Developers running Node.js applications will need to check if they’re using the pac-resolver JavaScript library and update it if it hasn’t been updated recently.
Source: Read More (Latest topics for ZDNet in Security)
You might be interested in …
[TheRecord] Biden extends US telecom supply chain order aimed at Huawei, ZTE
President Joe Biden on Thursday extended for another year a Trump-era executive order that declared a national emergency and prohibited U.S. companies from using telecommunications equipment produced by firms posing a national security risk. The 2019 order invoked the International Emergency Economic Powers Act, which grants the president the authority to regulate commerce in response […]
[SecurityWeek] Millions of Routers Impacted by NetUSB Kernel Vulnerability
A vulnerability in the NetUSB kernel module could allow remote attackers to execute code on millions of router devices, endpoint security company SentinelOne warns. read more Source: Read More (SecurityWeek RSS Feed)
[SecurityWeek] Potential RCE Flaw Patched in PyPI’s GitHub Repository
A vulnerability in the GitHub Actions workflow for PyPI’s source repository could be exploited to perform a malicious pull request and eventually execute arbitrary code on pypi.org, according to a warning from a Japanese security researcher. read more Source: Read More (SecurityWeek RSS Feed)