE-2023-31222

Tags: deserialization

Tags: update

Tags: messaging

A vulnerability in Medtronic’s Paceart Optima software could lead to further network penetration, RCE, and DoS attacks

MalwareBytes Security

Warning issued over vulnerability in cardiac devices

July 6, 2023 0 Comments cve-2023-31222, deserialization, Exploits and vulnerabilities, medtronic, messaging, news, paceart optima, update

Categories: Exploits and vulnerabilities

Categories: News

Tags: Medtronic

Tags: Paceart Optima

Tags: CVE-2023-31222

Tags: deserialization

Tags: update

Tags: messaging

A vulnerability in Medtronic’s Paceart Optima cardiac device could lead to further network penetration, RCE, and DoS attacks

MalwareBytes Security

Update Android now! Google patches three actively exploited zero-days

July 6, 2023 0 Comments 2023-07-05, Android, arm, cve-2023-21250, cve-2023-2136, cve-2023-26083, cve2021-29256, Exploits and vulnerabilities, Google, news, skia

Categories: Exploits and vulnerabilities

Categories: News

Tags: Google

Tags: Android

Tags: 2023-07-05

Tags: CVE2021-29256

Tags: CVE-2023-26083

Tags: CVE-2023-2136

Tags: CVE-2023-21250

Tags: ARM

Tags: Skia

Google has patched 43 vulnerabilities in Android, three of which are actively exploited zero-day vulnerabilities.

MalwareBytes Security

Microsoft Azure AD flaw can lead to account takeover

June 23, 2023 0 Comments Azure, Exploits and vulnerabilities, idp, login with, Microsoft, news, noauth, oauth

Categories: Exploits and vulnerabilities

Categories: News

Tags: OAuth

Tags: nOAuth

Tags: IdP

Tags: Azure

Tags: Microsoft

Tags: login with

Researchers have found a flaw in Microsoft Azure AD which they claim can be used to take over accounts that rely on pre-established trust.

MalwareBytes Security

Update now! Apple fixes three actively exploited vulnerabilities

June 22, 2023 0 Comments Apple, cve-2023-32434, cve-2023-32435, cve-2023-32439, Exploits and vulnerabilities, integer overflow, kernel webkit, news, operation triangulation, type confusion

Categories: Apple

Categories: Exploits and vulnerabilities

Categories: News

Tags: Apple

Tags: kernel webkit

Tags: CVE-2023-32434

Tags: CVE-2023-32435

Tags: CVE-2023-32439

Tags: type confusion

Tags: integer overflow

Tags: operation triangulation

Apple has released security updates for several products to address a set of flaws it said were being actively exploited.

MalwareBytes Security

Update now! ASUS fixes nine security flaws

June 20, 2023 0 Comments asus, cve-2018-1160, cve-2022-26376, disable wan, Exploits and vulnerabilities, models, netatalk, news, router

Categories: Exploits and vulnerabilities

Categories: News

Tags: ASUS

Tags: router

Tags: models

Tags: CVE-2022-26376

Tags: CVE-2018-1160

Tags: Netatalk

Tags: disable WAN

ASUS has released firmware updates for several router models fixing two critical and several other security issues.

(Read more…)

The post Update now! ASUS fixes nine security flaws appeared first on Malwarebytes Labs.

MalwareBytes Security

MOVEit discloses THIRD critical vulnerability

June 16, 2023 0 Comments cl0p, cve-2023-34362, cve-2023-35036, Exploits and vulnerabilities, moveit, news, progress, Ransomware

Categories: Exploits and vulnerabilities

Categories: News

Categories: Ransomware

Tags: Progress

Tags: Moveit

Tags: CVE-2023-34362

Tags: CVE-2023-35036

Tags: Cl0p

Progress has released an advisory about yet another MOVEit Transfer vulnerability while new victims of the first one keep emerging.

(Read more…)

The post MOVEit discloses THIRD critical vulnerability appeared first on Malwarebytes Labs.

MalwareBytes Security

Microsoft fixes six critical vulnerabilities in June Patch Tuesday

June 14, 2023 0 Comments cve-2023-24897, cve-2023-29357, cve-2023-29363, cve-2023-32013, cve-2023-32014, cve-2023-32015, cve-2023-32031, exchange, Exploits and vulnerabilities, Hyper-V, Microsoft, news, Patch Tuesday, pgm, sharepoint

Categories: Exploits and vulnerabilities

Categories: News

Tags: Microsoft

Tags: patch Tuesday

Tags: CVE-2023-29357

Tags: CVE-2023-29363

Tags: CVE-2023-32014

Tags: CVE-2023-32015

Tags: CVE-2023-32013

Tags: CVE-2023-24897

Tags: CVE-2023-32031

Tags: SharePoint

Tags: PGM

Tags: Exchange

Tags: Hyper-V

Patch Tuesday of June 2023 is relatively relaxed. No actively exploited zero-days and only six critical vulnerabilities.

MalwareBytes Security

Update Chrome now! Google fixes critical vulnerability in Autofill payments

June 14, 2023 0 Comments autofill, chrome, cve-2023-3214, Exploits and vulnerabilities, Google, news, payments critical

Categories: Exploits and vulnerabilities

Categories: News

Tags: Google

Tags: Chrome

Tags: Autofill

Tags: payments critical

Tags: CVE-2023-3214

Google has released an update which includes five security fixes including a critical vulnerability in Autofill payments.