Weeks after the disclosure of the vulnerability (CVE-2022-29464) in WSO2 products, attackers are leveraging the flaw to install Linux-compatible Cobalt Strike beacons, cryptocurrency miners and more.
Cisco has patched a flaw in IOS XR that can allow an attacker to write arbitrary files to the Redis instance.
NVIDIA has released an update to fix a number of serious code-execution flaws in its GPU display driver that could be used to perform guest-to-host escapes.
Several versions of curl and the curl library contain a pair of security flaws.
Patches are available for three critical-severity remote code execution flaws that affect more than 150 devices, including medical imaging and laboratory products.