Bleeping Computer

New Spring Java framework zero-day allows remote code execution

A new zero-day vulnerability in the Spring Core Java framework called 'Spring4Shell' has been publicly disclosed, allowing unauthenticated remote code execution on applications. Spring is a very ...
ZDNet

Remote code execution flaw patched in Linux Kernel TIPC module

The Transparent Inter Process Communication (TIPC) module has been designed to facilitate intra-cluster communication across Ethernet or UDP connections and is capable of service addressing, tracking, ...
The Hacker News

Two CVSS 10.0 Bugs in Red Lion RTUs Could Hand Hackers Full Industrial Control

CVE-2023-42770 - An authentication bypass that arises as a result of the Sixnet RTU software listening to the same port ...
CSOonline

Recently patched Juniper firewall flaws allow remote code execution

Researchers have chained two medium severity vulnerabilities to execute "world ending" remote code execution, and a real-world exploit has been found. Hackers have begun exploiting recently patched ...
The Hacker News

Hackers Target ICTBroadcast Servers via Cookie Exploit to Gain Remote Shell Access

"Attackers are leveraging the unauthenticated command injection in ICTBroadcast via the BROADCAST cookie to gain remote code ...
Threat Post

Google Chrome V8 Bug Allows Remote Code-Execution

The internet behemoth rolled out the Chrome 90 stable channel release to address this and eight other security vulnerabilities. Google’s Chrome browser has several security vulnerabilities that could ...
TechCrunch

EngFlow and tipi.build launch a remote CMake build execution service for your C and C++ code

EngFlow, the well-funded build acceleration startup, today announced that it has invested in tipi.build. With this, EngFlow is teaming up with tipi to extend its services beyond support for build ...