Apache Tomcat is a free and open-source implementation of the Jakarta Servlet, Jakarta Expression Language, and WebSocket technologies. Tomcat provides a “pure Java” HTTP web server environment in which Java code can run. On...
According to the official blog of Google Chrome, the stable version of Google Chrome that is currently applicable to the desktop version has been updated to version 94.0.4606.71 to fix vulnerabilities. Chrome 94.0.4606.71 repaired...
AMD recommends that Windows users who use their Ryzen 1000 to 3000 series processors install a security update as soon as possible because there is a high-risk vulnerability in the processor chipset driver that...
Previously, researchers discovered that hackers used zero-day vulnerabilities in the MSHTML engine to launch attacks in the wild. This vulnerability has a high level of damage and has attracted attention. The so-called MSHTML engine...
According to the news published on the official blog of Google Chrome, this week the Google Chrome development team has launched a security update of version 93.0.4577.82 to all stable version users. This security...
Earlier researchers discovered that the notorious Israeli spyware developer NSO Group used unknown vulnerabilities in Apple iMessage to conduct attacks. Theoretically speaking, government agencies that purchase Pegasus spyware only need to know the target...
On September 7, 2021, Microsoft officially released a risk notice for the MSHTML component, the vulnerability number is CVE-2021-40444 with the CVSS:3.0 score of 8.8 / 7.9. Microsoft ActiveX control is a product of...
Bluetooth technology is currently a widely-used communication technology. A vulnerability may affect hundreds of millions of devices around the world. If more manufacturers are affected by the vulnerability, the scale of the affected devices...
TensorFlow, an open-source machine learning and artificial intelligence project provided by Google, has already given up support for YAML. The reason for the abandonment is that there may be security issues in continuing to...
OPENSSL has several high-risk security vulnerabilities recently. Attackers use the vulnerabilities to access private content such as private keys and sensitive information. The OPENSSL development team has announced on the official website, the vulnerability...
AMD recently released a new Ryzen chipset driver, version 3.08.17.735, which fixes the critical security vulnerability of the AMD platform security processor driver. However, AMD did not disclose the details of the security vulnerabilities...
Razer Synapse software has a zero-day vulnerability. Anyone who owns a Razer mouse or keyboard can obtain the system permission within a few minutes. If someone doesn’t know what Razer Synapse software is, Razer...
Researchers at Google’s Project Zero will look for errors in various systems and software. Developers will have 90 days to fix the vulnerabilities after discovering the vulnerabilities. If the details of these vulnerabilities have...
QNX is a UNIX-like operating system, which was acquired by BlackBerry many years ago and used in various industrial facilities. Some factories and medical equipment use this system. Unfortunately, there are still many companies...
On August 10, 2021, SonicWall officially released a risk notice for SonicWall Analytics, the vulnerability number is CVE-2021-20032 with the CVSSv3 score of 9.8. The JDWP remote debugging interface of SonicWall Analytics 2.5 On-Prem...
