[HackerNews] Apache Warns of Zero-Day Exploit in the Wild — Patch You Web Servers Now!

Apache has issued patches to address two security vulnerabilities, including a path traversal and file disclosure flaw in its HTTP server that it said is being actively exploited in the wild.
“A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An attacker could use a path traversal attack to map URLs to files outside the expected document root,” the open-source

Source: Read More (The Hacker News)

You might be interested in …

[NCSC-FI News] Critical F5 BIG-IP vulnerability exploited to wipe devices

A recently disclosed F5 BIG-IP vulnerability has been used in destructive attacks, attempting to erase a device’s file system and make the server unusable. Source: Read More (NCSC-FI daily news followup)

Read More

[SecurityWeek] SonicWall Patches Y2K22 Bug in Email Security, Firewall Products

All posts, Security Week

Cybersecurity firm SonicWall says it has released patches for some of its email security and firewall products to address a bug that resulted in failed junk box and message log updates. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[ZDNet] Linux glibc security fix created a nastier Linux bug

All posts, ZDNet

Sometimes a programming cure is worse than the disease. That’s the case with this Linux glibc security bug. Source: Read More (Latest topics for ZDNet in Security)

Read More

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.