Vulnerability Archives • Page 135 of 190 • Daily CyberSecurity

Apache UIMA Java SDK Vulnerability (CVE-2023-39913): Potential Untrusted Code Execution

Do Son November 8, 2023

Apache UIMA Java SDK, a popular Java implementation of the UIMA framework, has been found to contain...

CVE-2023-42659: Critical Vulnerability Discovered in Progress WS_FTP Server CVE-2023-42659 & CVE-2024-8015 MOVEit AS2 DoS, Uncontrolled Resource Consumption

CVE-2023-42659 & CVE-2024-8015 MOVEit AS2 DoS, Uncontrolled Resource Consumption

CVE-2023-42659: Critical Vulnerability Discovered in Progress WS_FTP Server

Do Son November 7, 2023

In a recent cybersecurity alert, Progress Software, the developer of the MOVEit Transfer file-sharing platform, has urged...

CISA Warns of Actively Exploited Atlassian Confluence Security Flaw Atlassian Confluence Flaw

CISA Warns of Actively Exploited Atlassian Confluence Security Flaw

Do Son November 7, 2023

On November 7, 2023, the Cybersecurity and Infrastructure Security Agency (CISA) warned network administrators to immediately patch...

Kinsing Threat Actor Targets Linux Flaw for Cloud Environment Breaches

Do Son November 6, 2023

Malicious actors affiliated with the cryptojacking syndicate known as Kinsing have escalated their exploitation of a vulnerability...

Critical QNAP NAS Vulnerabilities Allow Remote Code Execution CVE-2023-23368

Critical QNAP NAS Vulnerabilities Allow Remote Code Execution

Do Son November 3, 2023

QNAP NAS devices are popular among businesses and consumers alike for their ease of use and reliability....

Inside Operation Triangulation: How Kaspersky Catch iOS Exploits

Do Son November 3, 2023

Specialists from the Global Research and Analysis Team (GReAT) at Kaspersky Lab unveiled the intricacies of Operation...

Four Command Injection Vulnerabilities Found in ASUS RT-AX55 Routers ASUS RT-AX55 Vulnerabilities

Four Command Injection Vulnerabilities Found in ASUS RT-AX55 Routers

Do Son November 3, 2023

Security researchers have discovered four high-severity command injection vulnerabilities in the ASUS RT-AX55 router. These vulnerabilities can...

CVE-2023-31102: 7-Zip Remote Code Execution Vulnerability

Do Son November 3, 2023

7-Zip is one of the most popular file archivers in the world and for good reason. It’s...

New VMware Findings: Kernel Drivers’ Vulnerabilities Risk Total Device Takeover Kernel Drivers Vulnerabilities

New VMware Findings: Kernel Drivers’ Vulnerabilities Risk Total Device Takeover

Do Son November 2, 2023

VMware’s Threat Analysis Unit (TAU) has disclosed 34 kernel drivers susceptible to exploitation for firmware modification and...

Mandiant Exposes Ongoing Exploits Against Citrix Users Citrix Exploits

Mandiant Exposes Ongoing Exploits Against Citrix Users

Do Son November 2, 2023

Experts from the cybersecurity firm Mandiant have discerned an active exploitation of a vulnerability within Citrix’s NetScaler...

FIRST published the Common Vulnerability Scoring System (CVSS v4.0)

Do Son November 2, 2023

The Forum of Incident Response and Security Teams (FIRST) has officially announced the release of version 4.0...

Apache ActiveMQ Servers Exploited by HelloKitty Ransomware HelloKitty Ransomware Apache ActiveMQ

Apache ActiveMQ Servers Exploited by HelloKitty Ransomware

Do Son November 1, 2023

In the ever-evolving landscape of cyber threats, a new alarm has been sounded for Apache ActiveMQ server...

CVE-2023-20048: Critical Bug Discovered in Cisco Firepower Management Center

Do Son November 1, 2023

On November 1, 2023, Cisco released a security advisory warning of a critical vulnerability in its Firepower...

CISA and F5 Warn of BIG-IP Security Vulnerabilities Under Active Exploit F5 BIG-IP vulnerabilities

CISA and F5 Warn of BIG-IP Security Vulnerabilities Under Active Exploit

Do Son November 1, 2023

F5 has issued an urgent warning to organizations about the active exploitation of two critical security vulnerabilities...

CVE-2023-31027: NVIDIA Addresses High-Risk Vulnerability in Latest GPU Driver Update

Do Son October 31, 2023

Recently, NVIDIA released the new GeForce 474.64 WHQL driver for its Kepler architecture-based GeForce GTX 600/700 series...

The Trio of Unpatched Flaws in NGINX Ingress Controller for Kubernetes CVE-2023-5043

The Trio of Unpatched Flaws in NGINX Ingress Controller for Kubernetes

Do Son October 31, 2023

Cybersecurity experts have identified three critical, unpatched vulnerabilities in the NGINX Ingress traffic controller. These flaws could...

MOVEit Cyberattack Exposes 632K US Federal Employee Emails

Do Son October 31, 2023

As a result of a vast cyber intrusion, a hacking gang called Clop, or Cl0p gained access...

Wiki-Slack Attack: The New Threat Lurking in Wikipedia Pages

Do Son October 31, 2023

Cybersecurity experts from eSentire Threat Response Unit have uncovered an attack technique targeting corporate Slack users, aptly...

Zavio IP Camera Security Vulnerabilities: A Call to Action for Users CVE-2023-3959

Zavio IP Camera Security Vulnerabilities: A Call to Action for Users

Do Son October 31, 2023

Zavio IP cameras are popular security devices used by businesses and homeowners around the world. However, recent...

CVE-2023-20886: VMware Workspace ONE UEM Open Redirect Vulnerability

Do Son October 31, 2023

On October 31, 2023, VMware released a security advisory for an open redirect vulnerability in its Workspace...