Tag: remote code execution

Oracle Issues Urgent Security Update for Critical RCE in Identity Manager and Web Services Manager

Cybersecurity, Hacking and Exploits, Server and Virtualisation Leave a comment
Oracle Issues Urgent Security Update for Critical RCE in Identity Manager and Web Services Manager

Oracle has released an out-of-band security alert to address a critical remote code execution vulnerability, tracked as CVE-2026-21992, affecting Oracle Identity Manager and Oracle Web Services Manager. With a CVSS 3.1 base score of 9.8 and no authentication required, this is a high-risk flaw that can be exploited remotely over HTTP with minimal complexity. Organizations running internet-facing Fusion Middleware components

Continue

Chrome Security Update Fixes 26 Vulnerabilities That Could Allow Remote Code Execution

Cybersecurity, Hacking and Exploits, Server and Virtualisation Leave a comment
Chrome Security Update Fixes 26 Vulnerabilities That Could Allow Remote Code Execution

Google’s latest Chrome security update is a reminder that even the world’s most scrutinized software still harbors dangerous flaws. In a single release, Chrome developers patched 26 vulnerabilities—three marked critical—that could let unauthenticated attackers run malicious code simply by getting a user to visit a crafted webpage. For anyone who uses Chrome, from casual browsers to enterprise fleets, this is

Continue

Hotpatch Alert: Microsoft Fixes Critical RRAS Remote-Execution Flaws in Windows 11

Cybersecurity, Hacking and Exploits, Microsoft, Server and Virtualisation Leave a comment
Hotpatch Alert: Microsoft Fixes Critical RRAS Remote-Execution Flaws in Windows 11

Microsoft issued an out-of-band hotpatch on March 13, 2026, to address a set of serious vulnerabilities in the Windows Routing and Remote Access Service (RRAS) management tool that affect Windows 11. The update, tracked as KB5084597 and aimed at OS builds 26200.7982 (25H2) and 26100.7982 (24H2), patches three CVEs that can allow a remote attacker to disrupt RRAS or execute

Continue

Urgent Patching Required: Multiple VMware Aria Vulnerabilities Enable Remote Code Execution and Privilege Escalation

Cloud Computing, Cybersecurity, Hacking and Exploits, Microsoft, PowerShell, Server and Virtualisation Leave a comment
Urgent Patching Required: Multiple VMware Aria Vulnerabilities Enable Remote Code Execution and Privilege Escalation

VMware’s Aria Operations — a cornerstone for many organizations’ cloud and infrastructure management — was thrust into the spotlight this week after Broadcom published VMSA-2026-0001, detailing three significant vulnerabilities. These flaws range from command injection that can lead to full remote code execution, to stored cross-site scripting that enables administrative actions, and a privilege escalation path from vCenter to Aria

Continue

Chrome 0‑Day Under Active Attack: CVE‑2026‑2441 — What You Need to Do Now

Cybersecurity, Hacking and Exploits, Linux Leave a comment
Chrome 0‑Day Under Active Attack: CVE‑2026‑2441 — What You Need to Do Now

Google has released an emergency patch for a high‑severity zero‑day in Chrome after confirming active exploitation in the wild. Tracked as CVE‑2026‑2441, the vulnerability is a use‑after‑free bug in Chrome’s CSS handling that can enable remote code execution when a user visits crafted web content. How the flaw works CVE‑2026‑2441 arises from improper lifecycle management of objects in the rendering

Continue