|
Mitel MiCollab Unauthorized Access Attack
Security flaws in Mitel MiCollab, CVE-2024-35286, CVE-2024-41713, and an arbitrary file read zero-day (still without a CVE number) have been found, putting many organizations at risk. These vulnerabilities allow attackers to bypass authentication and access files on affected servers, revealing sensitive information that could expose organizations to serious security risks. |
Apache Struts 2 RCE Attack
FortiGuard Labs has detected on-going exploit attempts targeting a recently patched Apache Struts 2 vulnerability. Attackers can manipulate file upload parameters to enable path traversal, potentially leading to malicious file upload. This may result in Remote Code Execution, allowing attackers to run arbitrary code, steal data, or compromise entire systems. |
| Distributed by aarss.com. |
|
|
|
|
Internet Security Related News
|
|