WhatsApp Flaw on Windows Could Allow Arbitrary Code Execution
Researchers report a WhatsApp for Windows vulnerability that could allow arbitrary code execution. Users should update to version 2.2450.6 or beyond as soon as possible.
Read MoreCISA Exploit List
Firefox Users Urged to Patch Critical Browser Flaw
Mozilla has patched a critical Firefox flaw resembling a recent Chrome zero-day. Users are urged to update as soon as possible.
Read MoreGoogle and Mozilla Patch High-Severity Vulnerabilities in Chrome and Firefox
Many of these vulnerabilities could be used to execute arbitrary code.
Read MoreTeamViewer Patches Privilege Escalation Vulnerability in Windows Clients
Users are strongly urged to update their TeamViewer installations to the latest version.
Read MoreCISA Warns of Active Exploitation of Critical Flaws in Zyxel Firewalls and Other Platforms
Among them, the most significant is CVE-2024-51378 (CVSS score 10.0), an incorrect default permissions vulnerability that allows attackers to execute arbitrary code commands.
Read MoreExploit Released for Critical WhatsUp Gold RCE Vulnerability—Immediate Patching Required
The flaw allows unauthenticated attackers to execute arbitrary code on vulnerable installations.
Read MoreI-O Data Routers Targeted in Zero-Day Attacks, Full Patches Pending
While the company has released interim mitigations, complete firmware patches are still under development for 2 of the three vulnerabilities.
Read MoreMozilla Firefox Zero-Day Actively Exploited, Patch Released
This ‘use-after-free’ vulnerability allows remote code execution and has been actively exploited in the wild.
Read MoreThousands of Adobe Commerce E-stores Hacked by Exploiting the ‘CosmicSting’ Bug
This breach affects approximately 5% of all stores using these platforms.
Read MoreCISA Known Exploited Vulnerabilities January, 2024 Update
Happy New Year! We start of 2024 with a list of high-severity flaws that were added in December. Take a look and apply patches as needed.
Read More