Vulnerability
All the latest news on Vulnerability from the Cloud7 News. You can get the daily news for FREE by subscribing to our newsletter.
Vulnerability News
XSS vulnerability discovered in NextScripts: Social Networks Auto-Poster plugin
Wordfence Threat Intelligence team discovered the XSS vulnerability in the popular plugin on August 19, 2021. The WordPress plugin is ...
Update your PowerShell to fix the WDAC bypass vulnerability
Microsoft announced a patch for PowerShell 7 that fixes two vulnerabilities allowing attackers to bypass WDAC (Windows Defender Application Control) ...
Apache fixed an actively exploited zero-day vulnerability
The world's one of the most popular web servers, Apache HTTP Server was exposed to online attacks with a zero-day ...
Google patches zero-day Chrome vulnerabilities
The Google Chrome team announced that the stable channel is now updated to 94.0.4606.71 for Windows, Mac, and Linux which ...
Microsoft fixed an “unprecedented critical vulnerability” in Azure Cosmos DB
The cybersecurity firm Wiz, led by former Microsoft employees, found an “unprecedented critical vulnerability" in Microsoft's Azure cloud platform and ...
OS command injection vulnerability in FortiWeb allows firewall takeovers
FortiWeb, Fortinet's Web Application Firewall, is designed to protect business-critical web applications from attacks that target known and unknown vulnerabilities. ...
Authenticated RCE and privilege escalation vulnerability on cPanel & WHM
Remote code execution (RCE) and privilege escalation on web hosting platform cPanel & WHM have been discovered by security researchers ...
Istanbul based hosting company Webhosting’s 3000 customers’ data stolen
Istanbul-based web hosting company Webhosting Bilişim Teknolojileri reported a personal data breach to Personal Data Protection Institution in Turkey (KVVK). ...
A new vulnerability found in Microsoft Azure Functions
Intezer Lab announced that they found a new vulnerability in Azure Functions. The vulnerability allows an attacker to escalate privileges ...
10-year-old Sudo vulnerability found in most Linux distros
According to the Qualys' report, a new Sudo bug was discovered and patched with the Sudo v1.9.5p2 release. CVE identifier ...
cPanel releases TSR-2020-0007 full disclosure
cPanel published TSR-2020-0007 full disclosure that explains three updates. cPanel rated these updates as having CVSSv3.1 scores ranging from 2.6 ...
Google releases patches for second Chrome zero-day in two weeks
Google has released a security update for its Chrome web browser. The stable channel has been updated to 86.0.4240.183 for ...
Vulnerability in containerd threats cloud credentials
Gal Singer, a researcher at Aqua has written about the bug that he found in containerd. The bug (CVE-2020-15157) is ...
Google shared the details of Bluetooth flaw in Linux kernel
Linux Kernel 5.9 has been released by Linus Torvalds this week for public testing. Just after the release, Intel is ...
New vulnerabilities found in Microsoft Azure
Intezer announced that the company discovered two vulnerabilities in Microsoft Azure. According to the announcement, vulnerabilities exist in Azure App ...
Improving compliance with faster patch management
Volume and severity of cyber-attacks have increased in the last few years, but a recent report from Ponemon indicates that ...
Researchers to publish an analysis about Dell PowerEdge server flaw
Researchers were found a web vulnerability in the Dell EMC iDRAC remote access technology embedded within the latest versions of ...
Check Point pinpoints Apache Guacamole flaws
Check Point's researchers announced that they have found that in Guacamole there are some critical reverse RDP Vulnerabilities. Multiple new ...
Researchers found two new vulnerabilities in Zoom
Cybersecurity researchers from Cisco Talos have discovered two vulnerabilities in the Zoom video-conferencing application that could allow a malicious user ...
VMware Cloud Director gets patched up
Ethical hacking company Citadelo identified a vulnerability that bypassed VMware’s underlying security fundamentals. The bug that has been discovered in ...
Cisco unveils SaltStack flaws details
Cisco published a detailed report on two critical vulnerabilities, CVE-2020-11651 and CVE-2020-11652. Cisco stated that the Salt Open Core team ...
What are the latest news on Vulnerability?
The latest Vulnerability news are:
- XSS vulnerability discovered in NextScripts: Social Networks Auto-Poster plugin
- Update your PowerShell to fix the WDAC bypass vulnerability
- Apache fixed an actively exploited zero-day vulnerability
- Google patches zero-day Chrome vulnerabilities
- Microsoft fixed an “unprecedented critical vulnerability” in Azure Cosmos DB