Vulnerability Archives • Page 119 of 190 • Daily CyberSecurity

CVE-2024-26582 (CVSS 8.4): Linux Kernel Code Execution Vulnerability

Ddos February 23, 2024

A high-severity vulnerability, designated CVE-2024-26582, has been discovered within the Transport Layer Security (TLS) subsystem of the...

Apple Shortcuts Vulnerability (CVE-2024-23204): Technical Analysis and Mitigation

Ddos February 22, 2024

A patched vulnerability within Apple’s Shortcuts automation framework presents a substantial risk to macOS and iOS devices....

Defend Your Cloud: 8220 Gang Targets Linux & Windows

Ddos February 22, 2024

The notorious 8220 Gang has resurfaced, targeting cloud infrastructure in a campaign demonstrating significant advancements in their...

Apache Answer Flaws: XSS, DoS Attacks Possible – Update Urgently CVE-2024-23349

Apache Answer Flaws: XSS, DoS Attacks Possible – Update Urgently

Ddos February 22, 2024

Security researchers have recently disclosed three vulnerabilities affecting Apache Answer versions up to 1.2.1. These vulnerabilities could...

Lucifer Botnet Exploits Apache Hadoop & Druid (CVE-2021-25646) for Cryptomining

Ddos February 22, 2024

Security researchers at Aqua Nautilus have uncovered a sophisticated campaign exploiting misconfigurations and vulnerabilities in Apache Hadoop...

Urgent Alert for Developers: Fix the Critical Fiber Go CVE-2024-25124 Vulnerability Now CVE-2024-25124 Fiber Framework Vulnerability CVE-2025-66630

CVE-2024-25124 Fiber Framework Vulnerability CVE-2025-66630

Urgent Alert for Developers: Fix the Critical Fiber Go CVE-2024-25124 Vulnerability Now

Ddos February 22, 2024

Developers using the Fiber Go web framework should immediately address a critical vulnerability in the CORS middleware....

CVE-2024-1212 (CVSS 10): Unauthenticated Takeover Threat in Progress Kemp LoadMaster CVE-2024-1212 LoadMaster Vulnerability CVE-2025-13444

CVE-2024-1212 (CVSS 10): Unauthenticated Takeover Threat in Progress Kemp LoadMaster

Ddos February 21, 2024

A critical security vulnerability has been exposed in Progress Kemp LoadMaster, leaving your network infrastructure at grave...

CVE-2023-7235: OpenVPN Vulnerability Puts Windows Users at Risk CVE-2023-7235 - CVE-2024-5594 OpenVPN Buffer Over-read, HMAC Bypass

CVE-2023-7235: OpenVPN Vulnerability Puts Windows Users at Risk

Ddos February 21, 2024

OpenVPN has released version 2.6.9 for Windows, Mac, and Linux, addressing a severe privilege escalation vulnerability (CVE-2023-7235)....

APT29’s Espionage Campaign Exploits WinRAR Flaw, Targets Embassies APT29 TACTICS

APT29’s Espionage Campaign Exploits WinRAR Flaw, Targets Embassies

Ddos February 21, 2024

In September 2023, the infamous Russian-linked cyber-espionage group APT29 flexed its muscle again, this time targeting embassies...

CVE-2024-1709 & 1708: ScreenConnect Vulnerabilities Under Active Attack CVE-2024-1709 PoC

CVE-2024-1709 & 1708: ScreenConnect Vulnerabilities Under Active Attack

Ddos February 21, 2024

In alarming news from February 2024, ConnectWise, a prevalent provider of remote desktop software, disclosed severe security...

CVE-2024-22243: Spring Framework Flaw Opens Doors to Redirects and SSRF Attacks CVE-2024-22243 Spring CLI Vulnerability CVE-2026-22718

CVE-2024-22243: Spring Framework Flaw Opens Doors to Redirects and SSRF Attacks

Ddos February 21, 2024

The Spring Framework, a cornerstone of countless enterprise Java applications, recently revealed a significant vulnerability (CVE-2024-22243). This...

CVE-2024-21678: High-Severity Atlassian Confluence XSS – Act Now CVE-2024-21678 Jira, Privilege Escalation

CVE-2024-21678: High-Severity Atlassian Confluence XSS – Act Now

Ddos February 21, 2024

Atlassian has released a security update addressing CVE-2024-21678 (CVSS 8.5), a high-severity stored cross-site scripting (XSS) vulnerability...

CVE-2024-1317: Critical WordPress Plugin Flaw Leaves Your Data Exposed

Ddos February 21, 2024

A serious vulnerability jeopardizes the security of WordPress websites using the popular RSS Aggregator by the Feedzy...

CVE-2024-21726: Patch Now to Stop Joomla Remote Code Execution

Ddos February 20, 2024

A recent discovery by Sonar’s Vulnerability Research Team has exposed a major security issue within the popular...

CVE-2024-22245 & 22250: VMware Vulnerabilities Demand Immediate Action CVE-2024-22245 and CVE-2024-22250

CVE-2024-22245 & 22250: VMware Vulnerabilities Demand Immediate Action

Ddos February 20, 2024

VMware has released an urgent security advisory regarding two critical vulnerabilities within its now-deprecated Enhanced Authentication Plug-in...

Critical Security Vulnerabilities in ConnectWise ScreenConnect Demand Immediate Patching ScreenConnect vulnerability

Critical Security Vulnerabilities in ConnectWise ScreenConnect Demand Immediate Patching

Ddos February 20, 2024

In a chilling development, ConnectWise issued a critical security advisory on February 19, 2024, exposing two gaping...

Spring Security Vulnerability (CVE-2024-22234): Mitigating Broken Access Control CVE-2024-22234 Spring Security Vulnerability CVE-2026-22732

Spring Security Vulnerability (CVE-2024-22234): Mitigating Broken Access Control

Ddos February 20, 2024

A recently disclosed vulnerability in Spring Security (CVE-2024-22234, CVSS 7.4) could lead to unauthorized access within affected...

CVE-2023-49109: Apache Dolphinscheduler Remote Code Execution Vulnerability

Ddos February 20, 2024

Recent disclosures have highlighted multiple security vulnerabilities within the Apache DolphinScheduler workflow scheduling platform. These vulnerabilities demand...

Zyxel Security Vulnerabilities: DoS, Command Injection & More CVE-2023-6764