all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Talos discloses multiple zero-day vulnerabilities, two of which could lead to code execution

Add to bookmarks
May 8, 2024, 4 p.m. | Jonathan Munshaw

Cisco Talos Intelligence Group - Comprehensive Threat Intelligence blog.talosintelligence.com

Two vulnerabilities in this group — one in the Tinyroxy HTTP proxy daemon and another in the stb_vorbis.c file library — could lead to arbitrary code execution, earning both issues a CVSS score of 9.8 out of 10.

arbitrary code arbitrary code execution code code execution cvss cvss score daemon earning file http library proxy score talos vulnerabilities vulnerability roundup zero-day zero-day vulnerabilities

Visit resource

More from blog.talosintelligence.com / Cisco Talos Intelligence Group - Comprehensive Threat Intelligence

Rounding up some of the major headlines from RSA 3 days, 5 hours ago | blog.talosintelligence.com
coming conference major may +3
Talos releases new macOS open-source fuzzer 3 days, 11 hours ago | blog.talosintelligence.com
code fuzzer fuzzing linux +8
Only one critical vulnerability included in May’s Microsoft Patch Tuesday; One other zero-day in DWN … 5 days, 5 hours ago | blog.talosintelligence.com
code code execution critical critical vulnerability +18
Talos joins CISA to counter cyber threats against non-profits, activists and other at-risk communities 5 days, 11 hours ago | blog.talosintelligence.com
activists can cisa commercial +19
A new alert system from CISA seems to be effective — now we just need … 1 week, 3 days ago | blog.talosintelligence.com
alert alerts catalog cisa +12
Talos discloses multiple zero-day vulnerabilities, two of which could lead to code execution 1 week, 4 days ago | blog.talosintelligence.com
arbitrary code arbitrary code execution code code execution +14
What can we learn from the passwords used in brute-force attacks? 2 weeks, 3 days ago | blog.talosintelligence.com
attacks brute brute-force can +5
Vulnerabilities in employee management system could lead to remote code execution, login credential theft 2 weeks, 4 days ago | blog.talosintelligence.com
code code execution credential credential theft +21
Cisco Talos at RSAC 2024 2 weeks, 5 days ago | blog.talosintelligence.com
announcements cisco cisco talos cybersecurity +12

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Computer and Forensics Investigator

@ ManTech | 221BQ - Cstmr Site,Springfield,VA
View on infosec-jobs.com

Senior Security Analyst

@ Oracle | United States
View on infosec-jobs.com

Associate Vulnerability Management Specialist

@ Diebold Nixdorf | Hyderabad, Telangana, India
View on infosec-jobs.com