ScanForge Security Digest 2629-02

200 items
40 critical38 high10 news

This week's security digest includes 0 actively exploited vulnerabilities (CISA KEV), 40 critical CVEs, and 38 high-severity CVEs. Review the details below and prioritize patching for any affected systems.

Critical

40

High Severity

38

Security News

10
New wp2shell WordPress Core Flaw Lets Unauthenticated Attackers Run Code The Hacker News

An anonymous HTTP request can run code on a WordPress site. The bug is in core, so a bare install with zero plugins is e

Friday Squid Blogging: Squid Washing Up on Cape Cod Beach Schneier on Security

Lots of articles about this. As usual, you can also use this squid post to talk about the security stories in the news t

Abbott probes two cyber incidents amid extortion claims Bleeping Computer

Abbott Laboratories is investigating two separate cybersecurity incidents after confirming unauthorized access to intern

OpenSSL HollowByte Flaw Could Freeze Server Memory with 11-Byte TLS Requests The Hacker News

Eleven bytes will make an unpatched OpenSSL server set aside up to 131 KB of memory for a message that never arrives. On

Inc Ransomware Exploits SonicWall SMA Zero-Days Dark Reading

When chained together, the two vulnerabilities allow threat actors to gain root-level capabilities on SonicWall's mobile

Seven Malicious Vite npm Packages Use Blockchain C2 to Deliver a RAT The Hacker News

Cybersecurity researchers have discovered a cluster of seven malicious npm packages targeting the Vite frontend tooling

HollowByte DDoS flaw bloats OpenSSL server memory with 11-byte payload Bleeping Computer

A vulnerability dubbed HollowByte allows unauthenticated attackers to trigger a denial-of-service (DoS) condition on Ope

New NadMesh Botnet Hunts Exposed AI Services for Cloud Keys and Kubernetes Tokens The Hacker News

A Go botnet called NadMesh turned up in early July hunting exposed AI services, and the operator's own dashboard claims

Content aggregated from NIST/NVD, CISA, CERT/CC, and public security news sources. External articles are linked to their original source.