Lucene search
K

6 matches found

The Hacker News
The Hacker News
added 2024/05/08 7:3 a.m.40 views

Hackers Exploiting LiteSpeed Cache Bug to Gain Full Control of WordPress Sites

A high-severity flaw impacting the LiteSpeed Cache plugin for WordPress is being actively exploited by threat actors to create rogue admin accounts on susceptible websites. The findings come from WPScan, which said that the vulnerability CVE-2023-40000, CVSS score: 8.3 has been leveraged to set u...

8.3CVSS6.5AI score0.54872EPSS
Exploits5
NVD
NVD
added 2022/08/24 8:15 p.m.33 views

CVE-2022-32894

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.6.1 and iPadOS 15.6.1, macOS Monterey 12.5.1. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively...

7.8CVSS0.03259EPSS
Exploits0References8
ThreatPost
ThreatPost
added 2021/10/27 4:14 p.m.51 views

Apple Patches Critical iOS Bugs; One Under Attack

Apple lovers who haven’t yet updated to iOS 15, you may want to pop into Settings to freshen up your iPhone now: Apple has released several critical security updates that might light a fire under your britches. On Monday and Tuesday, Apple released iOS 14.8.1, iPadOS 14.8.1, watchOS 8.1 and tvOS...

9.3CVSS8.1AI score0.14721EPSS
Exploits0References10
ThreatPost
ThreatPost
added 2020/09/04 4:12 p.m.13 views

Facebook Debuts Third-Party Vulnerability Disclosure Policy

Facebook has implemented a fresh security vulnerability disclosure policy VDP this week – in an effort to explain how it decides when and how to roll out details on various bugs that its team finds in third-party software and open-source projects. Generally speaking, companies will have 21 days t...

7.3AI score
Exploits0References8
ThreatPost
ThreatPost
added 2019/03/27 3:26 p.m.97 views

Cybercriminals Have a Heyday with WinRAR Bug in Fresh Campaigns

A recently discovered vulnerability in the WinRAR file archival utility has been exploited in a slew of new campaigns, including one with a never-before-seen payload. The flurry of activity shows no sign of waning as cybercriminals continue to find success exploiting the bug. The campaigns take...

6.8CVSS0.96274EPSS
Exploits13References9
ThreatPost
ThreatPost
added 2013/02/12 7:32 p.m.24 views

Microsoft Patches Critical IE Vulnerabilities

Internet Explorer continues to dominate Microsoft’s 2013 security updates. Among the 12 bulletins and 57 vulnerabilities patched in today’s release was a cumulative update for the maligned browser and another fix for a bug being exploited in the wild. Last month, an out-of-band fix for IE 6-8...

9.3CVSS1.4AI score0.26696EPSS
Exploits1References18
Rows per page
Query Builder