A flaw known as XRING has been discovered in XQUIC, Alibaba's library for QUIC and HTTP/3. This vulnerability allows any remote client to crash servers using a simple sequence of legal traffic, requiring no authentication or malformed packets. The issue stems from a single incorrect variable in the code, and it takes only about 260 bytes of standard QPACK traffic to trigger the crash. As of now, there is no patch available to fix this problem. Researchers have flagged this vulnerability as a significant risk, especially for servers relying on XQUIC for HTTP/3 communication, as it could lead to downtime and service disruption.
Articles tagged "Patch"
Found 224 articles
Zimbra has issued a warning to its customers regarding a serious vulnerability in the Classic Web Client of the Zimbra Collaboration suite. This flaw allows for cross-site scripting (XSS) attacks, which could enable attackers to execute malicious scripts in the context of a user's browser. As a result, users' sensitive information could be compromised. The company is urging all users to apply the necessary patches to protect their systems. This vulnerability is particularly concerning for organizations that rely on Zimbra for communication and collaboration, as it could lead to significant security breaches if left unaddressed.
Recent findings have revealed that Tenda routers may contain a hidden backdoor in their firmware, potentially allowing unauthorized access to users' networks. Security researchers have urged users to take immediate action to protect themselves, as this vulnerability could expose sensitive information. Until Tenda releases a patch to address this issue, users should disable certain settings to minimize the risk of exploitation. This situation is particularly concerning given the popularity of Tenda routers among consumers, making a significant number of users vulnerable to potential attacks. It's essential for users to stay vigilant and follow recommended safety measures to secure their home networks.
Microsoft has addressed a significant vulnerability in its Defender antivirus software, dubbed RoguePlanet, which was made public nearly a month ago. This flaw, tracked as CVE-2026-50656, has a CVSS score of 7.8, indicating a high risk of privilege escalation. It affects the Microsoft Malware Protection Engine, specifically the 'mpengine.dll' component responsible for scanning and cleaning malware. If exploited, this vulnerability could allow attackers to gain SYSTEM privileges on affected systems, posing a serious security risk. Users of Microsoft Defender are urged to apply the latest security updates to protect their systems from potential exploitation.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has mandated that federal agencies prioritize patching a vulnerability in Langflow, a visual framework used for building AI agents. This flaw allows unauthorized access, making it easier for attackers to exploit systems that use Langflow. Agencies have until Friday to address this issue, as it is currently being actively exploited. The urgency of this directive emphasizes the critical nature of maintaining secure software environments, especially in federal operations where sensitive data may be at risk. By patching this vulnerability, agencies can protect themselves from potential breaches and unauthorized access to their systems.
Ubiquiti has issued urgent security updates to address seven vulnerabilities in its UniFi OS, including a particularly severe flaw that could allow attackers to execute command injection attacks. This vulnerability is critical because it gives unauthorized users a way to run malicious commands on affected systems. The issue affects various Ubiquiti products that utilize UniFi OS, which is widely used in network management. Users and organizations that rely on these devices should prioritize applying the latest patches to protect their networks. Failure to update could leave systems exposed to potential attacks, putting sensitive data at risk.
The Cybersecurity and Infrastructure Security Agency (CISA) has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, signaling that they are actively being exploited by attackers. The vulnerabilities include CVE-2026-48908, which affects JoomShaper SP Page Builder, allowing unrestricted file uploads of dangerous types; CVE-2026-55255, an authorization bypass in Langflow; and CVE-2026-56290, which involves improper access control in Joomlack Page Builder. These vulnerabilities pose significant risks, particularly to federal agencies, as they can grant attackers total control over affected systems. CISA encourages all organizations to adopt a risk-based approach to vulnerability management, emphasizing the importance of addressing these high-risk vulnerabilities swiftly. Agencies are required to check for any compromise before applying patches as part of their remediation process.
Siemens has identified multiple vulnerabilities in its SINEC OS, particularly affecting the RUGGEDCOM RST2428P product. The issues stem from improper input validation, leading to potential allocation failures that could compromise system operations. Siemens has recommended users upgrade to version 4.0 or later to mitigate these risks. The vulnerabilities have been assigned CVE identifiers, indicating their recognition in the cybersecurity community. This situation is significant as it affects industrial control systems, which are critical for operational integrity and security.
CISA has added a new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, specifically CVE-2026-48282, which affects Adobe ColdFusion. This path traversal vulnerability allows attackers to gain unauthorized access and control over affected systems, posing significant risks, particularly to federal agencies. The Binding Operational Directive (BOD) 26-04 emphasizes the need for federal agencies to address high-risk vulnerabilities quickly, while also encouraging all organizations to adopt similar risk-based vulnerability management practices. CISA will continue to update the catalog as new vulnerabilities are identified, and organizations are urged to report any exploited vulnerabilities not currently listed. Rapid remediation is essential to mitigate potential exploitation risks.
BeyondTrust has alerted its customers to two serious security vulnerabilities in its Remote Support (RS) and Privileged Remote Access (PRA) software. These flaws could potentially allow attackers to bypass authentication, putting user systems at risk. Companies using this software need to act quickly to protect their networks from unauthorized access. The vulnerabilities affect a wide range of users who rely on BeyondTrust’s remote access solutions, making timely patching essential to maintaining security. BeyondTrust has advised all affected users to apply the necessary updates as soon as possible to mitigate any potential risks.
BeyondTrust has issued urgent updates to fix two serious vulnerabilities in its Remote Support and Privileged Remote Access products. These flaws, identified as CVE-2026-40138 and another unnamed vulnerability, could allow attackers to gain control over affected devices without needing authentication. The vulnerabilities score a high 9.2 on the CVSS scale, indicating their severity. Users of BeyondTrust's Remote Support and PRA should prioritize applying these updates to mitigate the risk of unauthorized access. With the potential for exploitation, this situation underscores the importance of timely patch management in maintaining security.
The Hacker News
This week's security updates reveal a series of vulnerabilities across various systems, including browsers, AI tools, and email services. Researchers discovered that many of these weaknesses stem from small permission gaps and inadequate security checks, which attackers can exploit. Notably, the article mentions the BlueHammer ransomware, which targets businesses by leveraging these types of vulnerabilities. This situation underscores the need for organizations to regularly assess their security measures and patch any identified weaknesses to prevent potential breaches. Overall, the findings serve as a reminder that even seemingly secure systems can harbor significant risks if not properly maintained.
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about a vulnerability in Microsoft SharePoint that is currently being exploited by attackers. This vulnerability, identified as CVE-2026-45659, allows for remote code execution, which means that hackers can run malicious code on affected systems. Organizations using SharePoint should take this threat seriously, as it could lead to unauthorized access and data breaches. Microsoft has already released a patch to address this issue, so it's crucial for users to apply the update as soon as possible to protect their systems from potential exploitation.
Citrix has announced security patches for its NetScaler product, addressing six vulnerabilities that could pose risks to users. Among these is a severe flaw known as the 'HTTP/2 Bomb', which can lead to system crashes under certain conditions. Additionally, a CitrixBleed-style bug has been identified, which could allow unauthorized information disclosure. Citrix is urging all customers using NetScaler to apply these patches as soon as possible to mitigate potential exploitation. The vulnerabilities underscore the importance of maintaining up-to-date security measures, especially for widely used enterprise solutions like NetScaler.
Citrix has released a security update addressing six vulnerabilities in its NetScaler product line, with a particular focus on one high-severity flaw that bears a resemblance to the previously exploited CitrixBleed issue. This flaw could potentially allow attackers to exploit the system if left unpatched. Organizations using affected versions of NetScaler should prioritize applying these patches to safeguard their systems from possible exploitation. The timely response is crucial, especially given the history of similar vulnerabilities being actively targeted by cybercriminals. Users and administrators are encouraged to check their systems and ensure they are running the latest versions to mitigate any risks associated with this flaw.