961 Results for:CVE

  • Sort by: 

March Patch Tuesday throws up two critical Hyper-V flaws

By Alex Scroxton 12 Mar 2024

Two critical vulnerabilities in Windows Hyper-V stand out on an otherwise unremarkable Patch Tuesday Read More

February Patch Tuesday corrects two Windows zero-days

By Tom Walat 13 Feb 2024

Administrators should focus on quickly deploying a critical vulnerability in Microsoft Outlook and exercising caution when applying an Exchange Server 2019 cumulative update. Read More

Patch GitLab vuln without delay, users warned

By Alex Scroxton 03 May 2024

The addition of a serious vulnerability in the GitLab open source platform to CISA’s KEV catalogue prompts a flurry of concern Read More

Ivanti vulnerabilities explained: Everything you need to know

By Alex Scroxton 01 Mar 2024

A series of vulnerabilities in Ivanti products have caused concern worldwide. Delve into some of the key issues arising from the Ivanti disclosures, looking at the vulnerabilities and their impact, what affected ... Read More

Unit 42: Malware-initiated scanning attacks on the rise

By Alexander Culafi 09 Apr 2024

Palo Alto Networks' research team warned of threat actors compromising one victim and then using that victim's resources to discreetly scan for vulnerabilities on other systems. Read More

Risk & Repeat: CISA hacked via Ivanti vulnerabilities

By Alexander Culafi 13 Mar 2024

The compromise of two internal CISA systems comes on the heels of ongoing attacks and developments related to two zero-day vulnerabilities Ivanti disclosed in January. Read More

ConnectWise ScreenConnect flaws under attack, patch now

By Alexander Culafi 22 Feb 2024

Huntress said in a blog post this week that the ConnectWise ScreenConnect flaws, which have come under attack, were 'trivial and embarrassingly easy' for a threat actor to exploit. Read More

Ivanti discloses new zero-day flaw, releases delayed patches

By Arielle Waldman 31 Jan 2024

While Ivanti customers can start patching two previously disclosed vulnerabilities, they must also address two new flaws for the same product. Read More

Palo Alto Networks discloses RCE zero-day vulnerability

By Rob Wright 12 Apr 2024

Threat actors have exploited the remote code injection flaw, which affects the GlobalProtect gateway in Palo Alto Networks' PAN-OS software, in a 'limited' number of attacks. Read More

Cisco fixes high-impact flaw in unified comms platform

By Alex Scroxton 11 Jan 2024

Cisco unified comms customers are urged to patch a critical vulnerability in Unity Connection, a messaging and voicemail product Read More