[ad_1] Threat actors have begun massively exploiting the critical vulnerability tracked as CVE-2022-1388, which affects multiple versions of all F5 BIG-IP modules, to launch malicious payloads. Last week, F5 released patches for the security issue (severity rating 9.8), which affects the BIG-IP iControl REST authentication component. The company warned that the vulnerability allows an unauthenticated … Read more
[ad_1] Threat actors have begun massively exploiting the critical vulnerability tracked as CVE-2022-1388, which affects multiple versions of all F5 BIG-IP modules, to launch malicious payloads. Last week, F5 released patches for the security issue (severity rating 9.8), which affects the BIG-IP iControl REST authentication component. The company warned that the vulnerability allows an unauthenticated … Read more
[ad_1] QNAP has released several security advisories today, including one for a critical security issue that allows remote execution of arbitrary commands on vulnerable QVR systems, the company’s video surveillance solution hosted on a NAS device. The QVR IP video surveillance system supports multi-channel feed and cross-platform video decoding and is designed for monitoring home … Read more
[ad_1] F5 has issued a security advisory about a flaw that may allow unauthenticated attackers with network access to execute arbitrary system commands, perform file actions, and disable services on BIG-IP. The vulnerability is tracked as CVE-2022-1388 and has a CVSS v3 severity rating of 9.8, categorized as critical. Their exploitation can potentially lead to … Read more
[ad_1] Taiwanese corporation QNAP has asked customers this week to disable the AFP file serving protocol on their network-attached storage (NAS) devices until it fixes multiple critical Netatalk vulnerabilities. Netatalk is an open source implementation of AFP (short for Apple Filing Protocol) that allows *NIX/*BSD systems to act as an AppleShare File Server (AFP) for … Read more
[ad_1] Advanced hackers are actively exploiting a critical remote code execution (RCE) vulnerability, CVE-2022-22954, affecting VMware Workspace ONE Access (formerly called VMware Identity Manager). The issue was fixed in a security update 20 days ago along with two more RCEs: CVE-2022-22957 and CVE-2022-22958 also affecting VMware Identity Manager (vIDM), VMware vRealize Automation (vRA), VMware Cloud … Read more