Vulnerabilities

80 материалов

• TrueConf Zero-Day Exploited in Asian Government Attacks

  Vulnerabilities

  A Chinese threat actor exploited the video conferencing platform to perform reconnaissance, escalate privileges, and execute additional payloads. The post TrueConf Zero-Day Exploited in Asian Government Attacks appeared first on SecurityWeek.

• Critical ShareFile Flaws Lead to Unauthenticated RCE

  Vulnerabilities

  The vulnerabilities can be chained together to bypass authentication and upload arbitrary files to the server. The post Critical ShareFile Flaws Lead to Unauthenticated RCE appeared first on SecurityWeek.

• Critical Vulnerability in Claude Code Emerges Days After Source Leak

  Artificial Intelligence · Vulnerabilities

  Within days of each other, Anthropic first leaked the source code to Claude Code, and then a critical vulnerability was found by Adversa AI. The post Critical Vulnerability in Claude Code Emerges Days After Source Leak appeared first on SecurityWeek.

• Apple Rolls Out DarkSword Exploit Protection to More Devices

  Mobile & Wireless · Vulnerabilities

  The DarkSword exploit kit has been used by both state-sponsored hackers and commercial spyware vendors. The post Apple Rolls Out DarkSword Exploit Protection to More Devices appeared first on SecurityWeek.

• Cisco Patches Critical and High-Severity Vulnerabilities

  Vulnerabilities

  The bugs could lead to authentication bypass, remote code execution, information disclosure, and privilege escalation. The post Cisco Patches Critical and High-Severity Vulnerabilities appeared first on SecurityWeek.

• Exploited Zero-Day Among 21 Vulnerabilities Patched in Chrome

  Vulnerabilities

  Google has announced fixes for CVE-2026-5281, a zero-day affecting Chrome’s Dawn component. The post Exploited Zero-Day Among 21 Vulnerabilities Patched in Chrome appeared first on SecurityWeek.

• Exploitation of Critical Fortinet FortiClient EMS Flaw Begins

  Vulnerabilities

  The SQL injection vulnerability allows unauthenticated attackers to execute arbitrary code remotely, via crafted HTTP requests. The post Exploitation of Critical Fortinet FortiClient EMS Flaw Begins appeared first on SecurityWeek.

• StrongSwan Flaw Allows Unauthenticated Attackers to Crash VPNs

  Vulnerabilities

  Remotely exploitable, the integer underflow vulnerability impacts StrongSwan releases spanning 15 years. The post StrongSwan Flaw Allows Unauthenticated Attackers to Crash VPNs appeared first on SecurityWeek.

• Critical Vulnerability in OpenAI Codex Allowed GitHub Token Compromise

  Artificial Intelligence · Vulnerabilities

  Researchers found an OpenAI Codex vulnerability that could have been exploited to compromise GitHub tokens. The post Critical Vulnerability in OpenAI Codex Allowed GitHub Token Compromise appeared first on SecurityWeek.

• Exploitation of Fresh Citrix NetScaler Vulnerability Begins

  Vulnerabilities

  The critical-severity flaw leaks application memory and can be exploited to obtain authenticated administrative session IDs. The post Exploitation of Fresh Citrix NetScaler Vulnerability Begins appeared first on SecurityWeek.

• F5 BIG-IP DoS Flaw Upgraded to Critical RCE, Now Exploited in the Wild

  Vulnerabilities

  Initially disclosed as a high-severity denial-of-service (DoS), the bug was reclassified as a critical RCE issue. The post F5 BIG-IP DoS Flaw Upgraded to Critical RCE, Now Exploited in the Wild appeared first on SecurityWeek.

• OpenAI Launches Bug Bounty Program for Abuse and Safety Risks

  Artificial Intelligence · Vulnerabilities

  Through the new program, OpenAI will reward reports covering design or implementation issues leading to material harm. The post OpenAI Launches Bug Bounty Program for Abuse and Safety Risks appeared first on SecurityWeek.

• TP-Link Patches High-Severity Router Vulnerabilities

  Vulnerabilities

  The security defects could be used to bypass authentication, execute arbitrary commands, and decrypt configuration files. The post TP-Link Patches High-Severity Router Vulnerabilities appeared first on SecurityWeek.

• BIND Updates Patch High-Severity Vulnerabilities

  Vulnerabilities

  Specially crafted domains could be used to cause out-of-memory conditions, leading to memory leaks in the BIND resolvers. The post BIND Updates Patch High-Severity Vulnerabilities appeared first on SecurityWeek.

• Cisco Patches Multiple Vulnerabilities in IOS Software

  Vulnerabilities

  The high- and medium-severity flaws could lead to denial-of-service, secure boot bypass, information disclosure, and privilege escalation. The post Cisco Patches Multiple Vulnerabilities in IOS Software appeared first on SecurityWeek.

• iOS, macOS 26.4 Roll Out With Fresh Security Patches

  Endpoint Security · Vulnerabilities

  Apple released security fixes for older devices as well, in iOS 18.7.7, iPadOS 18.7.7, macOS Sequoia 15.7.5, and macOS Sonoma 14.8.5. The post iOS, macOS 26.4 Roll Out With Fresh Security Patches appeared first on SecurityWeek.

• Chrome 146 Update Patches High-Severity Vulnerabilities

  Vulnerabilities

  The software refresh fixes eight memory safety bugs affecting seven Chrome components. The post Chrome 146 Update Patches High-Severity Vulnerabilities appeared first on SecurityWeek.

• Critical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms Warn

  Vulnerabilities

  An out-of-bounds read vulnerability can be exploited remotely without authentication to read sensitive information from memory. The post Critical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms Warn appeared first on SecurityWeek.

• QNAP Patches Four Vulnerabilities Exploited at Pwn2Own

  Vulnerabilities

  The flaws could allow attackers to access sensitive information, execute code, or cause unexpected behavior. The post QNAP Patches Four Vulnerabilities Exploited at Pwn2Own appeared first on SecurityWeek.

• Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability

  Vulnerabilities

  CVE-2026-21992 can be used without authentication for remote code execution and it may have been exploited in the wild. The post Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability appeared first on SecurityWeek.

• Critical Quest KACE Vulnerability Potentially Exploited in Attacks

  Vulnerabilities

  The vulnerability is tracked as CVE-2025-32975 and it may have been exploited in attacks against the education sector. The post Critical Quest KACE Vulnerability Potentially Exploited in Attacks appeared first on SecurityWeek.

• Critical Langflow Vulnerability Exploited Hours After Public Disclosure

  Artificial Intelligence · Vulnerabilities

  Because attacker-supplied flow data is used in public flows, the bug leads to unauthenticated remote code execution. The post Critical Langflow Vulnerability Exploited Hours After Public Disclosure appeared first on SecurityWeek.

• Critical ScreenConnect Vulnerability Exposes Machine Keys

  Vulnerabilities

  Latest ScreenConnect version adds encrypted storage and management to prevent unauthorized access to machine keys. The post Critical ScreenConnect Vulnerability Exposes Machine Keys appeared first on SecurityWeek.

• Russian APT Exploits Zimbra Vulnerability Against Ukraine

  Vulnerabilities · Malware & Threats

  Insufficient sanitization of CSS content within HTML emails leads to inline script execution when the message is opened in a browser. The post Russian APT Exploits Zimbra Vulnerability Against Ukraine appeared first on SecurityWeek.

• CISA Warns of Attacks Exploiting Recent SharePoint Vulnerability

  Vulnerabilities

  The SharePoint remote code execution vulnerability CVE-2026-20963, which Microsoft patched in January, has been exploited in the wild. The post CISA Warns of Attacks Exploiting Recent SharePoint Vulnerability appeared first on SecurityWeek.

• Cisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware Attacks

  Ransomware · Vulnerabilities

  Amazon found evidence that the FMC software vulnerability has been exploited since late January, and found links to Russia. The post Cisco Firewall Vulnerability Exploited as Zero-Day in Interlock Ransomware Attacks appeared first on SecurityWeek.

• ‘DarkSword’ iOS Exploit Kit Used by State-Sponsored Hackers, Spyware Vendors

  Mobile & Wireless · Vulnerabilities

  Targeting six iOS vulnerabilities and leading to full device compromise, the exploit chain is meant for surveillance. The post ‘DarkSword’ iOS Exploit Kit Used by State-Sponsored Hackers, Spyware Vendors appeared first on SecurityWeek.

• Researcher Discovers 4th WhatsApp View Once Bypass; Meta Won’t Patch

  Vulnerabilities

  Meta does not plan on fixing the vulnerability because it involves the use of a modified client application. The post Researcher Discovers 4th WhatsApp View Once Bypass; Meta Won’t Patch appeared first on SecurityWeek.

• CISA Flags Year-Old Wing FTP Vulnerability as Exploited

  Vulnerabilities

  Tracked as CVE-2025-47813, the flaw leads to the disclosure of the full local installation path of the application. The post CISA Flags Year-Old Wing FTP Vulnerability as Exploited appeared first on SecurityWeek.

• Critical HPE AOS-CX Vulnerability Allows Admin Password Resets

  Vulnerabilities

  The vulnerability can be exploited remotely, without authentication, to circumvent existing authentication controls. The post Critical HPE AOS-CX Vulnerability Allows Admin Password Resets appeared first on SecurityWeek.

• Google Paid Out $17 Million in Bug Bounty Rewards in 2025

  Vulnerabilities

  Google paid over $3.7 million for Chrome vulnerabilities, and more than $3.5 million for cloud security defects. The post Google Paid Out $17 Million in Bug Bounty Rewards in 2025 appeared first on SecurityWeek.

• Chrome 146 Update Patches Two Exploited Zero-Days

  Vulnerabilities

  The flaws can be exploited to manipulate data and bypass security restrictions, potentially leading to code execution. The post Chrome 146 Update Patches Two Exploited Zero-Days appeared first on SecurityWeek.

• Ally WordPress Plugin Flaw Exposes Over 200,000 Websites to Attacks

  Vulnerabilities

  The issue allows attackers to inject SQL queries and extract sensitive information from the database. The post Ally WordPress Plugin Flaw Exposes Over 200,000 Websites to Attacks appeared first on SecurityWeek.

• Splunk, Zoom Patch Severe Vulnerabilities

  Vulnerabilities

  Critical- and high-severity flaws could be exploited to execute arbitrary shell commands or elevate privileges. The post Splunk, Zoom Patch Severe Vulnerabilities appeared first on SecurityWeek.

• Cisco Patches High-Severity IOS XR Vulnerabilities

  Vulnerabilities

  The security defects could lead to denial-of-service (DoS) conditions, command execution, or device takeover. The post Cisco Patches High-Severity IOS XR Vulnerabilities appeared first on SecurityWeek.

• Critical N8n Vulnerabilities Allowed Server Takeover

  Vulnerabilities

  The bugs allowed unauthenticated attackers to execute arbitrary code, steal credentials, and take over servers. The post Critical N8n Vulnerabilities Allowed Server Takeover appeared first on SecurityWeek.

• Fortinet, Ivanti, Intel Patch High-Severity Vulnerabilities

  Vulnerabilities

  The bugs could lead to arbitrary code execution, privilege escalation, or authentication rate-limit bypass. The post Fortinet, Ivanti, Intel Patch High-Severity Vulnerabilities appeared first on SecurityWeek.

• Microsoft Patches 83 Vulnerabilities

  Vulnerabilities

  Microsoft has fixed a critical vulnerability, but none of the flaws fixed this Patch Tuesday has been exploited in the wild. The post Microsoft Patches 83 Vulnerabilities appeared first on SecurityWeek.

• Adobe Patches 80 Vulnerabilities Across Eight Products

  Vulnerabilities

  Adobe has rolled out patches for 80 vulnerabilities across 8 products, including Commerce, Illustrator, Acrobat Reader, and Premiere Pro. The post Adobe Patches 80 Vulnerabilities Across Eight Products appeared first on SecurityWeek.

• SAP Patches Critical FS-QUO, NetWeaver Vulnerabilities

  Vulnerabilities

  A code injection bug in FS-QUO and an insecure deserialization flaw in NetWeaver could lead to arbitrary code execution. The post SAP Patches Critical FS-QUO, NetWeaver Vulnerabilities appeared first on SecurityWeek.

• Recent Ivanti Endpoint Manager Flaw Exploited in Attacks

  Vulnerabilities

  CISA has added the high-severity authentication bypass vulnerability to its KEV list, along with SolarWinds and Workspace One bugs. The post Recent Ivanti Endpoint Manager Flaw Exploited in Attacks appeared first on SecurityWeek.

• Recent Cisco Catalyst SD-WAN Vulnerability Now Widely Exploited

  Vulnerabilities

  WatchTowr reports seeing exploitation attempts for CVE-2026-20127 from numerous unique IP addresses. The post Recent Cisco Catalyst SD-WAN Vulnerability Now Widely Exploited appeared first on SecurityWeek.

• CISA Adds iOS Flaws From Coruna Exploit Kit to KEV List

  Vulnerabilities

  The nation-state-grade iOS exploit kit targets 23 vulnerabilities affecting iOS 13 to 17.2.1. The post CISA Adds iOS Flaws From Coruna Exploit Kit to KEV List appeared first on SecurityWeek.

• Rockwell Vulnerability Allowing Remote ICS Hacking Exploited in Attacks

  ICS/OT · Vulnerabilities

  The vulnerability was disclosed and mitigated in 2021 but its in-the-wild exploitation has only now come to light. The post Rockwell Vulnerability Allowing Remote ICS Hacking Exploited in Attacks appeared first on SecurityWeek.

• Google: Half of 2025’s 90 Exploited Zero-Days Aimed at Enterprises

  Vulnerabilities

  Less than half of the total zero-days have been attributed to a threat actor, but spyware vendors and China are in the lead. The post Google: Half of 2025’s 90 Exploited Zero-Days Aimed at Enterprises appeared first on SecurityWeek.

• Cisco Warns of More Catalyst SD-WAN Flaws Exploited in the Wild

  Vulnerabilities

  The networking giant has added the recently patched CVE-2026-20128 and CVE-2026-20122 to the list of exploited vulnerabilities. The post Cisco Warns of More Catalyst SD-WAN Flaws Exploited in the Wild appeared first on SecurityWeek.

• Cisco Patches Critical Vulnerabilities in Enterprise Networking Products

  Vulnerabilities

  Cisco has rolled out patches for 48 vulnerabilities in Firewall ASA, Secure FMC, and Secure FTD products. The post Cisco Patches Critical Vulnerabilities in Enterprise Networking Products appeared first on SecurityWeek.

• Critical FreeScout Vulnerability Leads to Full Server Compromise

  Vulnerabilities

  A patch bypass for an authenticated code execution bug, the flaw leads to zero-click remote code execution attacks. The post Critical FreeScout Vulnerability Leads to Full Server Compromise appeared first on SecurityWeek.

• VMware Aria Operations Vulnerability Exploited in the Wild

  Vulnerabilities

  The recently patched CVE-2026-22719 can be exploited by an unauthenticated attacker for remote code execution. The post VMware Aria Operations Vulnerability Exploited in the Wild appeared first on SecurityWeek.

• Android Update Patches Exploited Qualcomm Zero-Day

  Mobile & Wireless · Vulnerabilities

  An integer overflow or wraparound in the Qualcomm graphics component, the bug leads to memory corruption. The post Android Update Patches Exploited Qualcomm Zero-Day appeared first on SecurityWeek.

• Vulnerability in MS-Agent AI Framework Can Allow Full System Compromise

  Artificial Intelligence · Vulnerabilities

  Improper input sanitization in the framework can be exploited through the Shell tool, allowing attackers to modify system files and steal data. The post Vulnerability in MS-Agent AI Framework Can Allow Full System Compromise appeared first on SecurityWeek.

• Vulnerability Allowed Hijacking Chrome’s Gemini Live AI Assistant

  Artificial Intelligence · Vulnerabilities

  Malicious extensions could hijack the Gemini Live in Chrome feature to spy on users and steal their files. The post Vulnerability Allowed Hijacking Chrome’s Gemini Live AI Assistant appeared first on SecurityWeek.

• OpenClaw Vulnerability Allowed Websites to Hijack AI Agents

  Artificial Intelligence · Vulnerabilities

  Malicious websites could open a WebSocket connection to localhost on the OpenClaw gateway port, brute force passwords, and take control of the agent. The post OpenClaw Vulnerability Allowed Websites to Hijack AI Agents appeared first on SecurityWeek.

• 900 Sangoma FreePBX Instances Infected With Web Shells

  Vulnerabilities

  The attacks exploited a post-authentication command injection vulnerability in the endpoint manager’s interface. The post 900 Sangoma FreePBX Instances Infected With Web Shells appeared first on SecurityWeek.

• Juniper Networks PTX Routers Affected by Critical Vulnerability

  Vulnerabilities

  An out-of-band security update for Junos OS Evolved patches the remote code execution vulnerability CVE-2026-21902. The post Juniper Networks PTX Routers Affected by Critical Vulnerability appeared first on SecurityWeek.

• Claude Code Flaws Exposed Developer Devices to Silent Hacking

  Vulnerabilities

  Anthropic has patched vulnerabilities whose impact was demonstrated by Check Point via malicious configuration files. The post Claude Code Flaws Exposed Developer Devices to Silent Hacking appeared first on SecurityWeek.

• Zyxel Patches Critical Vulnerability in Many Device Models

  Vulnerabilities

  The issue impacts the UPnP function of multiple device models and could be exploited for remote code execution. The post Zyxel Patches Critical Vulnerability in Many Device Models appeared first on SecurityWeek.

• Trend Micro Patches Critical Apex One Vulnerabilities

  Endpoint Security · Vulnerabilities

  TrendAI has fixed eight critical and high-severity issues in Windows and macOS endpoint security products. The post Trend Micro Patches Critical Apex One Vulnerabilities appeared first on SecurityWeek.

• Cisco Patches Catalyst SD-WAN Zero-Day Exploited by Highly Sophisticated Hackers

  Vulnerabilities · Malware & Threats

  Already added to CISA’s KEV catalog, the flaw allows attackers to bypass authentication and gain administrative privileges. The post Cisco Patches Catalyst SD-WAN Zero-Day Exploited by Highly Sophisticated Hackers appeared first on SecurityWeek.

• SolarWinds Patches Four Critical Serv-U Vulnerabilities

  Vulnerabilities

  The four security defects could be exploited for remote code execution but require administrative privileges. The post SolarWinds Patches Four Critical Serv-U Vulnerabilities appeared first on SecurityWeek.

• VMware Aria Operations Vulnerability Could Allow Remote Code Execution

  Vulnerabilities

  Broadcom has patched several vulnerabilities in VMware Aria Operations, including high-severity flaws. The post VMware Aria Operations Vulnerability Could Allow Remote Code Execution appeared first on SecurityWeek.

• GitHub Issues Abused in Copilot Attack Leading to Repository Takeover

  Vulnerabilities

  Attackers can inject malicious instructions in a GitHub Issue that are automatically processed by Copilot when launching a Codespace from that issue. The post GitHub Issues Abused in Copilot Attack Leading to Repository Takeover appeared first on SecurityWeek.

• Taiwan Security Firm Confirms Flaw Flagged by CISA Likely Exploited by Chinese APTs

  Nation-State · Vulnerabilities

  The vulnerability in TeamT5 ThreatSonar Anti-Ransomware was recently added to CISA’s KEV catalog. The post Taiwan Security Firm Confirms Flaw Flagged by CISA Likely Exploited by Chinese APTs appeared first on SecurityWeek.

• Recent RoundCube Webmail Vulnerability Exploited in Attacks

  Vulnerabilities

  Patched in December 2025, the exploited flaw leads to XSS attacks via the animate tags in SVG documents. The post Recent RoundCube Webmail Vulnerability Exploited in Attacks appeared first on SecurityWeek.

• Critical Grandstream Phone Vulnerability Exposes Calls to Interception

  Vulnerabilities

  The flaw tracked as CVE-2026-2329 can be exploited without authentication for remote code execution with root privileges. The post Critical Grandstream Phone Vulnerability Exposes Calls to Interception appeared first on SecurityWeek.

• BeyondTrust Vulnerability Exploited in Ransomware Attacks

  Ransomware · Vulnerabilities

  CISA has updated its KEV entry for CVE-2026-1731 to alert organizations of exploitation in ransomware attacks. The post BeyondTrust Vulnerability Exploited in Ransomware Attacks appeared first on SecurityWeek.

• Ivanti Exploitation Surges as Zero-Day Attacks Traced Back to July 2025

  Vulnerabilities · Malware & Threats

  Security researchers have seen the vulnerabilities being exploited to deliver shells, conduct reconnaissance, and download malware. The post Ivanti Exploitation Surges as Zero-Day Attacks Traced Back to July 2025 appeared first on SecurityWeek.

• Vulnerabilities in Popular PDF Platforms Allowed Account Takeover, Data Exfiltration

  Vulnerabilities

  Novee researchers discovered 16 vulnerabilities in Foxit and Apryse PDF tools that could have been exploited via malicious documents or URLs. The post Vulnerabilities in Popular PDF Platforms Allowed Account Takeover, Data Exfiltration appeared first on SecurityWeek.

• CISA: Hackers Exploiting Vulnerability in Product of Taiwan Security Firm TeamT5

  Vulnerabilities

  The vulnerability added to CISA’s KEV catalog affects ThreatSonar Anti-Ransomware and it was patched in 2024. The post CISA: Hackers Exploiting Vulnerability in Product of Taiwan Security Firm TeamT5 appeared first on SecurityWeek.

• Dell RecoverPoint Zero-Day Exploited by Chinese Cyberespionage Group

  Vulnerabilities · Malware & Threats

  GTIG and Mandiant said the zero-day tracked as CVE-2026-22769 has been exploited by UNC6201 since at least 2024. The post Dell RecoverPoint Zero-Day Exploited by Chinese Cyberespionage Group appeared first on SecurityWeek.

• Google Patches First Actively Exploited Chrome Zero-Day of 2026

  Vulnerabilities

  A Chrome 145 update fixes CVE-2026-2441, a vulnerability that can likely be exploited for arbitrary code execution. The post Google Patches First Actively Exploited Chrome Zero-Day of 2026 appeared first on SecurityWeek.

• BeyondTrust Vulnerability Targeted by Hackers Within 24 Hours of PoC Release

  Vulnerabilities

  Exploitation attempts target CVE-2026-1731, a critical unauthenticated remote code execution flaw in BeyondTrust Remote Support. The post BeyondTrust Vulnerability Targeted by Hackers Within 24 Hours of PoC Release appeared first on SecurityWeek.

• CISA Warns of Exploited SolarWinds, Notepad++, Microsoft Vulnerabilities

  Vulnerabilities

  Disclosed at the end of January, the SolarWinds vulnerability was likely exploited as a zero-day since December 2025. The post CISA Warns of Exploited SolarWinds, Notepad++, Microsoft Vulnerabilities appeared first on SecurityWeek.

• Chrome 145 Patches 11 Vulnerabilities

  Vulnerabilities

  Three of the security defects are high-severity flaws, two of which were found and reported by Google. The post Chrome 145 Patches 11 Vulnerabilities appeared first on SecurityWeek.

• China Revives Tianfu Cup Hacking Contest Under Increased Secrecy

  Vulnerabilities

  Rewards for exploits are reportedly much smaller than in the contest’s glory days. The post China Revives Tianfu Cup Hacking Contest Under Increased Secrecy appeared first on SecurityWeek.

• How to Eliminate the Technical Debt of Insecure AI-Assisted Software Development

  Artificial Intelligence · Vulnerabilities

  Developers must view AI as a collaborator to be closely monitored, rather than an autonomous entity to be unleashed. Without such a mindset, crippling tech debt is inevitable. The post How to Eliminate the Technical Debt of Insecure AI-Assisted Software Development appeared first on SecurityWeek.

• Apple Patches iOS Zero-Day Exploited in ‘Extremely Sophisticated Attack’

  Vulnerabilities

  Impacting the ‘dyld’ system component, the memory corruption issue can be exploited for arbitrary code execution. The post Apple Patches iOS Zero-Day Exploited in ‘Extremely Sophisticated Attack’ appeared first on SecurityWeek.

• Ivanti Patches Endpoint Manager Vulnerabilities Disclosed in October 2025

  Vulnerabilities

  It also fixed a high-severity authentication bypass that could be exploited remotely without authentication to obtain credentials. The post Ivanti Patches Endpoint Manager Vulnerabilities Disclosed in October 2025 appeared first on SecurityWeek.

• Chipmaker Patch Tuesday: Over 80 Vulnerabilities Addressed by Intel and AMD

  Endpoint Security · Vulnerabilities

  More than two dozen advisories have been published by the chip giants for vulnerabilities found recently in their products. The post Chipmaker Patch Tuesday: Over 80 Vulnerabilities Addressed by Intel and AMD appeared first on SecurityWeek.

• Fortinet Patches High-Severity Vulnerabilities

  Vulnerabilities

  The bugs could be exploited without authentication for command execution and authentication bypass. The post Fortinet Patches High-Severity Vulnerabilities appeared first on SecurityWeek.