Recently, Linux officially issued a risk notice for remote code execution of Linux Kernel TIPC, the vulnerability number is CVE-2021-43267, the vulnerability level is serious. TIPC (Transparent Inter Process Communication) is a protocol designed...
Cisco issued a security bulletin explaining the recently discovered and fixed security vulnerabilities. According to the bulletin, Cisco used hard-coded debugging accounts in some devices. The so-called hard-coded debugging account refers to the account...
Recently, Intel discovered a security vulnerability in the processor, but the vulnerability is in the older fourth-generation Core processor Haswell, and it is not the processor itself that has a security vulnerability, but in...
GitLab is a fully integrated software development platform based on Git. Gitlab remote command execution vulnerability (CVE-2021-22205) was disclosed in the security update bulletin issued by Gitlab on April 14, 2021. It has appeared...
If you use Google Chrome, please go to the About page to get the latest version. Currently, the stable version of Google Chrome has been updated to version 95.0.4638.69. According to the instructions released...
Apache Tomcat is a free and open-source implementation of the Jakarta Servlet, Jakarta Expression Language, and WebSocket technologies. Tomcat provides a “pure Java” HTTP web server environment in which Java code can run. On...
According to the official blog of Google Chrome, the stable version of Google Chrome that is currently applicable to the desktop version has been updated to version 94.0.4606.71 to fix vulnerabilities. Chrome 94.0.4606.71 repaired...
AMD recommends that Windows users who use their Ryzen 1000 to 3000 series processors install a security update as soon as possible because there is a high-risk vulnerability in the processor chipset driver that...
Previously, researchers discovered that hackers used zero-day vulnerabilities in the MSHTML engine to launch attacks in the wild. This vulnerability has a high level of damage and has attracted attention. The so-called MSHTML engine...
According to the news published on the official blog of Google Chrome, this week the Google Chrome development team has launched a security update of version 93.0.4577.82 to all stable version users. This security...
Earlier researchers discovered that the notorious Israeli spyware developer NSO Group used unknown vulnerabilities in Apple iMessage to conduct attacks. Theoretically speaking, government agencies that purchase Pegasus spyware only need to know the target...
On September 7, 2021, Microsoft officially released a risk notice for the MSHTML component, the vulnerability number is CVE-2021-40444 with the CVSS:3.0 score of 8.8 / 7.9. Microsoft ActiveX control is a product of...
Bluetooth technology is currently a widely-used communication technology. A vulnerability may affect hundreds of millions of devices around the world. If more manufacturers are affected by the vulnerability, the scale of the affected devices...
TensorFlow, an open-source machine learning and artificial intelligence project provided by Google, has already given up support for YAML. The reason for the abandonment is that there may be security issues in continuing to...
OPENSSL has several high-risk security vulnerabilities recently. Attackers use the vulnerabilities to access private content such as private keys and sensitive information. The OPENSSL development team has announced on the official website, the vulnerability...
