On Wednesday, Cisco apprised customers that some of its Aironet access points (APs) are impacted by a serious flaw that can be misused by a remote attacker to attain unlawful access to devices. Tracked as CVE-2019-15260, the vulnerability is caused by inadequate access control for some URLs, which lets an attacker Continue Reading
This week, Oracle revealed that it would release its last Critical Patch Update of 2019, which includes as many as 218 new security patches across numerous products. More than 140 of the flaws highlighted this month can be exploited remotely without verification. Nineteen of the fixes were released for faults Continue Reading
Adobe recently released its October series of security updates. It was on Patch Tuesday last week, and it’s already roaring in with scores of fixes for Experience Manager, Experience Manager Forms, Adobe Acrobat and Reader and Download Manager. The issue which was being monitored negatively impacts Windows, macOS, Android, and Chrome Continue Reading
A flaw in the Linux sudo command has been exposed that could let unprivileged users perform commands as root. However, this flaw only works in non-standard configurations with most Linux servers having had no impact. Before we get to the susceptibility, it is key to have some rudimentary information on Continue Reading
ClearSky’s security researchers have revealed that the Iranian state-sponsored malicious actor called Charming Kitten used new spear-phishing tactics in a drive noticed in August and September. The attacks are pertinent to a drive Microsoft lately uncovered as aiming a U.S. presidential candidate, government officials, media targets, and leading expat Iranians. The Continue Reading
By