Palo Alto Networks fixes critical flaw in PAN-OS firewall software

Posted by & filed under Ειδοποιήσεις.

Palo Alto Networks has fixed a new critical vulnerability affecting multiple versions of PAN-OS, the operating system affecting its next-generation firewalls. The issue received the identification number CVE-2020-2040 and has a severity score of 9.8 out of 10 and requires no user interaction. An unauthenticated attacker can exploit it by sending a malicious request to specific interfaces…. Read more »

Critical SAP Recon flaw exposes thousands of customers to attacks

Posted by & filed under Ειδοποιήσεις.

SAP patched a critical vulnerability affecting over 40,000 customers and found in the SAP NetWeaver AS JAVA (LM Configuration Wizard) versions 7.30 to 7.50, a core component of several solutions and products deployed in most SAP environments. The RECON (short for Remotely Exploitable Code On NetWeaver) vulnerability is rated with a maximum CVSS score of 10 out… Read more »

Warning: Citrix ShareFile Flaw Could Let Attackers Steal Corporate Secrets

Posted by & filed under Ειδοποιήσεις.

Since the past few weeks, software giant Citrix has privately been rolling out a critical software update to its enterprise customers that patches multiple security vulnerabilities affecting Citrix ShareFile content collaboration platform. The security advisory—about which The Hacker News learned from Dimitri van de Giessen, an ethical hacker and system engineer—is scheduled to be available publicly… Read more »