Tags remote code execution
'Spring4Shell' bug in framework for Java programming draws widespread warnings
Web applications created in the Spring platform could leave users open to remote code execution, CISA and others are warning.
NSA says it found new critical vulnerabilities in Microsoft Exchange Server
The news comes at a time of heightened concern over bugs in Exchange Server.
F5 releases patches for nearly two dozen vulnerabilities, some critical
It's the second time in as many years that F5 has revealed flaws that could allow remote code execution.
SolarWinds issues patches for two new critical bugs found in Orion software
One of the bugs offers a similar level of system access that the alleged Russian spies achieved.
Router vendor has patched some zero-days, but leaves others wide open
A researcher found 10 previously undisclosed vulnerabilities in MoFi Networks routers that could allow attackers to steal passwords and data from networks.
CISA confirms hackers are exploiting F5 flaw on federal and private networks
Two compromises have been confirmed. An investigation into other possible breaches is ongoing.