June 23, 2026

Do Son

Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.
7.5 CVE-2024-0112: NVIDIA Patches High-Severity Vulnerability in Jetson and IGX Orin Platforms NemoClaw Prompt Injection AI Sandbox Security NVIDIA Physical AI CES 2026, Jetson T4000 robotics hardware NVIDIA AI Security, Isaac Lab RCE NVIDIA Driver RCE, CVE-2025-23309 NVIDIA Triton, AI Server Vulnerabilities CVE-2023-31029 & CVE-2023-31024 - CVE‑2024-0112

7.5 CVE-2024-0112: NVIDIA Patches High-Severity Vulnerability in Jetson and IGX Orin Platforms

Do Son February 12, 2025 0
NVIDIA has issued a security bulletin announcing a software update for its Jetson AGX Orin series, including...
Read More Read more about <span class="dcs-sev-badge" style="background:#f97316;">7.5</span> CVE-2024-0112: NVIDIA Patches High-Severity Vulnerability in Jetson and IGX Orin Platforms
8.7 GitLab Patches High-Severity XSS Flaw (CVE-2025-0376) and Other Security Flaws in Latest Release CVE-2024-9164 - CVE-2025-0376 GitLab Wiki XSS, Session Hijack Flaw

8.7 GitLab Patches High-Severity XSS Flaw (CVE-2025-0376) and Other Security Flaws in Latest Release

Do Son February 12, 2025 0
GitLab has issued a security advisory, urging users to update their installations immediately to address a range...
Read More Read more about <span class="dcs-sev-badge" style="background:#f97316;">8.7</span> GitLab Patches High-Severity XSS Flaw (CVE-2025-0376) and Other Security Flaws in Latest Release
High Chrome Patches Four High-Severity Vulnerabilities in Latest Stable Channel Update CVE-2025-0995

High Chrome Patches Four High-Severity Vulnerabilities in Latest Stable Channel Update

Do Son February 12, 2025 0
In a update for desktop users, Google has released Chrome version 133.0.6943.98/.99 for Windows and Mac, and...
Read More Read more about <span class="dcs-sev-badge" style="background:#f97316;">High</span> Chrome Patches Four High-Severity Vulnerabilities in Latest Stable Channel Update
Chinese Hackers Suspected in Ivanti CSA Attacks: Webshells and Lateral Movement Detected Sources and related content Quest KACE Vulnerability CVE-2025-32975 FortiGate SSO Bypass, Active Exploitation GoAnywhere RCE, Storm-1175 Cisco VPN RCE, ASA Zero-Day TinyColor Supply Chain Attack SK Telecom, data breach Erlang/OTP RCE, OT Network Security Ivanti CSA Attacks WordPress RCE, Theme Vulnerability

Chinese Hackers Suspected in Ivanti CSA Attacks: Webshells and Lateral Movement Detected Sources and related content

Do Son February 12, 2025 0
A series of critical vulnerabilities affecting Ivanti Cloud Service Appliance (CSA) 4.6 have been actively exploited in...
Read More Read more about Chinese Hackers Suspected in Ivanti CSA Attacks: Webshells and Lateral Movement Detected Sources and related content
9.9 CVE-2025-22467 (CVSS 9.9): Ivanti Connect Secure Vulnerability Allows Remote Code Execution CVE-2024-37404 - CVE-2025-22467

9.9 CVE-2025-22467 (CVSS 9.9): Ivanti Connect Secure Vulnerability Allows Remote Code Execution

Do Son February 11, 2025 0
Ivanti has disclosed multiple vulnerabilities affecting its Connect Secure, Policy Secure, and Secure Access Client products, with...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">9.9</span> CVE-2025-22467 (CVSS 9.9): Ivanti Connect Secure Vulnerability Allows Remote Code Execution
9.9 CVE-2025-24016 (CVSS 9.9): Critical RCE Vulnerability Discovered in Wazuh Server CVE-2025-24016

9.9 CVE-2025-24016 (CVSS 9.9): Critical RCE Vulnerability Discovered in Wazuh Server

Do Son February 11, 2025 0
Wazuh, a leading provider of open-source security solutions, has issued a critical security advisory regarding a remote...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">9.9</span> CVE-2025-24016 (CVSS 9.9): Critical RCE Vulnerability Discovered in Wazuh Server
9.8 CVE-2024-12366: Prompt Injection in PandasAI Enables Full System Compromise CVE-2024-12366

9.8 CVE-2024-12366: Prompt Injection in PandasAI Enables Full System Compromise

Do Son February 11, 2025 0
A newly disclosed security vulnerability in PandasAI, an open-source AI-powered data analysis library by SinaptikAI, exposes users...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">9.8</span> CVE-2024-12366: Prompt Injection in PandasAI Enables Full System Compromise
Sandworm APT Exploits Trojanized KMS Tools to Target Ukrainian Users in Cyber Espionage Campaign Sandworm APT - APT44

Sandworm APT Exploits Trojanized KMS Tools to Target Ukrainian Users in Cyber Espionage Campaign

Do Son February 11, 2025 0
The notorious Sandworm APT (APT44), a Russian-state-sponsored threat actor affiliated with the GRU (Russia’s Main Intelligence Directorate),...
Read More Read more about Sandworm APT Exploits Trojanized KMS Tools to Target Ukrainian Users in Cyber Espionage Campaign
9.2 CVE-2025-24032, CVE-2025-24531, and More: Critical Flaws in PAM-PKCS#11 Expose Linux Authentication to Attackers CVE-2025-24032, CVE-2025-24531

9.2 CVE-2025-24032, CVE-2025-24531, and More: Critical Flaws in PAM-PKCS#11 Expose Linux Authentication to Attackers

Do Son February 11, 2025 0
The PAM-PKCS#11 login module, a widely used tool for X.509 certificate-based user login on Linux systems, has...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">9.2</span> CVE-2025-24032, CVE-2025-24531, and More: Critical Flaws in PAM-PKCS#11 Expose Linux Authentication to Attackers
8.4 CVE-2025-1143: Billion Electric Routers Vulnerable to Remote Takeover Due to Hard-coded Credentials CVE-2025-1143

8.4 CVE-2025-1143: Billion Electric Routers Vulnerable to Remote Takeover Due to Hard-coded Credentials

Do Son February 11, 2025 0
The Taiwan Computer Emergency Response Team / Coordination Center (TWCERT/CC) has issued a security advisory warning of...
Read More Read more about <span class="dcs-sev-badge" style="background:#f97316;">8.4</span> CVE-2025-1143: Billion Electric Routers Vulnerable to Remote Takeover Due to Hard-coded Credentials
US Treasury Sanctions Russian Bulletproof Hosting Provider Zservers for Supporting LockBit Ransomware Attacks CVE-2024-3393 - Zservers sanctions

US Treasury Sanctions Russian Bulletproof Hosting Provider Zservers for Supporting LockBit Ransomware Attacks

Do Son February 11, 2025 0
The U.S. Department of the Treasury, in a coordinated effort with Australia and the United Kingdom, has...
Read More Read more about US Treasury Sanctions Russian Bulletproof Hosting Provider Zservers for Supporting LockBit Ransomware Attacks
7.8 Microsoft Patches Actively Exploited Zero-Day Flaws – CVE-2025-21418 & CVE-2025-21391 Microsoft Patch Tuesday fixes disclosed zero day vulnerabilities Windows Wormable Exploit April 2026 Patch Tuesday Microsoft Patch Tuesday Zero-Day Vulnerabilities Microsoft, Patch Tuesday CVE-2025-55234 CVE-2024-43573 and CVE-2024-43572 Microsoft Patch Tuesday Security Vulnerabilities

7.8 Microsoft Patches Actively Exploited Zero-Day Flaws – CVE-2025-21418 & CVE-2025-21391

Do Son February 11, 2025 0
Microsoft has rolled out its February 2025 Patch Tuesday security updates, addressing 67 vulnerabilities across multiple products....
Read More Read more about <span class="dcs-sev-badge" style="background:#f97316;">7.8</span> Microsoft Patches Actively Exploited Zero-Day Flaws – CVE-2025-21418 & CVE-2025-21391
6.3 CVE-2024-12797 – High-Severity OpenSSL Flaw: Update Now to Prevent MITM Attacks OpenSSL Vulnerability RSA Memory Leak OpenSSL Vulnerability CVE-2025-15467 CVE-2022-2274 OpenSSL Vulnerabilities, Timing Side-Channel

6.3 CVE-2024-12797 – High-Severity OpenSSL Flaw: Update Now to Prevent MITM Attacks

Do Son February 11, 2025 0
A high-severity vulnerability has been discovered in OpenSSL, a widely-used cryptography library that secures countless websites and...
Read More Read more about <span class="dcs-sev-badge" style="background:#f4c025;">6.3</span> CVE-2024-12797 – High-Severity OpenSSL Flaw: Update Now to Prevent MITM Attacks