Patch/Configuration Management, Vulnerability Management

Sun delivers fixes

March 24, 2009

Sun has patched for several vulnerabilities in its Java System Identity Manager. Rated "highly critical" by vulnerability tracking service Secunia, the flaws impact versions 7 and 8. The bugs could be exploited to allow for security bypass, cross-site scripting, data manipulation, information exposure, privilege escalation and system access, according to Secunia. Sun advised users to install the pertinent patches, which were distributed Monday. — DK

Dan Kaplan

Vulnerability Management

Apple patches TCC bypass vulnerability

SC StaffDecember 19, 2024

The vulnerability, tracked as CVE-2024-44131, was discovered in the FileProvider component and has been fixed in iOS 18, iPadOS 18, and macOS Sequoia 15 through improved validation of symbolic links.

concept of leaky software, data with a tap sticking out.3d illustration

Data Security

Misconfiguration exposes Virtavo security cam user data

SC StaffDecember 18, 2024

Over 8.7 million records, many of which are duplicates, were discovered within the server, including user phone numbers, network information, device identifiers, performance metrics, and other personal details, according to Cybernews researchers.