Multiple vulnerabilities in VMware ESXi, Workstation, and Fusion were privately reported to VMware Multiple vulnerabilities in VMware ESXi, Workstation, and Fusion were privately reported to VMware. Updates are available to remediate these vulnerabilities in affected VMware products. The individual vulnerabilities documented on this VMSA have severity Important/Moderate but combining these issues may result in higher […]
Argo CD High Severity Vulnerabilit – CVE-2022-24348 Argo CD before 2.1.9 and 2.2.x before 2.2.4 allows directory traversal related to Helm charts because of an error in helmTemplate in repository.go. For example, an attacker may be able to discover credentials stored in a YAML file. Read more: https://www.armosec.io/blog/cve-2022-24348-argo-kubernetes/ Windows DNS Server Remote Code Execution Vulnerability […]
Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution – CVE-2022-44142 All versions of Samba prior to 4.13.17 are vulnerable to an out-of-bounds heap read write vulnerability that allows remote attackers to execute arbitrary code as root on affected Samba installations that use the VFS module vfs_fruit. Read more: https://www.samba.org/samba/security/CVE-2021-44142.html Libexpat CVE-2022-23852 & […]
Apple Fixes Zero-Day Vulnerabilities The latest versions of iOS / iPadOS (15.3) and macOS (11.6.3, 12.2) released on January 26, 2022, Apple patched several vulnerabilities in the OS presumed exploited in the wild to hack iPhone and Mac devices. Apple has been working hard to keep their OS secure by fixing these vulnerabilities as soon […]
Bring a little competition to the table and the excitement of learning the Kubernetes basics is a bit more fun. Kubernetes is an open source orchestration platform which automates the process of deploying and scaling container applications. Over the last years our customer base and the maturity of our services aligned with Kubernetes has grown […]
Published: 2021-06-11CVE-2021-3560 “A flaw was found in polkit. When a requesting process disconnects from dbus-daemon just before the call to polkit_system_bus_name_get_creds_sync starts, the process cannot get a unique uid and pid of the process and it cannot verify the privileges of the requesting process.” The error is not handled correctly and the request is granted […]
…or what happens if a link in a phishing e-mail is clicked? It is a hard question to answer because attackers usually implement filtering methods. For example: If you have an apple device you get directed to one place If two hours go by before you click the link, its sent to a different place […]
The year 2021 has seen several high profiled vulnerabilities being actively exploited in bigand popular software, including Microsoft Exchange and Solar Winds Orion. Experience shows that in some cases it is too late to patch even after a few days.Many organizations work with the guideline of patching within 30 days, if the vendor states theupdate […]
Published: 2021-03-02CVE-2021-26855CVE-2021-26857CVE-2021-26858 CVE-2021-27065 “Microsoft has detected multiple 0-day exploits being used to attack on-premises versions of Microsoft Exchange Server in limited and targeted attacks. In the attacks observed, the threat actor used these vulnerabilities to access on-premises Exchange servers which enabled access to email accounts, and allowed installation of additional malware to facilitate long-term access to […]
Basefarm has become aware of published news telling of Russian-accredited advanced persistent threat actors, given the name of Sandworm, having exploited Centreon IT monitoring software. Basefarm is aware that some news report mention Orange as on the customer-list of Centreon and while Basefarm is owned by Orange Business Services we would like to make it […]
Photo by Rido Alwarno from Pexels
Image by Glenn Carstens-Peters from Unspalsh
Image by David Mark from Pixabay