Paessler closes XSS vulnerability in PRTG – CVE-2023-51630 – Correction
2024-01-16 Paessler has closed the high-risk vulnerability CVE-2023-51630 in the network monitoring solution PRTG. The XSS vulnerability allows a remote attacker to bypass authentication and take over the session of an active user. Paessler has closed the vulnerability with the new PRTG version 24.1.90.1306 and published further details on https://www.paessler.com/prtg/history/stable. Although the vulnerability can only […]
Continue readingPaessler closes XSS vulnerability in PRTG – CVE-2023-51630
2024-01-16 Paessler has closed the high-risk vulnerability CVE-2023-51630 in the network monitoring solution PRTG. The XSS vulnerability allows a remote attacker to bypass authentication and take over the session of an active user. Paessler has closed the vulnerability with the new PRTG version 23.4.90.1299 and published further details on https://www.paessler.com/prtg/history/stable. Although the vulnerability can only […]
Continue readingCritical vulnerability fixed in Trend Micro Worry-Free Business Security
2023-09-21 Trend Micro has fixed the critical vulnerability CVE-2023-41179 in their Worry-Free Business Security solution and provides patch 2495 for version 10.0 SP1. Trend Micro publishes further details in this security bulletin. The Trend Micro Worry-Free Business Security instances delivered by VIVAVIS are operated in a secure network segment that is largely separated from the […]
Continue readingMeinberg fixes several vulnerabilities in LANTIME Firmware – MBGSA-2023.04
2023-08-17 Meinberg has released a new firmware version for the LANTIME M and LANTIME IMS series NTP time servers to close several vulnerabilities. Two of the 12 vulnerabilities are rated with a severity level high. The latest version is 7.08.002. For more information on vulnerabilities CVE-2023-2650, CVE-2023-29491, CVE-2023-28322, CVE-2023-28321, CVE-2023-28320, CVE-2023-28319, CVE-2023-1667, CVE-2023-2283, CVE-2023-0361, and […]
Continue readingMeinberg fixes several Vulnerabilities in LANTIME Firmware – MBGSA-2023.02b
23/03/2023 Update Security Advisory MBGSA-2023.02 has been updated by the vendor. Another not yet CVE-registered vulnerability was closed in the LTOS web interface. Since the vulnerability can only be exploited by privileged super users, Meinberg rates the severity as low, but recommends an update to firmware version 7.06.013, see updated Meinberg Advisory. 14/03/2023 Meinberg have […]
Continue reading