A team of researchers from the Ruhr-University Bochum in Germany has reported the attacks bypassing the signature validation in PDF. Digitally signed PDFs
[...]
A stored cross-site scripting vulnerability in the iCloud website reportedly earned a security researcher $5,000.
Source: Dark Reading – Threat Intelligence –
[...]
The confirmation arrives as researchers with NCC Group detect a SonicWall zero-day flaw under active attack.
Source: Dark Reading – Threat Intelligence
[...]
Juniper Threat Labs researchers observed active attacks on Oracle WebLogic software using CVE-2020-14882. This vulnerability, if successfully exploited, allows unauthenticated remote code execution.
[...]
Bug hunters at GitHub Security Labs help shore up German contact tracing app security, crediting open source collaboration.
Source: Threat Post –
[...]
Cisco, the California based tech giant, has identified and disclosed a vulnerability via advisory CVE-2020-3556, regarding the InterProcess Communication (IPC) channel of Cisco
[...]
The exploit could give an attacker complete control of vulnerable WebLogic servers.
Source: Dark Reading – Threat Intelligence – Oracle Issues Out-of-Band
[...]