GNU C Library (glibc) vulnerability CVE-2021-3999 Security Advisory Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or individual that will use it ...
More info:
https://support.f5.com/csp/article/K24207649?utm_source=f5support&utm_medium=RSS
PostgreSQL JDBC vulnerability CVE-2022-21724 Security Advisory Security Advisory Description pgjdbc is the offical PostgreSQL JDBC Driver. A security hole was found in the jdbc driver for ...
More info:
https://support.f5.com/csp/article/K69124112?utm_source=f5support&utm_medium=RSS
PosGreSQL JDBC vulnerability CVE-2021-21724 Security Advisory Security Advisory Description A ZTE product has a memory leak vulnerability. Due to the products improper handling of memory release ...
More info:
https://support.f5.com/csp/article/K69124112?utm_source=f5support&utm_medium=RSS
If you have not deployed the Workspace ONE Console patches or workarounds of December 2021 documented in VMSA-2021-0029, now is the time to do so. These workarounds and patches prevent exploitation of CVE-2021-22054. Details of this issue have now become available, which makes exploitation in the wild more likely. We have closely worked with the … ContinuedThe post Workspace ONE UEM SSRF CVE-2021-22054 Patch Alert appeared first on VMware Security Blog.
More info:
https://blogs.vmware.com/security/2022/04/workspace-one-uem-ssrf-cve-2021-22054-patch-alert.html?utm_source=rss&utm_medium=rss&utm_campaign=workspace-one-uem-ssrf-cve-2021-22054-patch-alert
If you have not deployed the Workspace ONE Console patches or workarounds of December 2021 documented in VMSA-2021-0029, now is the time to do so. These workarounds and patches prevent exploitation of CVE-2021-22054. Details of this issue have now become available, which makes exploitation in the wild more likely. We have closely worked with the … ContinuedThe post Workspace ONE UEM SSRF CVE-2021-22054 patch alert appeared first on VMware Security Blog.
More info:
https://blogs.vmware.com/security/2022/04/workspace-one-uem-ssrf-cve-2021-22054-patch-alert.html?utm_source=rss&utm_medium=rss&utm_campaign=workspace-one-uem-ssrf-cve-2021-22054-patch-alert
Apple Mac OS X Wiki Server vulnerability CVE-2008-1579 Security Advisory Security Advisory Description Wiki Server in Apple Mac OS X 10.5 before 10.5.3 allows remote attackers to obtain sensitive ...
More info:
https://support.f5.com/csp/article/K54501561?utm_source=f5support&utm_medium=RSS
BIG-IP self IP vulnerability CVE-2020-5923 Security Advisory Security Advisory Description Self-IP port-lockdown bypass by way of IPv6 link-local addresses. (CVE-2020-5923) Impact Port lockdowns ...
More info:
https://support.f5.com/csp/article/K05975972?utm_source=f5support&utm_medium=RSS
Linux kernel vulnerability CVE-2021-4155 Security Advisory Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when ...
More info:
https://support.f5.com/csp/article/K71080411?utm_source=f5support&utm_medium=RSS
This article was written by Darshan Rana. Overview: A new backdoor malware campaign known as ‘Serpent’ is targeting French government agencies and construction firms. To distribute the attack chain, the threat actor uses a macro-based Microsoft Word document file. The attack vector is exploiting a third-party Windows package manager to install Serpent. The initial document … ContinuedThe post Serpent – The Backdoor that Hides in Plain Sight appeared first on VMware
More info:
https://blogs.vmware.com/security/2022/04/serpent-the-backdoor-that-hides-in-plain-sight.html?utm_source=rss&utm_medium=rss&utm_campaign=serpent-the-backdoor-that-hides-in-plain-sight
Cyberattacks against financial institutions have escalated from heist to hijack and from dwell to destruction. In this episode of Ask the Howlers, VMware’s Tom Kellermann, Head of Cybersecurity, and Rick McElroy, Principal Cybersecurity Strategist, discuss the findings from this year’s Modern Bank Heists 5.0 report. Gain insights on: Chronos attacks – manipulation of time and … ContinuedThe post Modern Bank Heists 5.0 – Adversaries Are After More Than Your Money
More info:
https://blogs.vmware.com/security/2022/04/modern-bank-heists-5-0-adversaries-are-after-more-than-your-money.html?utm_source=rss&utm_medium=rss&utm_campaign=modern-bank-heists-5-0-adversaries-are-after-more-than-your-money
