Tag: security updates
Qnap updates close high-risk gap | heise online
There are security gaps in Qnap’s QTS, QuTS hero and QuTScloud operating systems through which attackers can inject commands. Updated firmware corrects security-related errors. Advertisement The most serious gap allowed…
Update now! High-risk vulnerabilities in 7-Zip allow code smuggling
The 7-Zip archive tool uses updated installation packages to close two security gaps that attackers can use to inject malicious code into victims. Opening carefully prepared files is sufficient for…
Qnap operating system lags behind encryption | hot online
Qnap has released updated OS versions. They close a total of three security gaps, one of which the developers classify as high-risk. Affected are the devices with the operating systems…
Zyxel seals high-risk vulnerabilities in firewalls
Zyxel warns of several security gaps in the firewalls and WLAN controllers. Attackers could smuggle their own commands to the device’s OS without prior registration or provoke denial-of-service situations. Advertisement…
Cisco closes critical gap in SD-WAN vManage
Cisco is releasing updates that close a critical vulnerability in SD-WAN vManage software. The US Cyber Security Agency CISA warnsthat attackers from the network can abuse the vulnerability in order…
Code smuggling possible: High-risk vulnerabilities in ArubaOS firmware
Security updates for the ArubaOS firmware of the devices from the HPE subsidiary improve vulnerabilities that attackers can use to smuggle in malicious code from the network. IT managers should…
FortiNAC: Critical vulnerability allows code smuggling, update available
Malicious web actors can exploit a critical vulnerability in FortiNAC to inject and execute malicious code. The manufacturer provides updated software that fixes the leak and another vulnerability. Advertisement FortiNAC’s…
Fortinet: SSL VPN vulnerability allows code smuggling | hot online
Just before the June patch day, Fortinet released updates to the FortiOS operating system. In it, the developers close a security hole in the SSL VPN that attackers can use…
Printing system CUPS: code smuggling possible from the network
The CUPS printing system is affected by a vulnerability that allows attackers with network access to the printing service to inject and execute malicious code. An updated version of the…
Web browser: Critical vulnerability in Google Chrome
Last night, Google released an update for the Chrome web browser that closes at least one critical security hole. It allows attackers to inject and execute malicious code. Overall, the…