Exploits and vulnerabilities – Page 12

Zyxel patches two critical vulnerabilities

May 26, 2023 0 Comments Exploits and vulnerabilities, news

Categories: Exploits and vulnerabilities

Categories: News

Zyxel has released a security advisory about two critical vulnerabilities that could allow an unauthorized, remote attacker to take control of its firewall devices.

(Read more…)

The post Zyxel patches two critical vulnerabilities appeared first on Malwarebytes Labs.

MalwareBytes Security

Update now! Apple issues patches for three actively used zero-days

May 23, 2023 0 Comments Apple, cve-2023-28204, cve-2023-32373, cve-2023-32409, Exploits and vulnerabilities, news, out-of-bounds, rsr, use-after-free

Categories: Exploits and vulnerabilities

Categories: News

Tags: Apple

Tags: RSR

Tags: CVE-2023-32409

Tags: CVE-2023-28204

Tags: CVE-2023-32373

Tags: out of bounds

Tags: use after free

Apple issued information about patches against three actively exploited zero-days in WebKit. One vulnerability is new, two were patched earlier this month.

MalwareBytes Security

KeePass vulnerability allows attackers to access the master password

May 18, 2023 0 Comments cve-2023-32784, Exploits and vulnerabilities, keepass, memory dump, news, personal

Categories: Exploits and vulnerabilities

Categories: News

Categories: Personal

Tags: KeePass

Tags: memory dump

Tags: CVE-2023-32784

There is a Proof-of-Concept available for an unpatched vulnerability in KeePass that allows attackers to dump the master password.

MalwareBytes Security

Update now! Ruckus vulnerability added to CISA’s list of actively exploited bugs

May 15, 2023 0 Comments 163.123.142.146, andoryubot, cisa, cve-2023-25717, Exploits and vulnerabilities, news, ruckus

Categories: Exploits and vulnerabilities

Categories: News

Tags: Ruckus

Tags: CISA

Tags: AndoryuBot

Tags: CVE-2023-25717

Tags: 163.123.142.146

CISA has added a Ruckus vulnerability being abused by the AndoryuBot botnet to its catalog.

MalwareBytes Security

Update now! May 2023 Patch Tuesday tackles three zero-days

May 11, 2023 0 Comments Android, Apple, bootkit, Cisco, cve-2023-24932, cve-2023-24941, cve-2023-29325, cve-2023-29336, Exploits and vulnerabilities, Google, Microsoft, Mozilla, news, outlook, preview, sap, vmware

Categories: Exploits and vulnerabilities

Categories: News

Tags: Microsoft

Tags: CVE-2023-29336

Tags: CVE-2023-24932

Tags: bootkit

Tags: CVE-2023-29325

Tags: Outlook

Tags: preview

Tags: CVE-2023-24941

Tags: Apple

Tags: Cisco

Tags: Google

Tags: Android

Tags: VMWare

Tags: SAP

Tags: Mozilla

Microsoft’s Patch Tuesday round up for May 2023 includes patches for three zero-day vulnerabilities and one critical remote code execution vulnerability

MalwareBytes Security

Oracle WebLogic Server vulnerability added to CISA list as “known to be exploited”

May 3, 2023 0 Comments cisa, cve-2021-45046, cve-2023-1389, cve-2023-21839, Exploits and vulnerabilities, news, oracle, reverse shell, weblogic

Categories: Exploits and vulnerabilities

Categories: News

Tags: Oracle

Tags: WebLogic

Tags: CVE-2023-21839

Tags: CVE-2023-1389

Tags: CVE-2021-45046

Tags: CISA

Tags: reverse shell

An easy to exploit vulnerability in Oracle WebLogic Server has been added to the CISA list of things you really, really need to patch.

MalwareBytes Security

APC warns about critical vulnerabilities in online UPS monitoring software

April 26, 2023 0 Comments apc, cve-2023-29411, cve-2023-29412, cve-2023-29413, Exploits and vulnerabilities, news, schneider electric, ups

Categories: Exploits and vulnerabilities

Categories: News

Tags: APC

Tags: UPS

Tags: Schneider Electric

Tags: CVE-2023-29411

Tags: CVE-2023-29412

Tags: CVE-2023-29413

In a security notification, APC has warned home and corporate users about critical vulnerabilities in the software used to monitor and control their UPS systems online.