2023-07-19
At least two new Adobe ColdFusion vulnerabilities have been exploited in the wild, including one that has not been completely patched by the software giant - https://www.securityweek.com/ ...
Ars Technica
Rapid7: threat actors have exploited zero-day RCE flaws in Adobe ColdFusion and Citrix NetScaler; Citrix patched its flaw but Adobe issued an incomplete fix
The exploited code-execution flaws are the kind coveted by ransomware and nation-state hackers. — Organizations big and small …
2023-03-18
Critical flaws expose Samsung's Exynos modems to “Internet-to-baseband remote code execution” attacks with no user interaction. Project Zero says an attacker only needs the victim's phone number. @ryanaraine reports: - https://www.securityweek.com/ ...
TechCrunch
Google's Project Zero finds 18 zero-day vulnerabilities in Exynos modems, affecting some Samsung, Vivo, and Google phones as well as wearables and vehicles
do this before you're next Maria Deutscher / SiliconANGLE : Google discovers 18 vulnerabilities in multiple Samsung chips Pierluigi Paganini / Security Affairs : Baseband RCE flaws...
2023-03-17
Critical flaws expose Samsung's Exynos modems to “Internet-to-baseband remote code execution” attacks with no user interaction. Project Zero says an attacker only needs the victim's phone number. @ryanaraine reports: - https://www.securityweek.com/ ...
TechCrunch
Google's Project Zero finds 18 zero-day vulnerabilities, including four top-severity flaws, affecting some Samsung phones and other devices with Exynos chipsets
Google's security research unit is sounding the alarm on a set of vulnerabilities it found in certain Samsung chips included …