Unpatched zero-day vulnerability in Windows including PoC
Unpatched Windows vulnerability was published with a proof of concept. Microsoft plans to release patches as a part of the April update. The vulnerability that affects the way Win…
Oracle releases January 2019 Critical Patch Update
Oracle has released its Critical Patch Update for January 2019 to address 284 vulnerabilities across multiple products. We encourages users and administrators to review the Oracle…
Fraud application preinstalled on Android devices
An unusually high number of transaction attempts encountered by Secure-D in Brazil and Malaysia coming from a series of Alcatel Android smartphone models Pixi 4 and A3 Max, led ou…
Three vulnerabilities disovered in systemd
Three (CVE-2018-16864, CVE-2018-16865, CVE-2018-16866) vulnerabilities discovered in systemd-journald. First two are memory corruptions (attacker-controlled alloca()s), the third …
SME Server Unauthenticated XSS To Privileged Remote Code Execution
The advisory describes a vulnerability in SME Server 9.2, which lets an unauthenticated attackers perform XSS attack in web management portal that leads to remote code execution a…