Vulnerability Archives • Page 10 of 235 • Daily CyberSecurity

Critical PyTorch Vulnerability CVE-2025-32434 Allows Remote Code Execution PyTorch vulnerability, CVE-2025-32434

Critical PyTorch Vulnerability CVE-2025-32434 Allows Remote Code Execution

Ddos April 21, 2025

A critical vulnerability has been unearthed in PyTorch, one of the most beloved deep learning frameworks out...

Yokogawa Recorders Vulnerable to Attack Due to Insecure Default Settings Yokogawa vulnerability Insecure default settings

Yokogawa Recorders Vulnerable to Attack Due to Insecure Default Settings

Ddos April 21, 2025

Yokogawa Electric Corporation has issued a security advisory warning of a critical vulnerability affecting several of its...

CVE-2025-2492: Critical ASUS Router Vulnerability Requires Immediate Firmware Update ASUS router vulnerability CVE-2025-2492

CVE-2025-2492: Critical ASUS Router Vulnerability Requires Immediate Firmware Update

Ddos April 21, 2025

ASUS has released a firmware update addressing a critical-severity vulnerability—CVE-2025-2492—with a CVSSv4 score of 9.2. The flaw...

CVE-2025-42599: Critical Buffer Overflow in Active! mail Exploited in the Wild Active! mail vulnerability, CVE-2025-42599

CVE-2025-42599: Critical Buffer Overflow in Active! mail Exploited in the Wild

Ddos April 21, 2025

A severe security vulnerability has been identified in Active! mail, a product of QUALITIA CO., LTD., posing...

Critical Meshtastic RCE Vulnerability (CVE-2025-24797) Requires Urgent Update

Ddos April 21, 2025

A critical security vulnerability has been disclosed in Meshtastic, the open-source LoRa mesh networking platform known for...

GitHub Enterprise Server Vulnerabilities Expose Risk of Code Execution and Data Leaks GitHub Enterprise, CVE-2025-3509

GitHub Enterprise Server Vulnerabilities Expose Risk of Code Execution and Data Leaks

Ddos April 19, 2025

GitHub has released security updates to address several vulnerabilities in GitHub Enterprise Server, including a high-severity flaw...

GCVE: Decentralizing Vulnerability Identification for Greater Agility GCVE, vulnerability identification

GCVE: Decentralizing Vulnerability Identification for Greater Agility

Ddos April 18, 2025

A new initiative, the Global CVE (GCVE) Allocation System, is introducing a decentralized approach to the crucial...

Urgent Security Alert: CISA Warns of Actively Exploited Apple and Microsoft Vulnerabilities Apple vulnerabilities, NTLM hash spoofing

Urgent Security Alert: CISA Warns of Actively Exploited Apple and Microsoft Vulnerabilities

Ddos April 18, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning, adding three new vulnerabilities to its...

Critical Bubble.io Vulnerability Exposes Apps to Data Theft via Elasticsearch, No Patch Bubble.io vulnerability, Elasticsearch exploit

Critical Bubble.io Vulnerability Exposes Apps to Data Theft via Elasticsearch, No Patch

Ddos April 18, 2025

Bubble.io, the increasingly popular no-code development platform, has been found to harbor a significant security vulnerability that...

Critical CVE-2025-32433 PoC Released: Erlang/OTP SSH Vulnerability Enables RCE Erlang SSH, CVE-2025-32433

Critical CVE-2025-32433 PoC Released: Erlang/OTP SSH Vulnerability Enables RCE

Ddos April 18, 2025

An anonymous security researcher has published proof-of-concept code for CVE-2025-32433, a critical vulnerability in the Erlang/OTP SSH...

CVE-2024-53141: Linux Kernel Flaw Enables Privilege Escalation, PoC Releases CVE-2024-53141, Linux Kernel

CVE-2024-53141: Linux Kernel Flaw Enables Privilege Escalation, PoC Releases

Ddos April 18, 2025

Security researcher published the technical details and a proof-of-concept exploit for a vulnerability in Linux kernel—CVE-2024-53141, having...

Hitachi Vantara Patches Critical Resource Injection Flaw in Pentaho Hitachi Vantara, Pentaho

Hitachi Vantara Patches Critical Resource Injection Flaw in Pentaho

Ddos April 18, 2025

Hitachi Vantara has issued a critical security advisory addressing a serious vulnerability in its widely used Pentaho...

Siemens Fixes 66 SQL Injection Flaws in TeleControl Server Basic Siemens, SQL Injection

Siemens Fixes 66 SQL Injection Flaws in TeleControl Server Basic

Ddos April 18, 2025

Siemens has released a critical security advisory addressing 66 high-severity SQL injection vulnerabilities impacting its TeleControl Server...

RomethemeKit Elementor Plugin Flaw Enables RCE: CVE-2025-30911 RomethemeKit, Elementor

RomethemeKit Elementor Plugin Flaw Enables RCE: CVE-2025-30911

Ddos April 17, 2025

A newly disclosed vulnerability in the popular RomethemeKit For Elementor WordPress plugin—installed on over 30,000 active sites—could...

Erlang/OTP CVE-2025-32433 (CVSS 10): Critical SSH Flaw Allows Unauthenticated RCE Erlang/OTP, remote code execution

Erlang/OTP CVE-2025-32433 (CVSS 10): Critical SSH Flaw Allows Unauthenticated RCE

Ddos April 17, 2025

A critical vulnerability has been discovered in the SSH server component of Erlang/OTP, a technology widely used...