[HackerNews] Critical Root RCE Bug Affects Multiple Netgear SOHO Router Models

Networking equipment company Netgear has released yet another round of patches to remediate a high-severity remote code execution vulnerability affecting multiple routers that could be exploited by remote attackers to take control of an affected system.
Tracked as CVE-2021-34991 (CVSS score: 8.8), the pre-authentication buffer overflow flaw in small office and home office (SOHO) routers can lead

Source: Read More (The Hacker News)

You might be interested in …

[ThreatPost] Sinclair Confirms Ransomware Attack That Disrupted TV Stations

All posts, ThreatPost

A major cyberattack resulted in data being stolen, too, but Sinclair’s not sure which information is now in the hands of the crooks. Source: Read More (Threatpost)

Read More

[HackerNews] Critical Auth Bypass Bug Affects VMware Carbon Black App Control

All posts, HackerNews

VMware has rolled out security updates to resolve a critical flaw affecting Carbon Black App Control that could be exploited to bypass authentication and take control of vulnerable systems. The vulnerability, identified as CVE-2021-21998, is rated 9.4 out of 10 in severity by the industry-standard Common Vulnerability Scoring System (CVSS) and affects App Control (AppC) […]

Read More

[TheRecord] Microsoft finds Shrootless, a macOS bug that lets malware install rootkits

Apple has patched on Monday a vulnerability in the macOS Big Sur and Monterey operating systems that can be abused to bypass the SIP security feature and install kernel rootkits. Described for the first time in a blog post published today by Jonathan Bar Or, a security researcher at Microsoft, the vulnerability is tracked under the CVE-2021-30892 identifier, but […]

Read More