Tag

Security Patch

All articles tagged with #security patch

technology16 days ago•2 min saved

MongoBleed Vulnerability Exposes Over 87,000 MongoDB Instances to Exploits

A critical vulnerability named MongoBleed (CVE-2025-14847) affects over 87,000 MongoDB instances by allowing unauthenticated remote attackers to extract sensitive data through uninitialized memory disclosure in zlib decompression. The flaw impacts multiple versions, with patches available, and a PoC exploit has been released, increasing the risk of active exploitation. Administrators are urged to update their systems or apply temporary mitigations such as disabling zlib compression and restricting network access.

via CybersecurityNews|

#cve-2025-14847 #database-vulnerability #mongobleed

technology27 days ago•2 min saved

SonicWall Addresses Zero-Day Exploit in SMA 1000 Devices

SonicWall has issued a warning about a new zero-day vulnerability (CVE-2025-40602) in the SMA1000 Appliance Management Console, which has been exploited in attacks to escalate privileges. The flaw is being exploited in conjunction with another critical vulnerability (CVE-2025-23006) to execute remote code with root privileges. SonicWall advises users to update to the latest firmware to mitigate the risk, as over 950 appliances are exposed online. This follows recent security breaches and malware attacks targeting SonicWall devices.

via BleepingComputer|

#cyberattack #security-patch #sma1000

technology29 days ago•8 min saved

Samsung Launches December 2025 Security Updates for Galaxy Devices

Samsung is rolling out December 2025 security updates for various Galaxy devices, including foldables, S25 series, and tablets, with improvements in security, system stability, and new features, while also facing delays in Google Play system updates.

via Sammy Fans|

#december-2025 #galaxy-devices #samsung

technology1 month ago•8 min saved

Samsung Rolls Out December 2025 Updates to Multiple Flagship Devices

Samsung has begun rolling out the December 2025 security update for several flagship and foldable Galaxy devices, including the Galaxy Z Fold 4, Fold 5, Flip 4, Flip 5, and Galaxy S25 series, primarily in South Korea and the US. The update enhances security with 68 fixes, improves system stability, and is based on Android 16 and One UI 8, with plans for future updates like One UI 8.5. Additionally, Samsung is updating other devices like Galaxy Tab S9 FE, Galaxy Ring, and apps such as Calendar and Reminder, while facing delays in Google Play system updates across some models.

via Sammy Fans|

#december-2025-update #galaxy-s25 #galaxy-z-fold-5

technology2 months ago•3 min saved

Google Pixel November Update Brings Emergency Calls, Camera Fixes, and New Features

The Android 16 November update is rolling out to various Pixel devices, bringing security patches, improvements to charging and battery life, camera fixes for rainbow patterns, and addressing emergency calling and app loading issues.

via 9to5Google|

#android-16-update #camera-fixes #emergency-calling

technology2 months ago•3 min saved

Microsoft Releases Urgent Patch for Critical WSUS Vulnerability Exploited in the Wild

Microsoft released urgent out-of-band security updates for a critical WSUS vulnerability (CVE-2025-59287) that is actively being exploited in the wild, allowing remote code execution through unsafe deserialization. Users are advised to apply the patch immediately and follow recommended mitigations to prevent attacks.

via The Hacker News|

#active-exploitation #cve-2025-59287 #microsoft-wsus-vulnerability

technology2 months ago•1 min saved

Microsoft Releases Urgent Patch for Actively Exploited WSUS Vulnerability

Microsoft released a critical out-of-band update for Windows Server Update Services (WSUS) to fix a severe vulnerability (CVE-2025-59287) that allows remote code execution, affecting servers with the WSUS role enabled. The update is urgent, especially as WSUS is deprecated, prompting Microsoft to recommend switching to cloud-based solutions like Intune. A reboot is required, and administrators are advised to disable the role or block specific ports if immediate patching isn't possible.

via theregister.com|

#cve-2025-59287 #remote-code-execution #security-patch

technology3 months ago•3 min saved

Google Pixel October Update Fixes Display Issues and Enhances Performance

Google is rolling out its October security patch for Pixel phones, primarily addressing display issues such as flickering and freezing in the Pixel 7 and Pixel 10 series, along with system stability improvements and bug fixes, though the Pixel 6 series is not included this month.

via Android Central|

#display-problems #google-pixel #pixel-10

technology3 months ago•2 min saved

Google Pixel October 2025 Update Enhances Performance, Security, and Features

The October update for Android 16 QPR1 is rolling out to various Pixel devices, bringing UI fixes, display improvements, and system stability enhancements, with no security issues addressed in this release.

via 9to5Google|

#android-16-update #october-update #pixel-devices

technology3 months ago•2 min saved

Unity security vulnerabilities prompt urgent updates and game withdrawals

Several games, including Pentiment, Fallout Shelter, and Hearthstone, have been temporarily removed from Steam due to a security vulnerability in the Unity engine affecting versions 2017.1 and later. Developers are releasing updates to fix the issue, which could potentially allow local code execution or information disclosure. Players are advised to uninstall affected games until updates are available, with most titles expected to return soon after patching.

via Rock Paper Shotgun|

#affected-games #game-updates #security-patch

threat-intelligence3 months ago•2 min saved

Oracle Releases Emergency Patch for CVE-2025-61882 Amid Cl0p Data Theft Attacks

Oracle released an emergency patch for a critical vulnerability (CVE-2025-61882) in its E-Business Suite, which has been exploited by the Cl0p ransomware group in recent data theft attacks. The flaw allows remote code execution without authentication, and indicators suggest involvement of the LAPSUS$ group. Organizations are advised to check for compromises, as exploitation has already occurred.

via The Hacker News|

#cl0p #cve-2025-61882 #data-theft

technology4 months ago•4 min saved

Android 16 QPR1 September Update Begins Rollout with 24 Pixel Fixes

The Android 16 QPR1 September update is rolling out to various Pixel devices, bringing security patches, bug fixes across multiple components, and performance improvements, with 120 security issues addressed, including some under limited exploitation.

via 9to5Google|

#android-16-qpr1 #bug-fixes #pixel-update

technology4 months ago•2 min saved

Samsung Unveils AI-Enhanced One UI 8 Beta Updates for Galaxy S24 and S25

Samsung has released the One UI 8 Beta 6 update for Galaxy S25 series, bringing bug fixes, a new security patch, and improvements to notifications, home screen widgets, and personalization features, with rollout starting in Germany, India, South Korea, and the UK.

via Sammy Fans|

#galaxy-s25 #one-ui-8-beta-6 #samsung

technology5 months ago•8 min saved

Samsung Delays One UI 8 Beta and Updates for Galaxy Watch 7 Users

Samsung is rolling out the August 2025 security update based on One UI 7 for Galaxy S24 series in Europe and other regions, while also preparing foldable devices like Galaxy Z Fold 7 and Flip 7 for the upcoming One UI 8 Beta, which will bring new features and Android 16. The update focuses on security fixes, bug improvements, and preparing devices for the next major software upgrade.

via Sammy Fans|

#august-2025-update #galaxy-s24 #one-ui-8

technology5 months ago•3 min saved

CISA Urges Federal Agencies to Patch Critical Microsoft Exchange Vulnerability

CISA has ordered all US federal agencies to urgently patch a critical Microsoft Exchange vulnerability (CVE-2025-53786) by Monday morning, which could allow attackers with admin access to compromise entire domains through hybrid Exchange configurations. Agencies must update their systems and switch to a dedicated hybrid app to prevent potential lateral movement into cloud environments, with non-government organizations also urged to follow suit.

via BleepingComputer|

#cve-2025-53786 #federal-agencies #hybrid-vulnerability