July 2023 - Page 9 of 69 - Cyber Security News

USN-5193-3: X.Org X Server vulnerabilities

USN-5193-1 fixed several vulnerabilities in X.Org. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: Jan-Niklas Sohn discovered that the X.Org...

July 27, 2023

News

NCSC Publishes New Guidance on Shadow IT

Security agency suggests mitigations and technical solutions Read More

July 27, 2023

News

Supply Chain Attack Hits NHS Ambulance Trusts

Electronic patient records unavailable for over a week Read More

July 27, 2023

News

SEC Wants Cyber-Incident Disclosure Within Four Days

More consistent notification rules required of public firms Read More

July 27, 2023

Advisories

USN-6258-1: LLVM Toolchain vulnerabilities

It was discovered that LLVM Toolchain did not properly manage memory under certain circumstances. If a user were tricked into opening a specially crafted MLIR...

July 27, 2023

Advisories

caddy-2.7.0~beta2-1.fc39

FEDORA-2023-30431913bc Packages in this update: caddy-2.7.0~beta2-1.fc39 Update description: Automatic update for caddy-2.7.0~beta2-1.fc39. Changelog * Thu Jul 27 2023 Carl George <carl@george.computer> - 2.7.0~beta2-1 - Update...

July 27, 2023

Advisories

ZDI-23-1007: GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but...

July 27, 2023

Advisories

ZDI-23-1008: GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but...

July 27, 2023

Advisories

ZDI-23-1002: SolarWinds Network Configuration Manager VulnDownloader Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Network Configuration Manager. Authentication is required to exploit this vulnerability. Read...

July 27, 2023

Advisories

ZDI-23-1003: SolarWinds Orion Platform UpdateActionsProperties Incorrect Comparison Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Orion Platform. Authentication is required to exploit this vulnerability. Read More

July 27, 2023

Sitting Ducks DNS Attacks Put Global Domains at Risk

Microsoft Power Pages Misconfiguration Leads to Data Exposure

ShrinkLocker ransomware: what you need to know

Massive Telecom Hack Exposes US Officials to Chinese Espionage

IT specialist Jack Teixeira jailed for 15 years after leaking classified military documents on Discord

New iOS Security Feature Makes It Harder for Police to Unlock Seized Phones

API Security in Peril as 83% of Firms Suffer Incidents

Bank of England U-turns on Vulnerability Disclosure Rules

LevelBlue Cybersecurity Awareness Month Recap

Month: July 2023

USN-5193-3: X.Org X Server vulnerabilities

NCSC Publishes New Guidance on Shadow IT

Supply Chain Attack Hits NHS Ambulance Trusts

SEC Wants Cyber-Incident Disclosure Within Four Days

USN-6258-1: LLVM Toolchain vulnerabilities

caddy-2.7.0~beta2-1.fc39

ZDI-23-1007: GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability

ZDI-23-1008: GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability

ZDI-23-1002: SolarWinds Network Configuration Manager VulnDownloader Directory Traversal Remote Code Execution Vulnerability

ZDI-23-1003: SolarWinds Orion Platform UpdateActionsProperties Incorrect Comparison Remote Code Execution Vulnerability