deserialization – Computer Security Articles

MalwareBytes Security

Adobe ColdFusion vulnerability exploited in the wild

August 23, 2023 admin adobe, coldfusion, critical, cve-2023-26359, cve-2023-26360, deserialization, Exploits and vulnerabilities, known exploited, news

Categories: Exploits and vulnerabilities

Categories: News

Tags: Adobe

Tags: ColdFusion

Tags: CVE-2023-26359

Tags: CVE-2023-26360

Tags: critical

Tags: known exploited

Tags: deserialization

A second Adobe ColdFusion vulnerability that was patched in April has been added to CISA’s known exploited vulnerabilities catalog.

(Read more…)

The post Adobe ColdFusion vulnerability exploited in the wild appeared first on Malwarebytes Labs.

MalwareBytes Security

Warning issued over vulnerability in cardiac device monitoring software

July 7, 2023 admin cve-2023-31222, deserialization, Exploits and vulnerabilities, medtronic, messaging, news, paceart optima, update

Categories: Exploits and vulnerabilities

Categories: News

Tags: Medtronic

Tags: Paceart Optima

Tags: CVE-2023-31222

Tags: deserialization

Tags: update

Tags: messaging

A vulnerability in Medtronic’s Paceart Optima software could lead to further network penetration, RCE, and DoS attacks

(Read more…)

The post Warning issued over vulnerability in cardiac device monitoring software appeared first on Malwarebytes Labs.

MalwareBytes Security

Warning issued over vulnerability in cardiac devices

July 6, 2023 admin cve-2023-31222, deserialization, Exploits and vulnerabilities, medtronic, messaging, news, paceart optima, update

Categories: Exploits and vulnerabilities

Categories: News

Tags: Medtronic

Tags: Paceart Optima

Tags: CVE-2023-31222

Tags: deserialization

Tags: update

Tags: messaging

A vulnerability in Medtronic’s Paceart Optima cardiac device could lead to further network penetration, RCE, and DoS attacks

(Read more…)

The post Warning issued over vulnerability in cardiac devices appeared first on Malwarebytes Labs.

MalwareBytes Security

VMware patches critical vulnerabilities in Aria Operations for Networks

June 9, 2023 admin aria operations for networks, command injection, cve-2023-20887, cve-2023-20888, cve-2023-20889, deserialization, Exploits and vulnerabilities, Information Disclosure, news, RCE, VMware

Categories: Exploits and vulnerabilities

Categories: News

Tags: cve-2023-20887

Tags: cve-2023-20888

Tags: cve-2023-20889

Tags: vmware

Tags: Aria Operations for Networks

Tags: RCE

Tags: information disclosure

Tags: deserialization

Tags: command injection

VMware has released security updates to fix a trio of flaws in Aria Operations for Networks that could result in information disclosure and remote code execution

(Read more…)

The post VMware patches critical vulnerabilities in Aria Operations for Networks appeared first on Malwarebytes Labs.