Aria Automation is affected by a critical vulnerability that could be exploited to gain access to remote organizations and workflows.
The post VMware Urges Customers to Patch Critical Aria Automation Vulnerability appeared first on SecurityWeek.
Aria Automation is affected by a critical vulnerability that could be exploited to gain access to remote organizations and workflows.
The post VMware Urges Customers to Patch Critical Aria Automation Vulnerability appeared first on SecurityWeek.
GitLab has resolved a critical authentication vulnerability allowing attackers to hijack password reset emails.
The post GitLab Patches Critical Password Reset Vulnerability appeared first on SecurityWeek.
Hackers can take complete control of Bosch Rexroth nutrunners, installing ransomware or altering settings to cause financial impact and brand damage.
The post Bosch Nutrunner Vulnerabilities Could Aid Hacker Attacks Against Automotive Production Lines appeared first on SecurityWeek.
QNAP has released patches for a dozen vulnerabilities in its products, including several high-severity flaws.
The post QNAP Patches High-Severity Flaws in QTS, Video Station, QuMagie, Netatalk Products appeared first on SecurityWeek.
A total of more than 28,000 CVE IDs were assigned in 2023 and 84 new CVE Numbering Authorities (CNAs) were named.
The post Vulnerability Handling in 2023: 28,000 New CVEs, 84 New CNAs appeared first on SecurityWeek.
ESET has patched CVE-2023-5594, a high-severity vulnerability that can cause a browser to trust websites that should not be trusted.
The post ESET Patches High-Severity Vulnerability in Secure Traffic Scanning Feature appeared first on SecurityWeek.
Ivanti has patched 20 vulnerabilities in its Avalanche MDM product, including a dozen remote code execution flaws rated critical.
The post Ivanti Patches Dozen Critical Vulnerabilities in Avalanche MDM Product appeared first on SecurityWeek.
Critical vulnerabilities in a Delta OT monitoring product can allow hackers to hide their destructive activities from the victim.
The post Flaws in Delta OT Monitoring Product Can Allow Hackers to Hide Destructive Activities appeared first on SecurityWeek.
LogoFAIL is an UEFI image parser attack allowing hackers to compromise consumer and enterprise devices using malicious logo images.
The post Enterprise, Consumer Devices Exposed to Attacks via Malicious UEFI Logo Images appeared first on SecurityWeek.
Forescout has found 21 vulnerabilities in Sierra Wireless OT/IoT routers that could expose critical infrastructure organizations to remote attacks.
The post 21 Vulnerabilities in Sierra Wireless Routers Could Expose Critical Infrastructure to Attacks appeared first on SecurityWeek.