The flaws allow remote code-execution without user interaction or authentication, and are highly exploitable.
The vulnerability is a decade old with a public exploit, yet remained unpatched in one of the phone giant’s most popular models.
The bug is previously unknown but yet still fixed in later releases. However, many organizations are likely still vulnerable.
Two months after the alarm sounded warning of a WannaCry-level event, progress in patching exposed Windows systems varies by country and industry.
Web analytics firm plugs a hole in its platform that allowed attackers to open a reverse shell that could be used to attack the service.
Mozilla has patched a second actively-exploited vulnerability in Firefox this week.
Mozilla released a new update for Firefox after discovering a critical flaw under active attack.
Attackers are exploiting a Linux Exim critical flaw to execute remote commands, download crypto miners and sniff out other vulnerable servers.
The two CVEs allow bypasses to get around NTLM relay attack mitigations.