News Archives • Page 523 of 631 • Daily CyberSecurity

Microsoft Patches 89 Security Vulnerabilities, Including Two Zero-Days (CVE-2023-38180 & CVE-2023-36884)

Ddos August 8, 2023

Microsoft has once again taken up arms against the ceaseless tide of cyber threats, releasing its August...

Android’s August 2023 Updates Patch Critical RCE (CVE-2023-21273 & CVE-2023-21282) Bugs

Ddos August 7, 2023

Google this week announced the August 2023 security updates for Android devices, with patches for over 48...

CVE-2023-39526: Critical SQL injection in PrestaShop CVE-2023-39526 PrestaShop

CVE-2023-39526: Critical SQL injection in PrestaShop

Ddos August 7, 2023

With the rapid growth of e-commerce and online transactions, a seamless shopping experience has become a necessity...

PoC released for critical Citrix ADC 0-day flaw – CVE-2023-3519 CVE-2023-3519 PoC

PoC released for critical Citrix ADC 0-day flaw – CVE-2023-3519

Ddos August 7, 2023

A proof-of-concept (PoC) for CVE-2023-3519, a critical vulnerability in Citrix ADC that allows remote code execution, has...

CVE-2023-3823 & CVE-2023-3824 – PHP Security Vulnerabilities: What You Need to Know

Ddos August 7, 2023

PHP is a popular programming language used to create dynamic web pages. However, like any software, it...

Hacking Tesla’s MCU-Z: A Breakdown of New AMD-Based Vulnerabilities

Ddos August 6, 2023

Tesla’s electric vehicles, through their MCU (Multimedia Control Unit), have utilized all three major tech components, starting...

CVE-2023-39157: RCE in JetElements For Elementor Plugin affects 300,000 websites

Ddos August 3, 2023

A critical vulnerability has been discovered in the JetElements For Elementor plugin that could allow an authenticated...

CVE-2023-39292 & CVE-2023-39293: Mitel MiVoice Office 400 SMB Controller Security Vulnerabilities

Ddos August 3, 2023

Recently, two critical security vulnerabilities have emerged in the MiVoice Office 400 SMB Controller, drawing significant attention...

CVE-2023-35082: Critical Security Vulnerability in MobileIron Core

Ddos August 3, 2023

IT software company Ivanti has disclosed a new critical security vulnerability in its MobileIron Core mobile device...

CVE-2023-3718: Aruba CX Switches Vulnerable to Remote Code Execution

Ddos August 2, 2023

Aruba Networking has released updates for wired switch products running AOS-CX that address a security vulnerability in...

CVE-2023-3162: Stripe Payment Plugin for WooCommerce Authentication Bypass Flaw

Ddos August 2, 2023

A critical security vulnerability has been discovered in the Stripe Payment Plugin for WooCommerce that could allow...

CVE-2023-20583 – A new vulnerability impacting CPUs

Ddos August 2, 2023

Austrian and German scientists have devised a power monitoring side-channel attack targeting computer CPUs, capable of leaking...

CVE-2023-28130 – A Critical Security Flaw in Check Point Gaia Portal

Ddos August 2, 2023

A critical vulnerability has been discovered in Check Point Gaia Portal that could allow an authenticated attacker...

Hackers are actively exploiting BleedingPipe vulnerability in Minecraft mods

Ddos August 1, 2023

Last Saturday, researchers from the Minecraft security community, MMPA, issued a reminder to gamers via a blog...

CVE-2023-31710: TP-Link Archer AX21 Router Vulnerable to Remote Code Execution

Ddos August 1, 2023

TP-Link has patched a critical vulnerability in its Archer AX21 router that could allow attackers to execute...

CISA Adds Ivanti Endpoint Manager Mobile Flaw (CVE-2023-35081) to its KEV Catalog CVE-2023-35081 & CVE-2024-11639

CISA Adds Ivanti Endpoint Manager Mobile Flaw (CVE-2023-35081) to its KEV Catalog

Ddos August 1, 2023

Recently, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) cast a spotlight on a particularly disconcerting issue...

Trojanized MS Visual Studio targeting developers is spreading

Ddos July 31, 2023

Microsoft’s Visual Studio, a popular Integrated Development Environment (IDE), is a favored tool amongst developers for creating...

Researchers Disclose MikroTik RouterOS Security Flaw, Putting Hundreds of Thousands of Devices at Risk

Ddos July 31, 2023

Recently, VulnCheck unveiled in a report a critical privilege escalation vulnerability (CVE-2023-30799, CVSS score 9.1) present within...

Android patches take a long time to reach users’ devices, weakening Android security

Ddos July 31, 2023

Google’s security team recently published a year review of 0-day vulnerabilities exploited in 2022. These reports are...

CVE-2022-27595 & CVE-2022-27600: Two high-severity flaws in QVPN and QNAP Systems QNAP QVR Pro Vulnerability CVE-2026-22898 CVE-2022-27595 - CVE-2024-48860 & CVE-2024-48861

QNAP QVR Pro Vulnerability CVE-2026-22898 CVE-2022-27595 - CVE-2024-48860 & CVE-2024-48861

CVE-2022-27595 & CVE-2022-27600: Two high-severity flaws in QVPN and QNAP Systems

Ddos July 30, 2023

QNAP has recently released security advisories for two vulnerabilities that affect the QVPN Device Client for Windows...

Critical Alert 1 Active Exploit Detected Today