Endpoint Management / Endpoint Security / Endpoint Security and Management / Patch Management / Security Research and Intelligence / Vulnerability Management

GeoServer Critical RCE Flaw Actively Exploited, Warns CISA

GeoServer, an open-source tool used to share and modify geospatial data, is under attack. CVE-2024-36401, which impacts the GeoTools plugin,…

Comments Off on GeoServer Critical RCE Flaw Actively Exploited, Warns CISA

July 18, 2024

Endpoint Management / Endpoint Security / Endpoint Security and Management / Featured Articles / Patch Management / Security Research and Intelligence / Vulnerability Management

Unveiling regreSSHion: Critical OpenSSH Flaw Found In Linux Systems

Linux users beware! OpenSSH flaw, a networking utility installed on every Unix and Linux system by default, is affected by…

Comments Off on Unveiling regreSSHion: Critical OpenSSH Flaw Found In Linux Systems

July 4, 2024

Patch Management / Security Research and Intelligence

RCE Flaw Discovered in PHP’s Windows Versions

The well-known open-source scripting language PHP (Hypertext Preprocessor) just had a critical RCE flaw patched and disclosed. Found and reported…

Comments Off on RCE Flaw Discovered in PHP’s Windows Versions

June 10, 2024

Endpoint Management / Endpoint Security / Endpoint Security and Management / Featured Articles / Patch Management / Security Research and Intelligence / Vulnerability Management

Microsoft Fixes 60 Vulnerabilities, 2 Rated Critical, in March 2024 Patch Tuesday

It's been a calm year so far for patches! January saw no zero days, February only saw two, and March…

Comments Off on Microsoft Fixes 60 Vulnerabilities, 2 Rated Critical, in March 2024 Patch Tuesday

March 13, 2024

Endpoint Management / Endpoint Security / Endpoint Security and Management / Patch Management / Security Research and Intelligence / Vulnerability Management

VMWare Catches New Critical ESXi Sandbox Escape Bugs

VMWare's latest advisory reveals four new vulnerabilities affecting its ESXi, Workstation, Fusion, and Cloud Foundation products. Each vulnerability has been…

Comments Off on VMWare Catches New Critical ESXi Sandbox Escape Bugs

March 6, 2024

Endpoint Management / Endpoint Security / Endpoint Security and Management / Patch Management / Security Research and Intelligence / Vulnerability Management

Critical Zero-Day Authentication Bypass Vulnerability (CVE-2024-0204) in Fortra GoAnywhere MFT.

If you're using a version of Fortra's GoAnywhere MFT that's lower than 7.4.1, you'll likely be shocked to know that…

Comments Off on Critical Zero-Day Authentication Bypass Vulnerability (CVE-2024-0204) in Fortra GoAnywhere MFT.

January 25, 2024

Endpoint Management / Endpoint Security / Endpoint Security and Management / Patch Management / Security Research and Intelligence / Vulnerability Management

53 Vulnerabilities (2 Critical) Fixed in Microsoft’s January 2024 Patch Tuesday

The second week of the new year has arrived, and with it comes 2024's first Microsoft Patch Tuesday. This time…

Comments Off on 53 Vulnerabilities (2 Critical) Fixed in Microsoft’s January 2024 Patch Tuesday

January 10, 2024

Endpoint Security / Endpoint Security and Management / Security Research and Intelligence / Vulnerability Management

Critical RCE Flaw Discovered In Confluence: CVE-2023-22522

A new remote code execution vulnerability has been found in Confluence Data Center and Server. CVE-2023-22522, exploited using template injection,…

Comments Off on Critical RCE Flaw Discovered In Confluence: CVE-2023-22522

December 7, 2023

Endpoint Management / Endpoint Security / Endpoint Security and Management / Patch Management / Security Research and Intelligence / Vulnerability Management

Microsoft’s November 2023 Patch Tuesday Fixes 75 Vulnerabilities, Including 5 Zero Days

This Patch Tuesday November 2023, Microsoft fixed 75 vulnerabilities, with three rated as critical and 57 rated as important. Elevation…

Comments Off on Microsoft’s November 2023 Patch Tuesday Fixes 75 Vulnerabilities, Including 5 Zero Days

November 15, 2023

Endpoint Management / Endpoint Security / Endpoint Security and Management / Patch Management / Security Research and Intelligence / Vulnerability Management

F5 Issues Warning: BIG-IP Vulnerability Used In Active Exploit Chain

According to F5, a critical security vulnerability in BIG-IP is actively exploited after its public disclosure. CVE-2023-46747, resulting in remote…

Comments Off on F5 Issues Warning: BIG-IP Vulnerability Used In Active Exploit Chain

November 2, 2023