Search results

A security researcher has released details of a code execution vulnerability, known as 'Panstdown', in the OpenBMC baseboard management controller (BMC) firmware.

On February 1, 2019, all major Domain Name System (DNS, IETF RFC1035) providers will be updating their products and services to address known techniques to bypass the Extension Mechanisms Protocol for DNS (EDNS), known as DNS Flag Day.

A vulnerability has been discovered in the GNU Project's wget file transfer utility. A local authenticated user could exploit this vulnerability to obtain sensitive information.

Stryker have released a security update to address vulnerabilities in their wireless enabled medical bed products. These relate to a vulnerability in WPA2 (Wireless Protected Access 2) known as KRACK (Keyless Re-installation Attack).

Cisco has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

Adobe has released security updates to address vulnerabilities in Adobe Acrobat and Reader. An attacker could exploit these vulnerabilities to take control of an affected system.

Cisco has released security updates to address multiple vulnerabilities in their AsyncOS software for Cisco Email Security Appliances. A remote attacker could exploit these vulnerabilities to cause a denial-of-service condition.

Mozilla has released a security update to address vulnerabilities in Thunderbird. An attacker could exploit one of these vulnerabilities to take control of an affected system.