Vulnerability Archives • Page 123 of 190 • Daily CyberSecurity

Mastodon Alert: CVE-2024-23832 Unlocks Account Takeover Threat

Ddos February 2, 2024

A critical vulnerability in the decentralized social networking platform Mastodon could be exploited to impersonate and take...

Under Attack: CVE-2023-6700 in ‘Cookie Information’ Plugin Threatens 100k WordPress Sites

Ddos February 2, 2024

In the ever-evolving Internet landscape, the importance of data privacy and compliance with regulations such as GDPR...

CVE-2024-1072: Critical Flaw in SeedProd Plugin Exposes 900K WordPress Sites

Ddos February 1, 2024

A high-severity flaw has been found in a popular WordPress plugin. The affected plugin, Website Builder by...

Millions of Routers at Risk: CVE-2024-21833 Threatens TP-Link Devices FCC drone router firmware extension 2029 CVE-2024-21833 FCC foreign router ban 2026

FCC drone router firmware extension 2029 CVE-2024-21833 FCC foreign router ban 2026

Millions of Routers at Risk: CVE-2024-21833 Threatens TP-Link Devices

Ddos February 1, 2024

Recently, CYFIRMA’s Research Team has conducted an exhaustive analysis of a security vulnerability, identified as CVE-2024-21833, that...

WordPress Tackles PHP and RCE Flaws in Security Update WordPress POP chain attack - CVE-2024-10957

WordPress Tackles PHP and RCE Flaws in Security Update

Ddos January 31, 2024

WordPress, a titan in the world of content management systems, has once again demonstrated its commitment to...

CVE-2024-21626: Docker Confronts Critical Container Escape Threat

Ddos January 31, 2024

In the ever-evolving world of technology, security remains a paramount concern, especially in the realm of containerization....

CVE-2024-23222: Apple fixes zero-day vulnerability exploited in Apple Vision Pro Apple Vision Pro vulnerability

CVE-2024-23222: Apple fixes zero-day vulnerability exploited in Apple Vision Pro

Ddos January 31, 2024

Apple, a vanguard in innovation, has recently confronted a formidable challenge: a zero-day vulnerability within their groundbreaking...

CVE-2024-1019: Exposing ModSecurity’s Critical WAF Bypass Flaw

Ddos January 31, 2024

In the world of web application security, ModSecurity has long been a good choice against cyber threats....

CVE-2024-21888 & CVE-2024-21893: Ivanti Discloses Two Major Zero-Day Vulnerabilities RDP Botnet, Coordinated Scanning CVE-2024-21888 & CVE-2024-21893

RDP Botnet, Coordinated Scanning CVE-2024-21888 & CVE-2024-21893

CVE-2024-21888 & CVE-2024-21893: Ivanti Discloses Two Major Zero-Day Vulnerabilities

Ddos January 31, 2024

Today, Ivanti, a renowned player in the cybersecurity arena, disclosed two critical zero-day vulnerabilities within their Connect...

Exploited in the Wild: The Alarming Hitron DVR Vulnerabilities CVE-2024-22768 to CVE-2024-23842

Exploited in the Wild: The Alarming Hitron DVR Vulnerabilities

Ddos January 30, 2024

In a concerning development in the realm of cybersecurity, the Akamai Security Intelligence Response Team (SIRT) has...

Root Access Risk: CVE-2023-6246 Exposes Critical Flaw in Linux’s glibc

Ddos January 30, 2024

The GNU C Library (glibc), a fundamental component in major Linux distributions, has a critical vulnerability, CVE-2023-6246....

CVE-2023-41474: Ivanti Avalanche Directory Traversal Flaw, PoC Published

Ddos January 29, 2024

Ivanti Avalanche, a mighty tool in the realm of Mobile Device Management (MDM), serves as a beacon,...

CVE-2024-22860 & CVE-2024-22862: Critical FFmpeg Remote Code Execution Flaws CVE-2024-22860 and CVE-2024-22862

CVE-2024-22860 & CVE-2024-22862: Critical FFmpeg Remote Code Execution Flaws

Ddos January 29, 2024

FFmpeg, a widely used open-source project for handling multimedia files, has recently been spotlighted for its vulnerabilities....

Critical Alert: CVE-2023-6200 Exploits Linux Kernel with Code Execution Risk Linux Kernel legacy driver removal Linux kernel x86 page fault, interrupt state asymmetry fix Linux ISO, false positive CVE-2023-6200 - Linux Kernel 6.12 LTS 6.14

Linux Kernel legacy driver removal Linux kernel x86 page fault, interrupt state asymmetry fix Linux ISO, false positive CVE-2023-6200 - Linux Kernel 6.12 LTS 6.14

Critical Alert: CVE-2023-6200 Exploits Linux Kernel with Code Execution Risk

Ddos January 28, 2024

A new vulnerability has been found in the Linux Kernel’s IPv6 implementation. Identified as CVE-2023-6200, with a...

CVE-2024-21326 (CVSS 9.6): One Click Could Compromise Microsoft Edge

Ddos January 28, 2024

Microsoft has released a security update for its browser, Microsoft Edge, addressing vulnerabilities revealed in Chromium and...

Breaking Down CVE-2024-23897: PoC Code Surfaces Just After Jenkins Advisory CVE-2024-23897 PoC

Breaking Down CVE-2024-23897: PoC Code Surfaces Just After Jenkins Advisory

Ddos January 26, 2024

The technical details and proof-of-concept (PoC) code targeting a critical CVE-2024-23897 vulnerability in Jenkins was published one...

CVE-2023-40547: The Critical Shim Flaw Compromising Linux Bootloaders CVE-2023-40547 Iran Internet Shutdown

CVE-2023-40547: The Critical Shim Flaw Compromising Linux Bootloaders

Ddos January 25, 2024

Recently, a new vulnerability has been unearthed that strikes at the very core of system boot processes,...

CVE-2024-0402: GitLab Releases Urgent Security Patches for Critical Vulnerability

Ddos January 25, 2024

GitLab has addressed a critical severity vulnerability that could allow an authenticated user to write files to...

Over a Million Sites at Risk: Hackers are Exploiting CVE-2023-6933 Flaw in WordPress Plugin

Ddos January 25, 2024

A critical vulnerability was identified in the widely used Better Search Replace plugin, a staple tool for...

CVE-2023-49657: Apache Superset Hit by High-Risk Stored XSS Vulnerability

Ddos January 24, 2024

The maintainers of the Apache Superset open-source data visualization software have released fixes to fix a critical vulnerability...

Critical Alert 1 Active Exploit Detected Today