Vulnerability

New Outlook Exploit Unveiled: CVE-2023-35636 Leads to NTLM v2 Password Breach

• Vulnerability

New Outlook Exploit Unveiled: CVE-2023-35636 Leads to NTLM v2 Password Breach

Ddos January 18, 2024 0

In a recent discovery, Varonis Threat Labs has unveiled three new ways that cyber attackers can exploit...

Read More Read more about New Outlook Exploit Unveiled: CVE-2023-35636 Leads to NTLM v2 Password Breach

CVE-2023-50643: Evernote Remote Code Execution Flaw, PoC Published

• Vulnerability

CVE-2023-50643: Evernote Remote Code Execution Flaw, PoC Published

Ddos January 18, 2024 0

Evernote is a popular note-taking and task-management application that helps you capture ideas, organize information, and stay...

Read More Read more about CVE-2023-50643: Evernote Remote Code Execution Flaw, PoC Published

A Stealthy Godzilla Webshell: A New Threat Targeting Apache ActiveMQ

• Malware
• Vulnerability

A Stealthy Godzilla Webshell: A New Threat Targeting Apache ActiveMQ

Ddos January 18, 2024 0

In recent weeks, cybersecurity experts at Trustwave have detected a surge in cyberattacks exploiting vulnerabilities in Apache...

Read More Read more about A Stealthy Godzilla Webshell: A New Threat Targeting Apache ActiveMQ

Ecommerce Alert: Shopware Hit by Critical-Risk CVE-2024-22406 Flaw

• Vulnerability

Ecommerce Alert: Shopware Hit by Critical-Risk CVE-2024-22406 Flaw

Ddos January 17, 2024 0

Shopware, an open-source ecommerce platform that helps businesses of all sizes create and manage their online stores,...

Read More Read more about Ecommerce Alert: Shopware Hit by Critical-Risk CVE-2024-22406 Flaw

Urgent Siemens Update: Addressing SIMATIC’s Near-Perfect CVSS Scores

• Vulnerability

Urgent Siemens Update: Addressing SIMATIC’s Near-Perfect CVSS Scores

Ddos January 17, 2024 0

Siemens has released two new advisories to inform customers about four vulnerabilities, which include two critical vulnerabilities...

Read More Read more about Urgent Siemens Update: Addressing SIMATIC’s Near-Perfect CVSS Scores

CISA Warns of Actively Exploited Laravel Framework RCE Flaw

• Vulnerability

CISA Warns of Actively Exploited Laravel Framework RCE Flaw

Ddos January 17, 2024 0

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a stern warning that’s reverberating through the...

Read More Read more about CISA Warns of Actively Exploited Laravel Framework RCE Flaw

CVE-2023-6548 & 6549: Two new Citrix Netscaler zero-days exploited in attacks

• Vulnerability

CVE-2023-6548 & 6549: Two new Citrix Netscaler zero-days exploited in attacks

Ddos January 16, 2024 0

Citrix, a leader in digital workspace solutions, has sounded an alarm for its customers regarding two critical...

Read More Read more about CVE-2023-6548 & 6549: Two new Citrix Netscaler zero-days exploited in attacks

CVE-2023-6546 PoC Exploit: A Gateway to Linux System Takeover

• Vulnerability

CVE-2023-6546 PoC Exploit: A Gateway to Linux System Takeover

Ddos January 16, 2024 0

A cybersecurity researcher, Nassim Asrir has released the details, and a proof-of-concept (PoC) exploit for a high-severity...

Read More Read more about CVE-2023-6546 PoC Exploit: A Gateway to Linux System Takeover

LeftoverLocals – CVE-2023-4969: The Hidden Threat in Your GPU

• Vulnerability

LeftoverLocals – CVE-2023-4969: The Hidden Threat in Your GPU

Ddos January 16, 2024 0

In the fast-paced world of high-performance computing and artificial intelligence, GPUs have emerged as indispensable powerhouses. But...

Read More Read more about LeftoverLocals – CVE-2023-4969: The Hidden Threat in Your GPU

CVE-2024-0519: Google Chrome’s Latest Zero-Day Vulnerability

• Vulnerability

CVE-2024-0519: Google Chrome’s Latest Zero-Day Vulnerability

Ddos January 16, 2024 0

On Tuesday, Google rolled out a crucial update to patch a zero-day flaw in its widely-used Chrome...

Read More Read more about CVE-2024-0519: Google Chrome’s Latest Zero-Day Vulnerability

CVE-2024-0562 & CVE-2024-0565: The Linux Kernel Faces Two Major Vulnerabilities

• Vulnerability

CVE-2024-0562 & CVE-2024-0565: The Linux Kernel Faces Two Major Vulnerabilities

Ddos January 16, 2024 0

In the intricate web of modern computing, the Linux kernel stands as a foundational element, powering systems...

Read More Read more about CVE-2024-0562 & CVE-2024-0565: The Linux Kernel Faces Two Major Vulnerabilities

CVE-2023-34063 (CVSS 9.9): A Critical Flaw in VMware Aria Automation

• Vulnerability

CVE-2023-34063 (CVSS 9.9): A Critical Flaw in VMware Aria Automation

Ddos January 16, 2024 0

VMware Aria Automation, formerly known as vRealize Automation, serves as a linchpin for orchestrating and automating complex...

Read More Read more about CVE-2023-34063 (CVSS 9.9): A Critical Flaw in VMware Aria Automation

CVE-2023-22527 (CVSS 10): Critical RCE Flaw in Confluence Data Center and Server

• Vulnerability

CVE-2023-22527 (CVSS 10): Critical RCE Flaw in Confluence Data Center and Server

Ddos January 16, 2024 0

A new threat looms large for users of Confluence Data Center and Confluence Server, marked by the...

Read More Read more about CVE-2023-22527 (CVSS 10): Critical RCE Flaw in Confluence Data Center and Server

Bypassing GRUB Security: How CVE-2023-4001 Exploits UEFI Systems

• Vulnerability

Bypassing GRUB Security: How CVE-2023-4001 Exploits UEFI Systems

Ddos January 15, 2024 0

A new security vulnerability was found in the GRUB boot manager, CVE-2023-4001. This vulnerability, rated at a...

Read More Read more about Bypassing GRUB Security: How CVE-2023-4001 Exploits UEFI Systems

Urgent Firmware Alert: NVIDIA Tackles Critical DGX A100/H100 Flaws

• Vulnerability

Urgent Firmware Alert: NVIDIA Tackles Critical DGX A100/H100 Flaws

Ddos January 15, 2024 0

Recently, NVIDIA has released a crucial firmware security update for its advanced computing systems, the DGX A100...

Read More Read more about Urgent Firmware Alert: NVIDIA Tackles Critical DGX A100/H100 Flaws

Researchers Release PoC Exploit for Windows XAML Diagnostics EoP Flaw

• Vulnerability

Researchers Release PoC Exploit for Windows XAML Diagnostics EoP Flaw

Ddos January 14, 2024 0

Proof-of-concept (Poc) code has been released for a now-patched important-severity security flaw, CVE-2023-36003, in the Windows XAML...

Read More Read more about Researchers Release PoC Exploit for Windows XAML Diagnostics EoP Flaw

Researcher Details Critical Buffer Overflow Vulnerability in Popular Factorio Game

• Vulnerability

Researcher Details Critical Buffer Overflow Vulnerability in Popular Factorio Game

Ddos January 14, 2024 0

In the world of video gaming, Factorio has carved out a unique niche. Known for its intricate...

Read More Read more about Researcher Details Critical Buffer Overflow Vulnerability in Popular Factorio Game

Inside CVE-2024-20656: PoC Exploit Threatens Visual Studio Security

• Vulnerability

Inside CVE-2024-20656: PoC Exploit Threatens Visual Studio Security

Ddos January 14, 2024 0

Details and proof-of-concept (PoC) exploit code have emerged about a now-patched security flaw, CVE-2024-20656, in Microsoft Visual...

Read More Read more about Inside CVE-2024-20656: PoC Exploit Threatens Visual Studio Security

CVE-2023-50290: Apache Solr’s ‘Important’ Severity Security Flaw

• Vulnerability

CVE-2023-50290: Apache Solr’s ‘Important’ Severity Security Flaw

Ddos January 12, 2024 0

A new security vulnerability was found in Apache Solr, an open-source enterprise-search platform renowned for its robust...

Read More Read more about CVE-2023-50290: Apache Solr’s ‘Important’ Severity Security Flaw

China Cracks Apple’s AirDrop Feature

• Vulnerability

China Cracks Apple’s AirDrop Feature

Ddos January 12, 2024 0

The Beijing Office of Justice said it had found a way to bypass AirDrop’s encryption, allowing it...

Read More Read more about China Cracks Apple’s AirDrop Feature