Web browsers and vulnerabilities

Researchers report the powerful elevation-of-privilege flaw allowing arbitrary code execution on fully-patched systems. More

The vulnerability exploitation could be used to hijack web servers. More

Threat actors created Mac vulnerability that was used for the past three months to collect keystrokes, screenshots. More

Mozilla discloses that two extensions installed by many users blocked the download of security updates. More

Stealing browser cookies helped attackers to hijack accounts of YouTube stars since at least 2019. More

Upgrades get pushed to address the vulnerability that can be weaponized and allow attackers to manipulate documents. More

Patches for vulnerabilities in IOS XE networking equipment got released to avoid major attacks. More

Two major zero-day vulnerabilities were patched to avoid attacks. More

The ChaosDB flaw may have existed since 2019 and affected the entire database. More

The zero-day flaw allows users to gain admins privileges via the installer: a threat for 100 million users. More

Attackers can exploit flaws to restart vulnerable devices and execute code. More

Security flaws possibly allow root access on vulnerable Wifi-enabled devices. More

Microsoft discloses new flaw: admins advised to disable Print Spooler service. More

Zero-day vulnerability in active use: SolarWinds issues a fix after Microsoft warning. More

Microsoft releases a patch, but game-over code execution attacks are still possible. More