News Archives • Page 541 of 631 • Daily CyberSecurity

PoC exploit for execute arbitrary code in Apple products (CVE-2023-23504) released

Ddos January 24, 2023

Security researcher Adam Doupé of ASU SEFCOM has disclosed details of a now-patched security vulnerability in Apple...

CVE-2022-31704 & CVE-2022-31706: RCE flaws in VMware vRealize Log Insight

Ddos January 24, 2023

VMware on Tuesday announced patches for several critical and high-severity vulnerabilities affecting its product. Some of which...

PoC Code for Arm Mali GPU Kernel Driver Flaw (CVE-2022-38181) Published

Ddos January 24, 2023

Man Yue Mo, a security researcher with GitHub, has released technical details and proof-of-concept (PoC) exploit code...

Apple Warns of 0-Day CVE-2022-42856 vulnerability on older iPhones, iPads Apple iOS 12.5.8 certificate update, iPhone 5s legacy support 2026 CVE-2022-42856 vulnerability

Apple iOS 12.5.8 certificate update, iPhone 5s legacy support 2026 CVE-2022-42856 vulnerability

Apple Warns of 0-Day CVE-2022-42856 vulnerability on older iPhones, iPads

Ddos January 23, 2023

Apple on Wednesday released security updates for iOS, iPadOS, and iPod to remediate a zero-day vulnerability previously exploited by...

PoC Code for iOS 16.2/macOS Ventura code execution (CVE-2022-42864) Published CVE-2022-42864 PoC

PoC Code for iOS 16.2/macOS Ventura code execution (CVE-2022-42864) Published

Ddos January 23, 2023

A security researcher has published proof-of-concept (PoC) code for a macOS/iOS vulnerability in IOHIDFamily that could be...

CVE-2023-22727: Critical SQLi Flaw Patched in CakePHP

Ddos January 23, 2023

The developers of CakePHP have patched a critical vulnerability that can be exploited by a remote attacker...

CVE-2023-24059: 0-day bug in Riot Games Grand Theft Auto V for PC

Ddos January 22, 2023

Riot Games, the video game developer, and publisher confirmed that it has seen its systems being compromised...

CVE-2023-22794: RubyGems ActiveRecord SQL Injection Vulnerability

Ddos January 19, 2023

On January 18, a SQL injection vulnerability was disclosed that impacts some specific versions of the Ruby...

Researchers release PoC exploit for ManageEngine RCE (CVE-2022-47966) CVE-2022-47966 PoC

Researchers release PoC exploit for ManageEngine RCE (CVE-2022-47966)

Ddos January 19, 2023

Horizon3.ai red-teamer James Horseman released a proof-of-concept (PoC) exploit and technical analysis for authentication remote code execution...

CVE-2023-22809: Sudo flaw lets attackers gain root privileges

Ddos January 18, 2023

A high-severity vulnerability has been reported in Sudo that could be exploited by a low-privilege attacker to...

4 Dell BIOS Bugs Affect Millions of Inspiron, Vostro, Alienware Devices CVE-2022-34393

4 Dell BIOS Bugs Affect Millions of Inspiron, Vostro, Alienware Devices

Ddos January 18, 2023

Four new security vulnerabilities have been disclosed in Dell BIOS that, if successfully exploited, could lead to...

CVE-2022-41903 & CVE-2022-23521: Critical RCE flaws in Git

Ddos January 18, 2023

The maintainers of the fast, scalable, distributed revision control system Git have issued patches for two critical...

CVE-2022-46891: High-Severity Vulnerability in Arm Mali GPU Kernel Driver Arm Physical AI 2026, AI-Defined Platforms CVE-2022-46891 Arm SME2, Mobile AI Performance

Arm Physical AI 2026, AI-Defined Platforms CVE-2022-46891 Arm SME2, Mobile AI Performance

CVE-2022-46891: High-Severity Vulnerability in Arm Mali GPU Kernel Driver

Ddos January 18, 2023

Arm last month announced that the patches were released for a high-severity vulnerability impacting the Arm Mali...

CVE-2022-36760: Apache HTTP Server HTTP Request Smuggling Vulnerability

Ddos January 17, 2023

The Apache Software Foundation has released a new version of its HTTP Server web server to patch...

CVE-2022-41703: Critical-Severity Vulnerability Found in Apache Superset

Ddos January 16, 2023

Seven security advisories for the Apache Superset open-source Data visualization and data exploration platform have been released...

CVE-2021-26316: Code Execution Flaw in AMD EPYC and Ryzen processors AMD RDSEED, Zen 5 Bug, Microcode Fix CVE-2021-26316

CVE-2021-26316: Code Execution Flaw in AMD EPYC and Ryzen processors

Ddos January 15, 2023

AMD recently released two security bulletins revealing 31 processor vulnerabilities, 3 of which affected Ryzen, Athlon, Thread...

CVE-2023-0179: Linux Kernel Privilege Escalation Vulnerability

Ddos January 15, 2023

Security researcher Davide Ornaghi has discovered a new privilege escalation vulnerability in the Linux kernel that could allow...

CVE-2023-22602: Apache Shiro Authentication Bypass Vulnerability

Ddos January 15, 2023

Apache Shiro last week issued a risk notice about the authentication bypass vulnerability. Tracked as CVE-2023-22602, Apache...

Researcher Details Lexmark Printer “Zero-Day” Vulnerability Lexmark Printer Vulnerability

Researcher Details Lexmark Printer “Zero-Day” Vulnerability

Ddos January 13, 2023

Details have emerged about a now-unpatched security flaw in the Lexmark printer that could be exploited by...

Cisco Patches High-Severity Flaws in IP Phone, IND, BroadWorks Application Delivery Platform and Xtended Services products

Ddos January 12, 2023

On January 11, Cisco released multiple security updates to address high vulnerabilities that exist in Cisco IP...

Critical Alert 1 Active Exploit Detected Today