Vulnerability • InfoTech News

1 min read

Vulnerability

CVE-2020-3950: VMware Privilege Escalation Vulnerability Alert

5 days ago ddos

On March 17, VMware officially released a security bulletin numbered VMSA-2020-0005, which fixed an elevation of privilege vulnerability (CVE-2020-3950) in...

1 min read

Vulnerability

CVE-2020-1947: Apache ShardingSphere Remote Code Execution Vulnerability Alert

5 days ago ddos

On March 10th, the Apache ShardingSphere library released a new version 4.0.1, which fixed a remote code execution vulnerability (CVE-2020-1947)....

2 min read

Vulnerability

Microsoft urgently releases remote code execution vulnerability notice affecting all Windows versions

5 days ago ddos

Recently, Microsoft has issued an emergency vulnerability notice ADV200006. The notice indicates that there were two remote code execution 0-day...

2 min read

Vulnerability

360Netlab finds multiple vulnerabilities in LILIN DVR and has been compromised by botnets

6 days ago ddos

The security of IoT devices, such as video recorders, has always been poor. Such devices usually have extremely slow firmware...

2 min read

Intel has released patches to mitigate Load Value Injection vulnerabilities

2 weeks ago ddos

Operating system developers such as Microsoft have released security updates to their operating systems this month, and this update includes...

2 min read

Vulnerability

Open-source security vulnerabilities increase by nearly 50% in 2019

2 weeks ago ddos

WhiteSource conducted a survey of more than 650 developers, collected data from channels such as NVD, security bulletins, peer-reviewed vulnerability...

1 min read

Multiple Vulnerabilities in Microsoft Products fix in Patch Tuesday March

3 weeks ago ddos

On March 10, 2020, Microsoft released the Patch Tuesday, March. Microsoft released as many as 115 bug fixes, mainly covering...

2 min read

Vulnerability

CVE-2020-0796: New Wormable Vulnerability in SMBv3 Alert

3 weeks ago ddos

On March 11, 2020, we detected a security rule announcement issued by the Fortiguard. The notice described a memory corruption...

2 min read

Android becomes the most vulnerable operating system in 2019

3 weeks ago ddos

In terms of operating system security, the Android system is relatively poor. It is not that Google did not fix...

1 min read

Vulnerability

CVE-2020-8597: Linux system pppd Remote Code Execution Vulnerability Alert

3 weeks ago ddos

On March 6, US-CERT issued an announcement regarding a 17-year-old remote code execution vulnerability affecting the Point-to-Point Protocol Daemon (pppd)...

1 min read

Vulnerability

CVE-2020-5405: Spring-cloud-config-server Path Traversal Vulerability Alert

3 weeks ago ddos

On February 26, Spring officially released a vulnerability notice in Spring Cloud Config. Yiming Xiang security researchers from NSFOCUS discovered...

1 min read

Vulnerability

CVE-2020-2555: Oracle’s WebLogic Server Remote Code Execution Vulnerability Alert

3 weeks ago ddos

Oracle WebLogic Server is a Java EE application server currently developed by Oracle Corporation. Oracle acquired WebLogic Server when it...

2 min read

Vulnerability

Let’s Encrypt needs to revoke 116 million certificates due to security issues

4 weeks ago ddos

Let's Encrypt, a free certificate project initiated by the Internet Security Research Group issued an urgent reminder a few days...

3 min read

Google to fix MediaTek-su high-risk security vulnerability in Android security update released this month

4 weeks ago ddos

According to the XDA Developer Forum, Google will release an Android security update this month to fix high-risk vulnerabilities in...

1 min read

Vulnerability

CVE-2019-15126: Serious vulnerability in Wifi encryption

1 month ago ddos

Wi-Fi chips manufactured by Cypress and Broadcom exist serious security vulnerabilities (CVE-2019-15126), making billions of devices around the world very...

CVE-2020-3950: VMware Privilege Escalation Vulnerability Alert

CVE-2020-1947: Apache ShardingSphere Remote Code Execution Vulnerability Alert

Microsoft urgently releases remote code execution vulnerability notice affecting all Windows versions

360Netlab finds multiple vulnerabilities in LILIN DVR and has been compromised by botnets

Intel has released patches to mitigate Load Value Injection vulnerabilities

Open-source security vulnerabilities increase by nearly 50% in 2019

Multiple Vulnerabilities in Microsoft Products fix in Patch Tuesday March

CVE-2020-0796: New Wormable Vulnerability in SMBv3 Alert

Android becomes the most vulnerable operating system in 2019

CVE-2020-8597: Linux system pppd Remote Code Execution Vulnerability Alert

CVE-2020-5405: Spring-cloud-config-server Path Traversal Vulerability Alert

CVE-2020-2555: Oracle’s WebLogic Server Remote Code Execution Vulnerability Alert

Let’s Encrypt needs to revoke 116 million certificates due to security issues

Google to fix MediaTek-su high-risk security vulnerability in Android security update released this month

CVE-2019-15126: Serious vulnerability in Wifi encryption

Kaspersky: malware takes advantage of coronavirus to steal credit card data

FireEye: 76% ransomware attacks against enterprises occur during after hours

Microsoft blocked a botnet that infected 9 million computers

Cerberus banking trojan can steal two-factor authentication code from the Google Authenticator app

Zoom app to share user data with Facebook, even if the user does not have a Facebook account

Hacker demands $100 million for AMD Navi graphics source code

Weibo leaked 538 million user records for sale on the dark web

ICO has fined Cathay Pacific Airways £500,000 due to data breach