CVE-2021-33564 – An argument injection vulnerability in the Dragonfly gem before 1.4.0 for Ruby
CVE-2020-16121 – PackageKit provided detailed error messages to unprivileged callers that exposed information
CVE-2020-22275 – Easy Registration Forms (ER Forms) WordPress Plugin 2.0.6 allows an attacker to submit an entry with malicious CSV commands
CVE-2020-7129 – A remote execution of arbitrary commands vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2
CVE-2020-16009 – Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240.183
Recently, the founder of Block Party App, Tracy Chou hosted a Reddit Ask Me Anything, where users can literally ask anything to popular CEOs and celeberties. Things got a little heated between CEO Tracy Chou, and Reddit users.
Tax software required by China to conduct business with Chinese businesses has been installing malware on enterprise systems, according to cybersecurity researchers at Trustwave.
A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 13.5.1 and iPadOS 13.5.1, macOS Catalina 10.15.5 Supplemental Update, tvOS 13.4.6, watchOS 6.2.6. An application may be able to execute arbitrary code with kernel privileges.
Israel is having a rough time right now. It all started back in April 2020, when Israeli officials reported that hackers attempted to modify water chlorine levels. Could this be an attempt to harm the people of Israel deliberately?
A number of high-profile Twitter accounts were simultaneously hacked on Wednesday by attackers who used the accounts — some with millions of followers — to spread a cryptocurrency scam.
Recently released versions of PAN-OS contain an important fix for a critical security vulnerability listed on the Palo Alto Networks Security Advisories Site. (https://security.paloaltonetworks.com/CVE-2020-2021)
A remote code execution vulnerability exists in Windows Domain Name System servers when they fail to properly handle requests. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the Local System Account. Windows servers that are configured as DNS servers are at risk from this vulnerability.
