In short, if you're running the #Unix printing system #CUPS, with cups-browsed present and enabled, you may be vulnerable to attacks that could lead to your computer being commandeered over the network or internet. The attacks require the victim to start a print job. Do not be afraid. #Linux #CriticalBug

That doomsday critical #LinuxBug: It's CUPS. May lead to remote hijacking of devices
https://www.msn.com/en-us/money/other/that-doomsday-critical-linux-bug-it-s-cups-may-lead-to-remote-hijacking-of-devices/ar-AA1rgvEa?ocid=emmx-mmx-feeds&PC=EMMX01

To summarize the ongoing situation, #GoogleDrive users have noticed that, suddenly, months or even years of files have gone missing. The issue simply eliminates the data from the account, almost reverting the account back to before that data was made. In some cases, #spreadsheet data would be missing from recent weeks, months, or years – but present from a former date. #CriticalBug #CloudServices

Google Drive missing file issue is caused by #DesktopApp
https://9to5google.com/2023/11/27/google-drive-missing-file-desktop-app-sync/

Nedávno objevená chyba v libwebp CVE-2023-4863 probublala do Chromia a zejména i do všeho z Chromia odvozeného, tedy i aplikací postavených na Electronu.
Tady je jejich pěkný seznam. https://gist.github.com/mttaggart/02ed50c03c8283f4c343c3032dd2e7ec
#CVE #criticalbug #electron

I'm going to shut down every Portainer instance I'm running until it gets fixed, I recommend everyone to do the same.

#Security #CriticalBug #infosec

heise.de: Cisco: Keine Patches mehr für angreifbare SoHo-Router

Weil die Produkte nicht mehr unterstützt werden, will Cisco keine Fixes bereit stellen. Die Kunden sollen neuere Modelle kaufen.

Betroffen sind die Modelle RV110W, RV130, RV130W und RV215W.

https://www.heise.de/news/Cisco-Keine-Patches-mehr-fuer-angreifbare-SoHo-Router-6010387.html
---
Hoffe mal keiner von euch hat son Ding noch im Einsatz.

#cisco #criticalbug #nopatch #eol #austauschen #keinpatch #kritischelücke #security #wasandereskaufen

Critical SonicWall VPN Portal Bug Allows DoS, Worming RCE - The CVE-2020-5135 stack-based buffer overflow security vulnerability is trivial to exploit, withou... https://threatpost.com/critical-sonicwall-vpn-bug/160108/ #stack-basedbufferoverflow #networksecurityappliance #securityvulnerability #remotecodeexecution #pre-authentication #vulnerabilities #denialofservice #cloudsecurity #cve-2020-5135 #websecurity #criticalbug #craigyoung #sonicwall #vpnportal #tripwire #exploit #trivial #dos

Zerologon Patches Roll Out Beyond Microsoft - A Samba patch and a micropatch for end-of-life servers have debuted in the face of the critical vu... https://threatpost.com/zerologon-patches-beyond-microsoft/159513/ #windowsserver2008r2 #vulnerabilities #criticalbug #end-of-life #micropatch #microsoft #zerologon #netlogon #patches #0patch #samba

Advertising Plugin for WordPress Threatens Full Site Takeovers - Thousands of vulnerable websites need to apply the patch to avoid RCE. more: https://threatpost.com/advertising-plugin-wordpress-full-site-takeovers/157283/ #unauthenticatedattackers #remotecodevulnerability #securityvulnerability #vulnerabilities #wordpressplugin #websecurity #advertising #criticalbug #wordfence #adning #rce

Cisco ‘Critical Update’ Phishing Attack Steals Webex Credentials - Emails purporting to be a Cisco "critical security advisory" are actually part of a phishing campa... more: https://threatpost.com/cisco-critical-update-phishing-webex/154585/ #ciscocriticalupdate #ciscovulnerability #securityadvisory #phishingattack #cloudsecurity #websecurity #credentials #criticalbug #landingpage #ciscowebex #phishing #cofense #cisco #email #webex

Critical WordPress Plugin Bug Can Lock Admins Out of Websites - A second vulnerability could be used to prevent access to almost all of a site’s existing content,... more: https://threatpost.com/critical-wordpress-plugin-bug-lock-admins-out/154354/ #securityvulnerability #maliciousredirects #vulnerabilities #webadminlockout #wordpressplugin #websecurity #criticalbug #seoplugin #metadata #rankmath

Adobe Patches Critical Bugs in Illustrator, Media Encoder - Adobe’s monthly patch load is low for November, with only three critical bugs and eight important ... more: https://threatpost.com/adobe-critical-bugs-illustrator-media-encoder/150114/ #adobesecurityadvisory #remotecodeexecution #adobeillustrator #vulnerabilities #adobeanimate #adobepatches #mediaencoder #november2019 #patchtuesday #adobebridge #criticalbug #mobile sdk #adobe

Critical Firefox Bugs Allow Arbitrary Code-Execution - Multiple critical memory safety bugs in Firefox 69 and Firefox ESR 68.1 in particular affect mediu... more: https://threatpost.com/critical-firefox-bugs-arbitrary-code-execution/149455/ #arbitrarycodeexecution #vulnerabilities #cve-2019-11764 #firefoxesr68.2 #websecurity #criticalbug #firefox70 #firefox #mozilla #patches #update #esr