Security news that informs and inspires

Archive

94 results for tag Vulnerability:

SolarWinds Warns of Web Help Desk Hardcoded Credential Bug

Hotfixes are available for both a hardcoded credential flaw and a deserialization remote code execution flaw in SolarWinds Web Help Desk.

Vulnerability

Exploit Code Available For Critical Ivanti vTM Bug

Ivanti has fixed a critical-severity flaw in its Virtual Traffic Manager (vTM), which if exploited could enable attackers to bypass authentication and create a user with administrator privileges.

Vulnerability

SAP Fixes Three High-Severity Flaws

The most severe flaw stems from password requirements not being checked in some features of SAP’s NetWeaver Java User Management Engine.

Vulnerability

Ivanti Patches Critical RCE Standalone Sentry Flaw

At the time of disclosure, Ivanti said it is not currently aware of the flaw being exploited.

Vulnerability

QNAP Fixes Critical Flaws Impacting NAS Devices

QNAP is warning of three new vulnerabilities in QTS, QuTS hero, QuTScloud and myQNAPcloud.

Vulnerability