Security Vulnerabilities - Page 20

Discover Security Vulnerabilities News

KDE rips out ability for KConfig to run shell code

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The feature that a researcher discovered could be used to execute malicious code had no actual use case.

Brittany Day
Aug 08, 2019

KDE Linux Desktops Could Get Hacked Without Even Opening Malicious Files

If you are running a KDE desktop environment on your Linux operating system, you need to be extra careful and avoid downloading any ".desktop" or ".directory" file for a while.

Brittany Day
Aug 07, 2019

New Spectre-like CPU vulnerability bypasses existing defenses

The SWAPGS vulnerability can allow attackers to access contents of kernel memory addresses. Microsoft and Intel have coordinated on a mitigation.

Brittany Day
Aug 07, 2019

Cisco ‘Knowingly’ Sold Hackable Video Surveillance System to U.S. Government

Cisco Systems has agreed to pay $8.6 million to settle a lawsuit that accused the company of knowingly selling video surveillance system containing severe security vulnerabilities to the U.S. federal and state government agencies.

Brittany Day
Aug 01, 2019

IoT home security camera allows hackers to listen in over HTTP

Security researchers have uncovered a security flaw in a popular home security camera which permits remote spying without any form of authentication.

Brittany Day
Jul 31, 2019

Critical VxWorks flaws expose millions of devices to hacking

Researchers have found 11 serious vulnerabilities in VxWorks, the world's most popular real-time operating system (RTOS) that powers over 2 billion devices including enterprise network firewalls and routers, industrial controllers and medical equipment. Many of the flaws allow attackers to take over devices remotely by just sending network packets, which make them particularly dangerous.

Brittany Day
Jul 29, 2019

Alleged critical VLC flaw is nothing to worry about -- and is nothing to do with VLC

There has been a lot of confusion over the last few days after news spread of a supposedvulnerability in the media player VLC. Despite being labelled as "critical", VLC's developers, VideoLAN, denied there was a problem at all.

Brittany Day
Jul 25, 2019

Linux Botnet Adding BlueKeep-Flawed Windows RDP Servers to Its Target List

Have you heard about the BlueKeep vulnerability that has been discovered in Windows RDP servers? Cybersecurity researchers have identified a new variant ofWatchBog, a Linux-based cryptocurrency mining malware botnet, which now also includes a module to scan the Internet for Windows RDP servers vulnerable to theBluekeep flaw.BlueKeep is a highly-critical, wormable, remote code execution vulnerability in the Windows Remote Desktop Services that could allow an unauthenticated remote attacker to take full control over vulnerable systems just by sending specially crafted requests over RDP protocol.Though thepatches for the BlueKeepvulnerability (CVE–2019-0708) was already released by Microsoft in May this year, more than800,000 Windows machinesaccessible over the Internet are still vulnerable to the critical flaw.

Brittany Day
Jul 25, 2019

Remote code execution vulnerability in VLC remains unpatched

Have you heard that a serious vulnerability has been discovered in the latest release of the VLC media player and no patch is available? Non-profit VideoLAN's VLC player is popular software used to both play and convert a variety of audio and visual files. Available for Windows, Linux, Mac OS X, Unix, iOS, and Android systems, the open-source media player has now become the focus of a recent security advisory released by the German Computer Emergency Response Team (CERT-Bund). In the advisory, CERT-Bund warns that VLC media player version 3.0.7.1, the latest build available, contains a vulnerability which has been awarded a CVSS score of 9.8 out of 10.

Brittany Day
Jul 23, 2019

A Critical Google Chrome Security Bug Can Now Bring You No Less than $30,000

Attention ethical hackers: Google has just announced that it decided to increase the bounties offered for Google Chrome browser security vulnerabilities, with the maximum payment now reaching $30,000!

Brittany Day
Jul 19, 2019

Security Vulnerabilities - Page 20

Don't Delay: Google Releases Chrome Update Addressing Serious Security Vulns

Urgent Chrome 132 Update Released to Fix 13 Security Flaws

Rsync Under Siege: Essential Steps to Protect Against Recent RCE Vulnerabilities

Discover Security Vulnerabilities News

KDE rips out ability for KConfig to run shell code

KDE Linux Desktops Could Get Hacked Without Even Opening Malicious Files

New Spectre-like CPU vulnerability bypasses existing defenses

Cisco ‘Knowingly’ Sold Hackable Video Surveillance System to U.S. Government

IoT home security camera allows hackers to listen in over HTTP

Critical VxWorks flaws expose millions of devices to hacking

Alleged critical VLC flaw is nothing to worry about -- and is nothing to do with VLC

Linux Botnet Adding BlueKeep-Flawed Windows RDP Servers to Its Target List

Remote code execution vulnerability in VLC remains unpatched

A Critical Google Chrome Security Bug Can Now Bring You No Less than $30,000

LinuxSecurity Poll

Which open source security automation tool do you use to protect against vulnerabilities?

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

About Us

Powered By