Cisco SD-WAN vManage Software – Multiple Vulnerabilities

CVE numbers = CVE-2021-1137, CVE-2021-1479 and CVE-2021-1480 Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to

Read more

Citrix Patches three DoS Vulnerabilities in Hypervisor

Two security issues have been identified in Citrix Hypervisor (formerly Citrix XenServer) that may allow privileged code in a guest

Read more

Vulnerability in ‘netmask’ npm package [CVE-2021-28918]

CVE number – CVE-2021-28918 A vulnerability has been found in the netmask npm package that could expose private networks and

Read more

Apache SpamAssassin malicious rule configuration [CVE-2020-1946]

CVE number – CVE-2020-1946 Apache SpamAssassin 3.4.5 was recently released [1], and fixes an issue of security note where malicious

Read more

F5 iControl REST unauthenticated remote command execution vulnerability [CVE-2021-22986]

CVE number = CVE-2021-22986 The iControl REST interface has an unauthenticated remote command execution vulnerability. This vulnerability allows for unauthenticated

Read more

F5 Advanced WAF/ASM buffer-overflow vulnerability (CVE-2021-22992)

A malicious HTTP response to an Advanced WAF/ASM virtual server with Login Page configured in its policy may trigger a

Read more

Cisco RV132W and RV134W Routers Remote Command Execution and Denial of Service Vulnerability [CVE-2021-1287]

CVE number = CVE-2021-1287 A vulnerability in the web-based management interface of Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco RV134W VDSL2

Read more

Sony X800H Smart TV Vewd Type-Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sony X800H Smart TV. User interaction is

Read more

Microsoft Windows Update Assistant Improper Access Control Privilege Escalation Vulnerability [CVE-2021-27070]

CVE number – CVE-2021-27070 This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker

Read more

Microsoft Windows CInteractionTrackerMarshaler Use-After-Free Privilege Escalation Vulnerability [CVE-2021-26900]

CVE number = CVE-2021-26900 This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker

Read more
%d bloggers like this: