CISA warns of remote code execution vulnerability with Discourse

26 October 2021

CISA urged developers to update Discourse versions 2.7.8 and earlier in a notice sent out on Sunday, warning that a remote code execution vulnerability was tagged as “critical.” The issue was patched on Friday and developers explained that CVE-2021-41163 involved “a validation bug in the upstream aws-sdk-sns gem”

Read full article on ZDNet

Date:

26 October 2021

Categorie(s):

NEWS

Tag(s):

CISA, Discourse, IT, News

The EU seeks proposals for AI that should be banned15 November 2024
Malicious QR codes sent in the mail deliver malware15 November 2024
Simplifying endpoint security15 November 2024
Critical TP-Link DHCP Vulnerability Let Attackers Execute Arbitrary Code Remotely15 November 2024
New Glove Stealer Malware Bypasses Google Chrome’s App-Bound to Steal Data15 November 2024