SecurityWeek

High-Severity Remote Code Execution Vulnerability Patched in OpenSSL

OpenSSL updates released on Tuesday patch a dozen vulnerabilities, including a high-severity remote code execution flaw.
Bleeping Computer

Ivanti Avalanche impacted by critical pre-auth stack buffer overflows

Two stack-based buffer overflows collectively tracked as CVE-2023-32560 impact Ivanti Avalanche, an enterprise mobility management (EMM) solution designed to manage, monitor, and secure a wide range ...

12 OpenSSL bugs survived since the 90s until AI finally showed up

Decades-old OpenSSL flaws surfaced through autonomous code analysis – showing how AI can detect crashes, corruption, and ...
ZDNet

NetUSB flaw leaves 'millions' of routers, IoT devices vulnerable to hacking

Potentially millions of routers and Internet-of-Things devices have been placed at risk of hijacking due to a stack buffer overflow security flaw. According to researcher Stefan Viehbock from SEC ...
Threat Post

Honeywell PoS Software Vulnerable to Stack Buffer Overflows

There are stack buffer overflows in two components of a Honeywell point-of-sale software package that can allow attackers to run arbitrary code on vulnerable systems. The vulnerabilities lie in the ...