Unpatched Apple Zero-Day in macOS Finder Allows Code Execution
All a user needs to do is click on an email attachment, and boom — the code is silently executed without the victim
[...]
execution
Critical Remote Code Execution Bugs Found in Python PyPI Repository
Though PyPI has a security folio, it still, they don’t have any transparent policy for the vulnerability assessments. As recently, the operators of
[...]
Adobe Critical Code-Execution Flaws Plague Windows Users
The critical flaws exist in Adobe Framemaker, Connect and the Creative Cloud desktop application for Windows.
Source: Threat Post – Web Security
[...]
Apple Plugs Severe WebKit Remote Code-Execution Hole
Apple pushed out security updates for a memory-corruption bug to devices running on iOS, macOS, watchOS and for Safari.
Source: Threat Post
[...]
Google Warns of Critical Android Remote Code Execution Bug
Google’s Android security update addressed 43 bugs overall affecting Android handsets, including Samsung phones.
Source: Threat Post – Mobile Security – Google
[...]
Citrix SD-WAN Bugs Allow Remote Code Execution
The bugs tracked as CVE-2020–8271, CVE-2020–8272 and CVE-2020–8273 exist in the Citrix SD-WAN Center.
Source: Threat Post – Web Security – Citrix
[...]
Oracle Issues Emergency Patch for Remote Code Execution Vulnerability in Oracle WebLogic Server
IT giant Oracle, on 1st November 2020, issued a Security Alert Advisory, CVE-2020-14750, regarding a remote code execution vulnerability on Oracle WebLogic Server.
[...]
Critical Magento Holes Open Online Shops to Code Execution
Adobe says the two critical flaws (CVE-2020-24407 and CVE-2020-24400) could allow arbitrary code execution as well as read or write access to the
[...]
Firefox 81 Release Kills High-Severity Code-Execution Bugs
Mozilla has fixed three high-severity flaws with the release of Firefox 81 and Firefox ESR 78.3.
Source: Threat Post – Web Security
[...]
Apple Bug Allows Code Execution on iPhone, iPad, iPod
Release of iOS 14 and iPadOS 14 brings fixes 11 bugs, some rated high-severity.
Source: Threat Post – Mobile Security – Apple
[...]