Dark Reading

Apache ERP Zero-Day Underscores Dangers of Incomplete Patches

Unknown groups have launched probes against a zero-day vulnerability identified in Apache's OfBiz enterprise resource planning (ERP) framework — an increasingly popular strategy of analyzing patches ...
Dark Reading

Apache Issues Patch To Stop Reverse-Proxy Bypass Attack

It all boils down to a missing forward-slash symbol: A newly discovered method of attack could let hackers access databases, firewalls, routers, and other internal network resources via misconfigured ...
CSOonline

Apache OFBiz patches new critical remote code execution flaw

The vulnerability represents a bypass of fixes put in place this year for three critical RCE flaws that had the same root cause and have since been used in attacks. Developers of Apache OFBiz, an open ...
Hosted on MSN

Apache Parquet users warned of maximum risk security flaw, told to patch now

Researchers claim Apache Parquet was carrying a maximum-severity flaw It allows threat actors to run arbitrary code A patch was released, and users are urged to apply it Apache Parquet, a columnar ...