exploited – Page 14 – WindowsTechs.com

Ivanti Zero-Day Vulnerability Exploited in Attack on Norwegian Government

Posted on July 25, 2023 by Eduard Kovacs

An Ivanti EPMM product zero-day vulnerability tracked as CVE-2023-35078 has been exploited in an attack aimed at the Norwegian government.
The post Ivanti Zero-Day Vulnerability Exploited in Attack on Norwegian Government appeared first on SecurityWeek.
Continue reading Ivanti Zero-Day Vulnerability Exploited in Attack on Norwegian Government→

Citrix Zero-Day Exploited Against Critical Infrastructure Organization

Posted on July 21, 2023 by Eduard Kovacs

CISA says the new Citrix zero day vulnerability tracked as CVE-2023-3519 has been exploited against a critical infrastructure organization.
The post Citrix Zero-Day Exploited Against Critical Infrastructure Organization appeared first on SecurityWeek.
Continue reading Citrix Zero-Day Exploited Against Critical Infrastructure Organization→

Adobe Releases New Patches for Exploited ColdFusion Vulnerabilities

Posted on July 20, 2023 by Eduard Kovacs

Adobe releases a second round of patches for recent ColdFusion vulnerabilities, including flaws that have been exploited in attacks.
The post Adobe Releases New Patches for Exploited ColdFusion Vulnerabilities appeared first on SecurityWeek.
Continue reading Adobe Releases New Patches for Exploited ColdFusion Vulnerabilities→

Two Jira Plugin Vulnerabilities in Attacker Crosshairs

Posted on July 19, 2023 by Ionut Arghire

Attackers are exploiting two path traversal vulnerabilities in the Stagil navigation for Jira – Menus & Themes plugin.
The post Two Jira Plugin Vulnerabilities in Attacker Crosshairs appeared first on SecurityWeek.
Continue reading Two Jira Plugin Vulnerabilities in Attacker Crosshairs→

Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned

Posted on July 19, 2023 by Eduard Kovacs

Citrix has patched several vulnerabilities, including CVE-2023-3519, a critical remote code execution zero-day that has been exploited in attacks.
The post Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned appeared first on S… Continue reading Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned→

Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks

Posted on July 18, 2023 by Eduard Kovacs

At least two new Adobe ColdFusion vulnerabilities have been exploited in the wild, including one that has not been completely patched by the software giant.
The post Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks appeared first on Securi… Continue reading Two New Adobe ColdFusion Vulnerabilities Exploited in Attacks→

Exploitation of ColdFusion Vulnerability Reported as Adobe Patches Another Critical Flaw

Posted on July 17, 2023 by Ionut Arghire

Adobe patches critical code execution vulnerability in ColdFusion for which a proof-of-concept (PoC) blog exists.
The post Exploitation of ColdFusion Vulnerability Reported as Adobe Patches Another Critical Flaw appeared first on SecurityWeek.
Continue reading Exploitation of ColdFusion Vulnerability Reported as Adobe Patches Another Critical Flaw→

Samsung Phone Flaws Added to CISA ‘Must Patch’ List Likely Exploited by Spyware Vendor

Posted on June 30, 2023 by Eduard Kovacs

CISA adds 6 Samsung mobile device flaws to its known exploited vulnerabilities catalog and they have likely been exploited by a spyware vendor.
The post Samsung Phone Flaws Added to CISA ‘Must Patch’ List Likely Exploited by Spyware Vendor… Continue reading Samsung Phone Flaws Added to CISA ‘Must Patch’ List Likely Exploited by Spyware Vendor→

Android’s June 2023 Security Update Patches Exploited Arm GPU Vulnerability

Posted on June 7, 2023 by Ionut Arghire

Google’s June 2023 security update for Android patches more than 50 vulnerabilities, including an Arm Mali GPU flaw exploited by spyware vendors.
The post Android’s June 2023 Security Update Patches Exploited Arm GPU Vulnerability appeared first … Continue reading Android’s June 2023 Security Update Patches Exploited Arm GPU Vulnerability→

Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Appliances

Posted on May 25, 2023 by Eduard Kovacs

Barracuda Networks is warning customers about CVE-2023-2868, a zero-day exploited to hack some Email Security Gateway (ESG) appliances.
The post Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Appliances appeared first on Secu… Continue reading Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Appliances→