News Progress ShareFileの新しい欠陥は、事前認証RCE攻撃で連鎖する可能性がある
エンタープライズグレードのセキュアなファイル転送ソリューションである Progress ShareFile の 2 つの脆弱性が連鎖し、影響を受けた環境から認証なしでファイルを流出させる可能性があります。 Progress ShareFil...
remote code execution
News 
News 14,000以上のF5 BIG-IP APMインスタンスが依然としてRCE攻撃にさらされている
インターネット上の脅威を監視する非営利団体Shadowserverは、重大なリモート・コード実行(RCE)の脆弱性を悪用した攻撃が続く中、14,000を超えるBIG-IP APMインスタンスがオンラインで公開されていることを発見した。 BI...
News GIGABYTE Control Center vulnerable to arbitrary file write flaw
The GIGABYTE Control Center is vulnerable to an arbitrary file-write flaw that could allow a remote, unauthenticated att...
News Claude AI finds Vim, Emacs RCE bugs that trigger on file open
Vulnerabilities in the Vim and GNU Emacs text editors, discovered using simple prompts with the Claude assistant, allow ...
News Hackers exploiting critical F5 BIG-IP flaw in attacks, patch now
Cybersecurity firm F5 Networks has reclassified a BIG-IP APM denial-of-service (DoS) vulnerability as a critical-severi...
News Critical Fortinet Forticlient EMS flaw now exploited in attacks
Attackers are now actively exploiting a critical vulnerability in Fortinet's FortiClient EMS platform, according to thre...
News CISA: New Langflow flaw actively exploited to hijack AI workflows
The Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are actively exploiting a critical v...
News PolyShell attacks target 56% of all vulnerable Magento stores
Attacks leveraging the ‘PolyShell’ vulnerability in version 2 of Magento Open Source and Adobe Commerce installations ar...
News PTC warns of imminent threat from critical Windchill, FlexPLM RCE bug
PTC Inc. is warning of a critical vulnerability in Windchill and FlexPLM, widely used product lifecycle management (PLM)...
News Oracle pushes emergency fix for critical Identity Manager RCE flaw
Update: Added that Oracle declined to comment on whether the vulnerability has been exploited. Oracle has released an ou...