Critical security vulnerabilities across multiple platforms are exposing systems to crashes, exploits, and arbitrary command execution. Patches are rolling out for OpenSSL, QNAP devices, and various kernel-level threats as attackers target null pointer dereference flaws and injection weaknesses.
·AirDrop and Quick Share vulnerabilities allow remote device crashes without user interaction
·Bloomberg Comdb2 suffers null pointer dereference enabling denial-of-service attacks
·QNAP devices face multiple injection flaws permitting arbitrary command execution on networks
·OpenSSL releases version 3.6.2 with critical security fixes for production systems
·Linux kernel hardening via Ksplice addresses emerging class of privilege escalation exploits
drawn from CyberSecurityNews, Oracle Blogs, Cisco Talos Blog, Phoronix · updated 2d ago