Articles tagged with flaw

vBulletin Zero-Day Surfaces Online Following Patch Bypass

IT|Aug 15, 2020

Recently, vBulletin addressed a zero-day vulnerability that was quickly exploited. The bug appeared as a result of bypassing the patch for a previously known and fixed vulnerability. [more]

Critical Vulnerability Discovered in Chrome, Users Should Upgrade to Chrome 81

Google|Apr 24, 2020

Heads up, Chrome users! A critical vulnerability exists in the Chrome browser that poses a security risk to users. Fortunately, Google has patched the bug before it could be exploited in the wild. Make sure to upgrade your devices to Google Chrome 81. [more]

Critical Vulnerability In VMware vCenter Server Threatened Information Disclosure

IT|Apr 17, 2020

VMware has disclosed another serious vulnerability affecting its vCenter Server. The vulnerability, upon exploitation, could lead to information disclosure. [more]

A Study of the top 150,000 Android Apps Reveals 12,706 to Contain a Variety of Backdoors

Google|Apr 15, 2020

A Study of the top 150,000 Android Apps Reveals 12,706 to Contain a Variety of Backdoors Once again, numerous Android apps with suspicious behavior have surfaced online. [more]

Slack Patch Critical Vulnerability Allowing Automated Account Takeovers

General|Mar 22, 2020

A critical security vulnerability existed in Slack that could have lead to a massive data breach affecting its customers. Slack also fixed another vulnerability together with this one. [more]

Slack Patch Critical Vulnerability Allowing Automated Account Takeovers

General|Mar 18, 2020

A critical security vulnerability existed in Slack that could have lead to a massive data breach affecting its customers. Slack also fixed another vulnerability together with this one. [more]

Serious Facebook Glitch Temporarily Exposed Page Admin Accounts

General|Jan 16, 2020

Once again, Facebook has (unintentionally) breached users’ privacy. Facebook developed a glitch that exposed page admin accounts to the public. Though, it was a short-lived bug, people still managed to exploit it for numerous high-profile pages. [more]

Multiple TikTok Vulnerabilities Could Exploit Or Delete Users’ Personal Data

General|Jan 12, 2020

Social media craze TikTok has now made it to the news owing to security issues. Researchers have found numerous vulnerabilities in the TikTok app that could risk users’ security. Exploiting the bugs could allow an attacker to add or delete users’ videos or alter privacy... [more]

WP Database Reset Plugin Had Some ‘Easily Exploitable’ Vulnerabilities

General|Jan 3, 2020

Another threat to WordPress sites has surfaced online. Researchers have discovered some serious security vulnerabilities in the WP Database Reset plugin. What’s threatening with these vulnerabilities is their easily exploitable nature. [more]

Buffer Overflow Exploit Discovered That Overwrites Admin Password of TP-Link Archer Routers

General|Dec 21, 2019

A serious security bug affected numerous TP-Link routers. The vulnerability in TP-Link Archer routers could allow a potential attacker to remotely take over the device. [more]

Vulnerability Hit Truecaller App Potentially Affecting Millions Of Users

General|Nov 26, 2019

The popular call-blocking application Truecaller has recently made it to the news due to a security flaw. A researcher discovered a serious vulnerability in the Truecaller app that could have threatened the security of millions of users. [more]

Microsoft September Patch Tuesday Addresses Two Actively Exploited Zero-Day Bugs

Microsoft|Sep 16, 2019

This Tuesday, Microsoft has rolled-out its scheduled monthly updates for 80 different bugs. Notably, the September Patch Tuesday update bundle from Microsoft brings fixes for two zero-day bugs under active exploit. [more]

Multiple Vulnerabilities In Microsoft Server Infrastructure Allows Arbitrary Code Execution

Microsoft|May 7, 2019

Researchers have discovered numerous vulnerabilities in Microsoft server. These vulnerabilities, upon exploit, could threaten the integrity and confidentiality of the systems. Two of these vulnerabilities could even allow arbitrary code execution. [more]

Google Chrome 72: Deprecates TLS 1.0 And 1.1

Google|Feb 15, 2019

Google has rolled out the latest version of its Chrome browser for all compatible operating systems. The new Google Chrome 72 release holds significance as it brings major updates with it. Not only it fixes tens of security vulnerabilities but also deprecates TLS 1.0 and TLS 1.1. [more]