Collaborate Disseminate
Adobe says the two critical flaws (CVE-2020-24407 and CVE-2020-24400) could allow arbitrary code execution as well as read or write access to the database. Continue reading Critical Magento Holes Open Online Shops to Code Execution
Google’s new release of Chrome 85.0.4183.121 for Windows, Mac, and Linux fixes 10 security flaws. Continue reading Google Chrome Bugs Open Browsers to Attack
A patch has been issued for the flaw in a widely-used module, and researchers are urging IoT manufacturers to update their devices ASAP. Continue reading Researchers Warn of Flaw Affecting Millions of IoT Devices
The recently patched flaws could be abused by an unauthenticated, remote attackers to take over vulnerable websites. Continue reading Critical Flaws in WordPress Quiz Plugin Allow Site Takeover
The flaw could allow a remote, unauthenticated attacker to bypass authentication on vulnerable devices. Continue reading Critical, High-Severity Cisco Flaws Fixed in Data Center Network Manager
Adobe has released patches for critical and important-severity flaws in its popular Magento e-commerce platform. Continue reading Critical Magento Flaws Allow Code Execution
High-severity flaws plague Cisco’s Webex collaboration platform, as well as its RV routers for small businesses. Continue reading Cisco Webex, Router Bugs Allow Code Execution
Threatpost talks to Venafi about the recently-disclosed Microsoft vulnerability and whether the hype around the flaw was warranted. Continue reading Podcast: NSA Reports Major Crypto-Spoofing Bug to Microsoft
The patches are part of Adobe’s regularly-scheduled fixes. Continue reading Adobe Fixes 17 Critical Acrobat, Photoshop and Brackets Flaws
The Intel NUC and Nvidia Shield both are vulnerable to high-severity flaws, Intel and Nvidia warned in dual advisories. Continue reading Gamers Warned of High-Severity Intel, Nvidia Flaws