Hackaday

Arbitrary Code Execution Over Radio

Computers connected to networks are constantly threatened by attackers who seek to exploit vulnerabilities wherever they can find them. This risk is particularly high for machines connected to the ...
Bleeping Computer

R language flaw allows code execution via RDS/RDX files

A new vulnerability has been discovered in the R programming language that allows arbitrary code execution upon deserializing specially crafted RDS and RDX files. R is an open-source programming ...
Infosecurity Magazine

'CursorJack’ Attack Path Exposes Code Execution Risk in AI Development Environment

A method that could enable code execution through manipulated installation links in an AI development environment has been identified by security researchers. The technique, dubbed CursorJack by ...
The Hacker News

Critical n8n Flaws Allow Remote Code Execution and Exposure of Stored Credentials

Two critical n8n flaws (CVSS 9.4, 9.5) enable RCE via expression sandbox escape and public forms, risking credential exposure.

Microsoft Issues Emergency Patch for Critical Windows 11 RRAS Vulnerabilities

Microsoft releases an out-of-band hotpatch for critical Windows 11 RRAS vulnerabilities that could allow remote code ...
Threat Post

Serious Phar Flaw Allows Arbitrary Code Execution on Drupal

Drupal, Typo3 and Joomla are all impacted by the bug. Multiple content management systems – including Drupal, Joomla and Typo3 – are open to a vulnerability that can lead to arbitrary code execution ...
Threat Post

Firefox, Chrome Bugs Allow Arbitrary Code-Execution

Multiple critical memory safety bugs in Firefox 69 and Firefox ESR 68.1 in particular affect medium and large government entities and enterprises. Critical vulnerabilities have been discovered in the ...
ZDNet

Cisco discloses arbitrary execution in SD-WAN Solution and Webex

Cisco has disclosed a critical vulnerability in its SD-WAN Solution that allows for arbitrary code execution as the root user. Improper bounds checking by the vContainer allowed for potential ...
Hackaday

Bluetooth Vulnerability: Arbitrary Code Execution On The ESP32, Among Others

Bluetooth has become widely popular since its introduction in 1999. However, it’s also had its fair share of security problems over the years. Just recently, a research group from the Singapore ...
Bleeping Computer

Latest Code Execution news

Notepad++ version 8.5.7 has been released with fixes for multiple buffer overflow zero-days, with one marked as potentially leading to code execution by tricking users into opening specially crafted ...
ZDNet

Adobe patch update squashes critical code execution bugs

Adobe has released a large patch security update for various software offerings which resolves a number of critical and important bugs. On Tuesday, the tech giant's security bulletin listed an update ...