Palo Alto Networks Fixes 2 Zero-Days
Palo Alto Networks has released security updates for their Next-Generation Firewalls addressing 2 zero-day vulnerabilities that are already under active exploitation. You can find the details and a re...
Blog Articles
No Fix Coming for Critical D-Link Vulnerability
D-Link released a security advisory detailing a vulnerability in some of their legacy products that are end-of-life. Due to the lifecycle status of these products they will NOT be providing any fixes ...
Mozilla Fixes Critical Zero-Day Vulnerability in Firefox
Mozilla released emergency security updates for Firefox and Firefox ESR in response to a critical use-after-free vulnerability. CVE-2024-9680 got a CVSS score of 9.8, learn more and grab an audit from...
Broadcom Fixes Critical RCE in VMware vCenter Server
Broadcom fixed a critical vulnerability in VMware vCenter which could lead to remote code execution by sending a specially crafted network packet. There are no workarounds in place, updating as soon a...
Veeam Fixes Critical Vulnerabilities in 6 Products
Veeam has released security updates for 6 of its products addressing a total of 18 high and critical security flaws. The most critical of which CVE-2024-40711 can be exploited without authentication. ...
Zyxel Patches Critical Vulnerability in Access Points and Security Routers
Zyxel released a security advisory for 28 Access Points and a security router due to a OS command injection vulnerability tracked as CVE-2024-7261. We've summarized the issue and created an audit to l...
CrowdStrike Update Causes BSOD Issues Globally
Banks, airlines, supermarkets, broadcasters, and more are all reporting Blue Screen of Death (BSOD) issues today after an update from cybersecurity provider CrowdStrike has caused computers to get stu...
Chrome 126 Fixes 21 Vulnerabilities
Chrome 126 was released yesterday with a whopping 21 security fixes. CIS (Center for Internet Security) lists that the risk is high for businesses and government entities of all sizes! You can find th...
Google Fixes Two Exploited Zero-Day Vulnerabilities
Google fixed an exploited zero-day on May 9th and yesterday on May 13th. You can find the details and report in the vulnerability blog post.
Multiple Fortinet Vulnerabilities Fixed
Fortinet released a bunch of patches for both its software and firmware. This includes a fix for a critical issue in the Linux version of their FortiClient that can lead to an unauthenticated attacker...
New Linux XZ Utils Version Compromised
Red Hat discovered a critical vulnerability in XZ Utils, a compression format used in most Linux distros. CVE-2024-3094 got the maximum CVSS score of 10 and must be remediated ASAP! Our XZ Vulnerabili...
Mozilla Fixes 2 Critical Firefox Vulnerabilities Exploited at Pwn2Own
Mozilla fixed two new critical vulnerabilities (CVE-2024-29943 and CVE-2024-29944) that were discovered during Pwn2Own Vancouver 2024. You can find more info the blog post.
Fortinet Fixes 3 Code Execution Vulnerabilities in FortiOS, FortiProxy, and FortiClientEMS
Fortinet has fixed multiple critical code execution vulnerabilities in FortiOS, FortiProxy, and FortiClientEMS. You can find the details in our blog post.
VMware Fixed Multiple Sandbox Escape Vulnerabilities in ESXi, Workstation, and Fusion
VMware has fixed four critical vulnerabilities across ESXi, Workstation, and Fusion. You can find a short summary and audit to discover affected devices in our VMware vulnerability blog post.
Critical ScreenConnect Vulnerabilities Now Actively Exploited
ScreenConnect's two vulnerabilities addressed earlier this week are being actively exploited. CVE-2024-1708 (CVSS: 8.4) and CVE-2024-1709 (CVSS: 10) are critical and must be remediated ASAP! You can r...
New Browser Version Reports
Hi, As you might know, last year we created new reports for every new major browser version. To be more efficient and spam people less. We've spent the last month creating versions of these reports th...
Fortinet CVE-2024-21762
Fortinet released critical patches for their FortiOS in response to CVE-2024-21762. Fortinet mentions that the vulnerability is already potentially being exploited in the wild. You can learn more abou...
Multiple Chrome 121 Vulnerabilities Fixed
Google released a new version to fix multiple vulnerabilities that can lead to arbitrary code execution in the context of the logged-on user. Learn more about the details and how to list all vulnerabl...
- Lahrsweeper on: Mozilla Fixes Critical Zero-Day Vulnerability in F...
-
Esben_D
on:
CrowdStrike Update Causes BSOD Issues Globally
- Mister_Nobody on: New Browser Version Reports
-
David_GF
on:
Fortinet CVE-2024-21762
- ChrisJ_EPITS on: Chrome 119 Vulnerability Audit
- medard on: Edge 117 Audit
- KHoegeman on: Storm-0978 Attacks Mitigation Audit
- Ben-rutherford on: Chrome 113 Vulnerabilities Audit
- Mister_Nobody on: Chrome 113 Audit
- Ben-rutherford on: Chrome 112 Zero-Day Vulnerability
