Search Results

New multiple vulnerabilities have been discovered in WordPress Content Management System which allows a remote user to take control of the affected system. Danger level: Medium Availability of fixes: Yes Number of vulnerabilities: 4 CVE ID: No Information Vector of operation: Remote Impact: Cross-site scripting, Denial of service, Security Bypass

Multiple Vulnerabilities in Apple OS X, Apple iOS, and Apple TV Danger level: High Availability fixes: Yes Number of vulnerabilities: 7 CVE ID: CVE-2014-4451, CVE-2014-4452, CVE-2014-4453, CVE-2014-4458, CVE-2014-4459, CVE-2014-4462, CVE-2014-4463 Vector of operation: Remote Impact: Disclosure of sensitive data, Security Bypass, system compromise Affected Products: Apple Macintosh OS X, Apple iOS 8.x, Apple TV 7.x […]

Multiple vulnerabilities in Cerberus FTP Server There are three vulnerabilities (Denial of service and Security Bypass) fixed in the Windows-based FTP Server (CVE-2014-3513, CVE-2014-3567, CVE-2014-3568). Danger level: Middle Availability fixes: Yes Number of vulnerabilities: 3 CVSSv2 Rating: (AV: N / AC: L / Au: N / C: N / I: N / A: C / […]

Cisco partially eliminated vulnerabilities in routers for small business. Update for Cisco RV220W Wireless Network Security Firewall will be available within a month. As follows from the security notices published by Cisco developers on Wednesday, November 5, the company eliminated the dangerous vulnerabilities in four models of its routers series RV, intended for use by […]

Three new vulnerabilities in the Open Source CRM EspoCRM: PHP File Inclusion, Improper Access Control and Reflected Cross-Site Scripting. Danger level: High Availability Corrections: Yes Number of vulnerabilities: 3 CVSSv2 Rating: (AV: N / AC: H / Au: N / C: C / I: C / A: C / E: U / RL: OF / […]

Three new vulnerabilities in Cisco Adaptive Security Appliance There are three vulnerabilities fixed in the Cisco product (Adaptive Security Appliance): Smart Call Home Digital Certificate Validation Vulnerability; VPN Failover Command Injection Vulnerability; Clientless SSL VPN Information Disclosure and Denial of Service Vulnerability. Administrators are advised to install the latest version from the manufacturer’s web site. […]

#1 Denial of service and system compromise in FreeBSD (Remote Buffer Overflow vulnerability) Danger level: High Availability Corrections: Yes Quantity of vulnerabilities: 1 CVSSv2 Rating: (AV: L / AC: M / Au: N / C: C / I: C / A: C / E: U / RL: O / RC: C) = Base: 6.9 / […]

Five new vulnerabilities in universal instant messenger client There are five vulnerabilities fixed in the client messaging Pidgin. Administrators are advised to update to version 2.10.10. The program for instant messaging on the Internet Pidgin updated to version 2.10.10. Administrators are advised to install the updates immediately because they fixed five vulnerabilities. Vulnerability CVE-2014-3698 allows […]

Two vulnerabilities in the Linux Kernel Danger level: Low Availability Fixes: Instructions on corrective action Quantity of vulnerabilities: 2 CVSSv2 Rating: 1.¬† (AV: L / AC: L / Au: N / C: N / I: N / A: P / E: U / RL: W / RC: C) = Base: 2.1 / Temporal: 1.7 2. […]

SQL Injection / Command Injection¬†in Centreon and Centreon Enterprise Server Critical vulnerabilities has been identified in all versions of the free system monitoring Centreon, issued since 2008 (Centreon <= 2.5.2 and Centreon Enterprise Server <= 2.2 | 3.0). These vulnerabilities can be exploited by anonymous users without passing authentication. Update with security fixes until released. […]