Researchers have discovered a “trivially exploitable” local privilege escalation vulnerability (CVE-2021-4034) in Polkit’s pkexec tool that affects likely every major Linux distribution.
Cybersecurity firm Qualys announced a “limited” number of their customers had been impacted by a data breach caused by an exploited Accellion FTA zero-day vulnerability on Qualys customer support systems.
Security researchers have discovered a new vulnerability in OpenBSD’s OpenSMTPD mail server. An attacker could exploit the remote code execution vulnerability CVE-2020-7247 and execute arbitrary shell commands with elevated privileges.
Researchers at Qualys discovered a critical remote command execution vulnerability in Exim, a popular mail transfer agent (MTA) used on mostly Unix-like operating systems.
Security researchers at Qualys have discovered a new vulnerability in the Linux kernel that affects Red Hat Enterprise Linux (RHEL) and CentOS Linux distributions.