#cve-vulnerabilities

[ follow ]
#adobe-security-patches #arbitrary-code-execution #patch-tuesday-march-2026 #cross-site-scripting #sma100
Information security
fromZero Day Initiative
1 day ago

Zero Day Initiative - The March 2026 Security Update Review

Adobe released eight bulletins in March 2026 addressing 80 CVEs across multiple products, with critical patches for Acrobat Reader, Substance 3D Stager, and Premiere Pro focusing on arbitrary code execution vulnerabilities.
fromSecurityWeek
5 months ago

SonicWall Updates SMA 100 Appliances to Remove Overstep Malware

As part of the attacks, flagged in July by Google's Threat Intelligence Group, a threat actor tracked as UNC6148 infected fully patched SMA appliances with a persistent backdoor and user-mode rootkit that supports credential, session token, and one-time password seed theft. The threat actor likely used local administrator credentials that were stolen in previous attacks, before devices were patched, through the exploitation of known vulnerabilities, such as CVE-2025-32819, CVE-2024-38475, CVE-2021-20035, CVE-2021-20038, and CVE-2021-20039.
Information security
[ Load more ]