Tags remote code execution

'Spring4Shell' bug in framework for Java programming draws widespread warnings

by Joe Warminsky • 2 months ago

Web applications created in the Spring platform could leave users open to remote code execution, CISA and others are warning.

NSA says it found new critical vulnerabilities in Microsoft Exchange Server

by Sean Lyngaas • 1 year ago

The news comes at a time of heightened concern over bugs in Exchange Server.

F5 releases patches for nearly two dozen vulnerabilities, some critical

by Tim Starks • 1 year ago

It's the second time in as many years that F5 has revealed flaws that could allow remote code execution.

SolarWinds issues patches for two new critical bugs found in Orion software

by Sean Lyngaas • 1 year ago

One of the bugs offers a similar level of system access that the alleged Russian spies achieved.

Router vendor has patched some zero-days, but leaves others wide open

by Sean Lyngaas • 2 years ago

A researcher found 10 previously undisclosed vulnerabilities in MoFi Networks routers that could allow attackers to steal passwords and data from networks.

CISA confirms hackers are exploiting F5 flaw on federal and private networks

by Sean Lyngaas • 2 years ago

Two compromises have been confirmed. An investigation into other possible breaches is ongoing.