Rajani Shrestha Microsoft Outlook: Zero-Day Attacks Microsoft Pins Outlook Zero-Day Attacks on Russian Actor Description: Microsoft’s threat intelligence team is blaming a “Russian-based threat actor” for newly disclosed in-the-wild attacks targeting a...
Rajani Shrestha Microsoft Release Patches: Update your system Now Microsoft Release Patches: Update your system Now Description: Microsoft released patches for 75 flaws on its February 2023 Patch Tuesday along with the three actively exploited Windows zero-day vulne...
Rajani Shrestha A ransomware attack - VMware ESXi servers A ransomware attack - VMware ESXi servers Description: French Computer Emergency Response Team (CERT-FR) and Italy’s national cybersecurity authority (ACN) are all issuing warnings about how attackers...
Rajani Shrestha Git - Critical Overflow bugs Git - Critical Overflow bugs Description: G it has become the common and popular platform for source code management. Every developer resides on git to manage the code due to which it has become more ...
Rajani Shrestha Wordpress plugin WOOF - Admin + PHP Object Injection Wordpress plugin WOOF - Admin + PHP Object Injection Description: Wordpress plugin named woocommerce-product-filter, version < 1.3.2 was affected by PHP Object Injection vulnerability. It may enable h...
Rajani Shrestha Control Web Panel - Remote Code Execution Vulnerability Control Web Panel - Remote Code Execution Description: A remote code execution (RCE) pre-authentication vulnerability has been discovered for the widely used web hosting platform, Control Web Pane...
Rajani Shrestha WordPress Core - Unauthenticated Blind SSRF via DNS Rebinding WordPress Core - Unauthenticated Blind SSRF via DNS Rebinding Description: WordPress Core version up to 6.1.1 is affected by Unauthenticated Blind SSRF in a pingback feature via DNS Rebinding. The...
Poshan Bhandari Google Chrome Browser released Patch for New Zero-Day Exploit Detected in the Wild. OpenSSL Releases Patch for High-Severity Bug that Could Lead to RCE Attacks Description: The maintainers of the OpenSSL project have released patches to address a high-severity bug in the cryptograp...
Monal Tech, Arjun Aryal DFSCoerce-A new NTLM relay attack can take control over a Windows domain DFSCoerce-A new NTLM relay attack can take control over a Windows domain Description: A new kind of Windows NTLM relay attack dubbed DFSCoerce has been uncovered that leverages the Distributed File Sy...
Poshan Bhandari VMware Releases Patches for New Vulnerabilities Affecting Multiple Products VMware Releases Patches for New Vulnerabilities Affecting Multiple Products Description: VMware has issued patches to contain two security flaws impacting Workspace ONE Access, Identity Manager, and v...
Poshan Bhandari Microsoft Azure Vulnerability Exposes PostgreSQL Databases to Other Customers Microsoft Azure Vulnerability Exposes PostgreSQL Databases to Other Customers Description: Microsoft has disclosed that it addressed a pair of issues with the Azure Database for PostgreSQL Flexible Se...
Monal Tech, Arjun Aryal Atlassian Drops Patches for Critical Jira Authentication Bypass Vulnerability Atlassian Drops Patches for Critical Jira Authentication Bypass Vulnerability Description: Atlassian has published a security advisory to alert that its Jira and Jira Service Management products are a...