apache

Proof-of-concept code published for Apache Struts vulnerability

Proof-of-concept code published for Apache Struts vulnerability

Cisco first third-party vendor to announce response.
Dec 14 2023 6:46AM
Oracle issues mammoth patch collection

Oracle issues mammoth patch collection

Mostly fixing third-party utilities.
Oct 19 2023 11:45AM
Juniper Networks issues critical patches

Juniper Networks issues critical patches

Apache Commons Text and expat brought vulnerabilities with them.
Apr 13 2023 12:05PM
Dell patches virtual storage software against OpenSSL, Apache bugs

Dell patches virtual storage software against OpenSSL, Apache bugs

Text4Shell among the bug-fixes.
Nov 25 2022 11:54AM
CISA to infosec: here’s China’s hit-list, why haven’t you patched?

CISA to infosec: here’s China’s hit-list, why haven’t you patched?

Top-20 exploited vulnerabilities include 12 RCEs.
Oct 7 2022 12:50PM
Serious two-year old bug bites ManageEngine

Serious two-year old bug bites ManageEngine

Unauthenticated attackers can run arbitrary code remotely.
Sep 12 2022 12:30PM
VMware, F5, Log4j added to EnemyBot attack targets

VMware, F5, Log4j added to EnemyBot attack targets

Also tries to infect Android devices.
May 31 2022 11:39AM
IBM sprays Log4j bugs in security products

IBM sprays Log4j bugs in security products

Apache Struts utility still causing headaches for admins.
May 12 2022 1:09PM
Microsoft Exchange Server bugs top 2021 most-exploited list

Microsoft Exchange Server bugs top 2021 most-exploited list

Slack patching leaves systems wide open.
Apr 28 2022 6:33AM
Cisco next to turn up Spring4Shell-vulnerable products

Cisco next to turn up Spring4Shell-vulnerable products

Eight identified, 70 under investigation.
Apr 6 2022 12:10PM
Third-party bugs squashed in IBM database software

Third-party bugs squashed in IBM database software

Apache Log4j rears its head.
Mar 31 2022 12:11PM
Expat library patched against code execution vulnerabilities

Expat library patched against code execution vulnerabilities

Parser can expose upstream software like Apache.
Feb 21 2022 11:24AM
New patch issued for log4j, Google scopes out vulnerability impact

New patch issued for log4j, Google scopes out vulnerability impact

Upgrade to 2.17.0 to avoid denial of service condition.
Dec 18 2021 12:23PM
Log4Shell patch incomplete, new fix issued

Log4Shell patch incomplete, new fix issued

JNDI functionality now disabled by default.
Dec 15 2021 4:01PM
Critical 'Log4Shell' RCE zero-day exploited in large numbers

Critical 'Log4Shell' RCE zero-day exploited in large numbers

Millions of applications use vulnerable Java logging library.
Dec 11 2021 10:06AM
IAG's Serenity project unifies its data

IAG's Serenity project unifies its data

Built on open source stack.
May 14 2018 7:00AM
NBN Co wants big data to mend customer experience

NBN Co wants big data to mend customer experience

Sets up 'tech lab'.
Sep 21 2017 6:00AM
Apache patches 'OptionsBleed' web server info leak bug

Apache patches 'OptionsBleed' web server info leak bug

Heartbleed-like but not as serious.
Sep 20 2017 8:46AM
Critical Apache Struts vulnerability menaces enterprises

Critical Apache Struts vulnerability menaces enterprises

Users advised to upgrade immediately.
Sep 6 2017 6:40AM
Riot Games turns to Spark to weed out 'toxic' players

Riot Games turns to Spark to weed out 'toxic' players

Tweaks performance of model that recognises abusive chat.
Jun 9 2017 11:00AM

Log In

  |  Forgot your password?