The maintainer of the Linux kernel project Greg Kroah-Hartman decided to prohibit the University of Minnesota (UMN) from contributing to the open-source Linux project. The reason is that researchers at the University of Minnesota...
WebSphere Application Server is a software product that performs the role of a web application server. More specifically, it is a software framework and middleware that hosts Java-based web applications. It is the flagship...
Pulse Connect is an enterprise-class high-performance VPN system, which is widely used in enterprises. On April 20, 2021, PulseSecure released a risk notice for Pulse Connect Secure remote code execution, the vulnerability number is...
A vulnerability was revealed in Windows 10 in January this year, which could be used to damage the contents of NTFS formatted drives, causing the system to crash. “By simply changing to the folder...
In 2015, a shooting occurred in San Bernardino, California. The shooting resulted in 14 deaths and 21 injuries. In addition, 3 other people were killed. When investigating the case, the FBI sought Apple to...
On April 13, 2021, Microsoft officially released the Patch Tuesday 2021 April. The security update patches for 114 vulnerabilities, mainly covering the following components: Windows operating system, Exchange Server, Azure, Office, SharePoint Server, Hyper-V,...
According to Google’s official blog, the company has released a new version (89.0.4389.128) to the Google Chrome stable channel, which is mainly suitable for fixing a certain security vulnerability. Specifically, this security vulnerability has...
Microsoft Exchange Server is a mail server and calendaring server developed by Microsoft. It runs exclusively on Windows Server operating systems. The first version was called Exchange Server 4.0, to position it as the...
Recently, a security researcher released the POC details of the Chrome 0-Day remote code execution vulnerability. This vulnerability has been verified. At present, Google has only released a beta version of Chrome (90.0.4430.70) fixes...
On April 07, 2021, Cisco released a risk notice for multiple vulnerabilities in Cisco Small Business RV Series Routers. The vulnerability numbers are CVE-2021-1472 and CVE-2021-1473. The CVSS score is 7.3. Vulnerability Detail CVE-2021-1473:...
On April 7, 2021, Cisco released a risk notice for the Unified Communications products, the vulnerability number is CVE-2021-1362. The CVSS score is 8.8. The Cisco Unified Suite is a powerful call processing component...
Cisco SD-WAN is the enterprise-wide area network solution proposed by Cisco. Cisco takes security capabilities as the core and integrates security capabilities into the entire SD-WAN solution through WAN device integration, providing comprehensive security...
Spectre and Meltdown series vulnerabilities are security issues that have plagued the entire industry in recent years because these vulnerabilities are based on the Intel processor hardware level and cannot be repaired. Although Intel...
On April 1, 2021, VMware issued a risk notice of VMSA-2021-0005 to fix authentication bypass vulnerability on VMware Carbon Black Cloud Workload, the vulnerability number is CVE-2021-21982 with the CVSSv3 score of 9.1. Attackers...
On March 30, 2021, VMWare had issued a risk notice of VMSA-2021-0004 to alert two vulnerabilities on VMWare vRealize. The vulnerability number is CVE-2021-21975, CVE-2021-21983. It is worth noting that these two vulnerabilities can...
