Veeam is warning its customers of two vulnerabilities, of which one is a critical RCE bug, affecting the Service Provider Console (VSPC), a web-based management platform for managed service providers ...

A bug in the software-defined infrastructure management platform HPE OneView allows for remote code execution by threat ...

Veeam released security updates today to address two Service Provider Console (VSPC) vulnerabilities, including a critical remote code execution (RCE) discovered during internal testing. VSPC, ...

CISA confirmed today that attackers are actively exploiting a critical remote code execution (RCE) bug patched by Fortinet on Thursday. The flaw (CVE-2024-21762) is due to an out-of-bounds write ...

Apple finally has released more details on the mysterious updates the company silently pushed last week for iOS and iPadOS 17.4.1. As it turns out, the updates address a new vulnerability in the ...

IT management software provider SolarWinds has urged customers to immediately patch a critical vulnerability in its Web Help Desk platform. CVE-2024-28986 is a Java deserialization remote code ...

Microsoft fixed 60 vulnerabilities in this month’s Patch Tuesday security update round, including just two critical bugs. These both affect Windows Hyper-V. CVE-2024-21407 enables attackers to escape ...

A Chinese threat actor is once again exploiting Ivanti remote access devices at large. It all started last January, when two serious vulnerabilities were discovered in Ivanti's Connect Secure (ICS) ...

In light of new memory safety features added to Apple’s latest iPhone chips that make entire classes of exploits harder to pull off, the company has revamped its bug bounty program to double or ...