The Register on MSN

Weaponized file name flaw makes updating glob an urgent job

PLUS: CISA issues drone warning; China-linked DNS-hijacking malware; Prison for BTC Samourai; And more Infosec In Brief ...
ZDNet

GitLab awards researcher $20,000, patches remote code execution bug

Simple steps can make the difference between losing your online accounts or maintaining what is now a precious commodity: Your privacy. Read now GitLab has awarded a cybersecurity researcher $20,000 ...

Chrome remote code execution flaw: CERT-In issues high-severity warning for desktop users

CERT-In has issued a high-severity advisory warning users about a remote code execution flaw in Google Chrome for desktop, ...
TechSpot

WhatsApp desktop app vulnerabilities led to remote file access, code execution

In brief: Facebook has patched a critical security flaw in WhatsApp's desktop platform that could have allowed an attacker to read files from the local file system on Windows and Mac and even pull off ...
CSOonline

Remote code execution flaws in Spring and Spring Cloud frameworks put Java apps at risk

A remote code execution vulnerability in Spring Framework has sparked fears that it could have a widespread impact across enterprise environments. Spring is one of the most popular open-source ...
Network World

Remote code execution is possible by exploiting flaws in Vxworks

Eleven zero-day vulnerabilities in WindRiver’s VxWorks, a real-time operating system in use across an advertised 2 billion connected devices have been discovered by network security vendor Armis. Six ...
CSOonline

Some Brother printers have a remote code execution vulnerability, and they can’t fix it

An authentication bypass vulnerability in the printers, hardcoded at the factory, can be chained with another flaw for remote code execution on affected devices. Brother Industries is grappling with a ...