#remote-code-execution

[ follow ]
#cybersecurity
Node JS
fromITPro
2 months ago

Flaws in a popular dev library could let hackers run malicious code in your MongoDB database

Two critical vulnerabilities in Mongoose could expose MongoDB databases to remote code execution attacks by hackers.
Web frameworks
fromTechRepublic
1 month ago

Stealthy Apache Tomcat Critical Exploit Bypasses Security Filters

Apache Tomcat is vulnerable to remote code execution attacks due to a recently disclosed vulnerability, CVE-2025-24813.
Information security
fromThe Hacker News
4 months ago

Over 300K Prometheus Instances Exposed: Credentials and API Keys Leaking Online

Thousands of Prometheus servers lack proper authentication, risking data leakage, DoS, and remote code execution attacks due to their exposure on the internet.
Information security
fromTheregister
3 months ago

Attackers are popping clouds using severe Aviatrix bug

The vulnerability in Aviatrix Controller poses critical risks, leading to remote code execution and privilege escalation, with active exploits already observed.
Node JS
fromITPro
2 months ago

Flaws in a popular dev library could let hackers run malicious code in your MongoDB database

Two critical vulnerabilities in Mongoose could expose MongoDB databases to remote code execution attacks by hackers.
Web frameworks
fromTechRepublic
1 month ago

Stealthy Apache Tomcat Critical Exploit Bypasses Security Filters

Apache Tomcat is vulnerable to remote code execution attacks due to a recently disclosed vulnerability, CVE-2025-24813.
Information security
fromThe Hacker News
4 months ago

Over 300K Prometheus Instances Exposed: Credentials and API Keys Leaking Online

Thousands of Prometheus servers lack proper authentication, risking data leakage, DoS, and remote code execution attacks due to their exposure on the internet.
Information security
fromTheregister
3 months ago

Attackers are popping clouds using severe Aviatrix bug

The vulnerability in Aviatrix Controller poses critical risks, leading to remote code execution and privilege escalation, with active exploits already observed.
more#cybersecurity
#security-vulnerability
fromTheregister
4 months ago
Information security

Critical Apache Struts bug under active exploit

Critical security flaw in Apache Struts 2 allows file upload manipulation, posing severe risks of remote code execution; immediate updates are essential.
fromSecuritymagazine
2 weeks ago
Information security

Devices exposed to remote hacking via Erlang/OTP SSH vulnerability

Erlang/OTP's SSH implementation has a critical vulnerability allowing remote code execution without authentication, requiring urgent attention and action from security teams.
fromTheregister
7 months ago
Information security

Doomsday 9.9 unauthenticated RCE bug affects all Linux

A critical 9.9-rated unauthenticated RCE flaw is affecting GNU/Linux systems, with no fix yet despite disclosure to developers three weeks ago.
fromThe Hacker News
3 months ago
Information security

Meta's Llama Framework Flaw Exposes AI Systems to Remote Code Execution Risks

A high-severity vulnerability in Meta's Llama framework could allow remote code execution via deserialization of untrusted data.
fromThe Hacker News
1 month ago
Java

Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code

A critical security vulnerability in Apache Parquet allows remote code execution, affecting versions up to 1.15.0.
Information security
fromTheregister
4 months ago

Critical Apache Struts bug under active exploit

Critical security flaw in Apache Struts 2 allows file upload manipulation, posing severe risks of remote code execution; immediate updates are essential.
Information security
fromSecuritymagazine
2 weeks ago

Devices exposed to remote hacking via Erlang/OTP SSH vulnerability

Erlang/OTP's SSH implementation has a critical vulnerability allowing remote code execution without authentication, requiring urgent attention and action from security teams.
Information security
fromTheregister
7 months ago

Doomsday 9.9 unauthenticated RCE bug affects all Linux

A critical 9.9-rated unauthenticated RCE flaw is affecting GNU/Linux systems, with no fix yet despite disclosure to developers three weeks ago.
fromThe Hacker News
3 months ago
Information security

Meta's Llama Framework Flaw Exposes AI Systems to Remote Code Execution Risks

A high-severity vulnerability in Meta's Llama framework could allow remote code execution via deserialization of untrusted data.
fromThe Hacker News
1 month ago
Java

Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code

A critical security vulnerability in Apache Parquet allows remote code execution, affecting versions up to 1.15.0.
more#security-vulnerability
#security
Java
fromCSO Online
1 month ago

Big hole in big data: Critical deserialization bug in Apache Parquet allows RCE

A vulnerability in the Parquet-avro module of a Java library could allow remote code execution through crafted files.
Java
fromCSO Online
1 month ago

Big hole in big data: Critical deserialization bug in Apache Parquet allows RCE

A vulnerability in the Parquet-avro module of a Java library could allow remote code execution through crafted files.
more#security
#security-vulnerabilities
fromComputerWeekly.com
7 months ago
Information security

Printing vulnerability affecting Linux distros raises alarm | Computer Weekly

The newly discovered vulnerabilities in Cups pose a significant security risk to numerous devices, potentially exposing them to remote code execution.
fromTheregister
3 months ago
Information security

MediaTek says 'Happy New Year' with critical RCE, other bugs

MediaTek disclosed a critical vulnerability affecting 51 chipsets, posing severe security risks to multiple device categories.
fromComputerWeekly.com
7 months ago
Information security

Printing vulnerability affecting Linux distros raises alarm | Computer Weekly

The newly discovered vulnerabilities in Cups pose a significant security risk to numerous devices, potentially exposing them to remote code execution.
fromTheregister
3 months ago
Information security

MediaTek says 'Happy New Year' with critical RCE, other bugs

MediaTek disclosed a critical vulnerability affecting 51 chipsets, posing severe security risks to multiple device categories.
more#security-vulnerabilities
fromTheregister
4 months ago
Information security

Apache issues patches for critical Struts 2 RCE bug

The Apache Struts 2 vulnerability (CVE-2024-53677) has a severity rating of 9.5 and poses a serious security risk, necessitating immediate action for users.
Information security
fromTheregister
8 months ago

PoCcode released for zero-click Windows critical vuln

Windows users must install the latest patches swiftly to protect against CVE-2024-38063, a critical vulnerability that allows remote code execution.
fromTheregister
8 months ago
Information security

Google patches Quick Share for Windows to shut malware hole

Google's Quick Share for Windows had 10 now-fixed bugs, allowing remote code execution through a full RCE chain.
[ Load more ]