Security news that informs and inspires

Archive

79 results for tag Vulnerability:

Flaw in GRUB 2 Boot Loader Threatens Many Linux Systems

A buffer overflow (CVE-2020-10713) in the GRUB 2 boot loader can allow an attacker to gain code execution on many Linux systems and possibly some Windows computers.

Linux, Vulnerability

Wormable Flaw in Windows DNS Server Can Take Over IT Networks

DNS issues are bad news, and SigRed is among the worst: Microsoft fixes a flaw in Windows DNS Server which has a severity rating of 10 and is believed to be wormable.

Windows, Dns, Vulnerability, Patch

Palo Alto Fixes Critical Authentication Bypass Flaw

Palo Alto Networks has patched a critical flaw in many of its products that support SAML-based authentication for SSO.

Vulnerability

Flaw in Plug-and-Play Protocol Exposes Devices to Data Theft, DDoS Attacks

Billions of network-connected devices, such as printers, routers, smart TVs, and video game consoles, are open to attack via the CallStranger vulnerability in the Universal Plug and Play (UPnP) protocol.

Networking, Vulnerability

NSA Warns Russian Attackers are Exploiting Old Exim Flaw

The Sandworm team, associated with the Russian GRU, is exploiting a flaw in the Exim mail transfer agent, the NSA warned in a new advisory.

Vulnerability, Government