Vulnerability Update Posts | CW Enterprises

Security Vulnerability updates on leading operating systems, software, web apps aggregated from the internet.

FakesApp: A New Vulnerability in WhatsApp let Hackers Intercept and Manipulate Messages

11th August 2019BALAJI N

A malicious module called Clicker Trojan installed on nearly 1000 million Android phones via Google play store apps such as audio players, barcode [...]

New Vulnerability Risk Model Promises More-Efficient Security

9th August 2019Curtis Franklin Jr Senior Editor at Dark Reading

Taking into account more factors than the current CVSS makes for a better assessment of actual danger. Source: Dark Reading – Threat [...]

Steam Windows Client Zero-day Privilege Escalation Vulnerability Affects Over 125 Million Users

9th August 2019GURUBARAN S

The Steam windows client privilege escalation vulnerability allows an attacker with normal user privilege can run arbitrary code as an administrator. The Zero-day [...]

Vuln: Zoho ManageEngine Applications Manager '/auditLogAction.do' Module SQL Injection Vulnerability

9th August 2019CW Enterprises

Zoho ManageEngine Applications Manager ‘/auditLogAction.do’ Module SQL Injection Vulnerability Source: Security Focus – Vuln: Zoho ManageEngine Applications Manager ‘/auditLogAction.do’ Module SQL Injection [...]

New Speculative Execution Vulnerability Gives CISOs a New Reason to Lose Sleep

7th August 2019Curtis Franklin Jr Senior Editor at Dark Reading

The vulnerability, dubbed SWAPGS, is an undetectable threat to data security, similar in some respects to Spectre and Meltdown. Source: Dark Reading [...]

Critical Remote Code Execution Vulnerability in DHCP Client Let Hackers Take Control of the Network

3rd August 2019BALAJI N

A critical remote code execution vulnerability that resides in the DHCP client allows attackers to take control of the system by sending malicious [...]

Vulnerability in Apple iMessage Let Hackers Remotely Read Files in iPhone – PoC Released

31st July 2019BALAJI N

Researchers from Google project Zero disclosed critical bugs that reside in iMessages that allows attackers to read local files in iPhone without any [...]

Visa vulnerability lets cybercrims bypass contactless card limit

31st July 2019CW Enterprises

Flaw enabled compromise in ‘100 per cent’ of tests Source: The Inquirer – Visa vulnerability lets cybercrims bypass contactless card limit [...]

Unpatched RCE Vulnerability in LibreOffice Let Hackers Take Complete Control Of Your Computer

27th July 2019BALAJI N

The researcher discovered a code execution vulnerability in LibreOffice let an attacker hack your computer by just sending a weaponized document with macro [...]

Vuln: Qualcomm Components CVE-2019-2307 Integer Underflow Vulnerability

26th July 2019CW Enterprises

Qualcomm Components CVE-2019-2307 Integer Underflow Vulnerability Source: Security Focus – Vuln: Qualcomm Components CVE-2019-2307 Integer Underflow Vulnerability [...]