Python 3.9.1 and 3.8.8 have been rushed out by the Python Software Foundation after two security flaws. One of the two flaws is remotely exploitable, but only threatens to knock a machine offline. …
Critical Adobe Acrobat and Reader Bugs Allow RCE
On Tuesday, Adobe patched several critical and important flaws related to CVEs in Acrobat and Adobe Reader. The fixes were part of the company's regularly scheduled security updates. 11 holes in …
Continue Reading about Critical Adobe Acrobat and Reader Bugs Allow RCE
Two Critical Android Bugs Open Door to RCE
In June updates, Google and Qualcomm addressed significant vulnerabilities affected Andriod users that could lead to remote code execution (RCE) on applicable devices. The bugs, CVE-2020-0117, and …
Continue Reading about Two Critical Android Bugs Open Door to RCE
Connected Home Hubs Open Houses to Full Remote Takeover
According to researchers at ESET, three different connected home hub systems, Fibaro Home Center Lite, Homematic Central Control Unit, and Elko's eLAN-RF-003 contain serious bugs that could allow for …
Continue Reading about Connected Home Hubs Open Houses to Full Remote Takeover
RCE Exploit Released for IBM Data Risk Manager, No Patch Available
IBM has not yet patched four serious security vulnerabilities that lie in the IBM Data Risk Manager (IDRM). The vulnerabilities can lead to unauthenticated remote code execution (RCE), according to an …
Continue Reading about RCE Exploit Released for IBM Data Risk Manager, No Patch Available
Over 350,000 Exchange Servers Exposed to Serious RCE Bug
According to Rapid7, over 350,000 Exchange servers across the globe remain exposed to a critical vulnerability patched by Microsoft in February. The vulnerability is actively exploited in the wild, …
Continue Reading about Over 350,000 Exchange Servers Exposed to Serious RCE Bug
Critical Remote Code Execution Flaw Found in Open Source rConfig Utility
A security researcher has discovered two remote code execution vulnerabilities, one of which is deemed critical, in the open-source network configuration tool rConfig that thousands of network …
Continue Reading about Critical Remote Code Execution Flaw Found in Open Source rConfig Utility
Google October Android Security Update Fixes Critical RCE Flaws
Google has released patches for 28 security vulnerabilities, 11 of which where critical flaws, affecting the Android operating system. Three of the critical bugs are remote code execution (RCE) flaws …
Continue Reading about Google October Android Security Update Fixes Critical RCE Flaws
Critical RCE Flaw in Palo Alto Gateways Hits Uber
Tenable researchers have uncovered a remote code-execution (RCE) flaw affecting the VPN software offered by Palo Alto Networks. The vulnerability, tracked as CVE-2019-1579, was inadvertently fixed in …
Continue Reading about Critical RCE Flaw in Palo Alto Gateways Hits Uber