2,260 Results for:zero day

  • Sort by: 

Microsoft users on high alert over dangerous RCE zero-day

By Alex Scroxton 12 Jul 2023

A serious RCE vulnerability in Microsoft Office and Windows is among several zero-days disclosed in Redmond’s July Patch Tuesday update, but this one does not have a patch yet Read More

Zero-day vulnerability in MoveIt Transfer under attack

By Rob Wright 01 Jun 2023

Rapid7 observed exploitation of a SQL injection vulnerability in Progress Software's managed file transfer product, which was disclosed this week but has not been patched. Read More

Patch Tuesday: Microsoft fixes zero-days in Word and Streaming Service

By Alex Scroxton 13 Sep 2023

September 2023 brings a light Patch Tuesday, with two zero-days and five critical vulnerabilities listed in the latest release Read More

Google, Microsoft and Mozilla push browser updates to foil zero-day

By Alex Scroxton 14 Sep 2023

A zero-day in Google’s Chrome browser was first reported by surveillance researchers at The Citizen Lab and Apple, but also affects other browsers Read More

Citrix NetScaler users told to patch new zero-day urgently

By Alex Scroxton 24 Jul 2023

A vulnerability disclosed and patched last week by Citrix appears to be being exploited by China-backed threat actors as a zero-day, prompting warnings from government cyber bodies Read More

Ivanti issues fix for third zero-day flaw exploited in the wild

By Arielle Waldman 22 Aug 2023

CVE-2023-38035 is the latest Ivanti zero-day vulnerability to be exploited in the wild. The vendor has released a series of remediation recommendations. Read More

No zero-days for June Patch Tuesday, but plenty to chew over

By Alex Scroxton 14 Jun 2023

On the face of it, Microsoft’s monthly round of updates is a lighter-than-usual load for security teams, with no zero-days in evidence, but there are still plenty of issues needing attention Read More

XSS zero-day flaw in Zimbra Collaboration Suite under attack

By Alexander Culafi 14 Jul 2023

A manual workaround is currently available for a cross-site scripting vulnerability in Zimbra Collaboration Suite, though a patch won't be available until later this month. Read More

Zero-day that forced Barracuda users to bin kit was exploited by China

By Alex Scroxton 29 Aug 2023

Mandiant has published details of how a Chinese threat actor targeted high-profile users of Barracuda Networks' Email Security Gateway appliances, including government agencies of interest to Beijing's intelligence... Read More

Microsoft repairs 5 zero-days for July Patch Tuesday

By Tom Walat 11 Jul 2023

The company addressed 130 vulnerabilities and provided additional instructions to fully resolve several bugs, which will require extra attention from IT this month. Read More