Vulnerability

Researcher releases PoC exploit for critical VMware Aria (CVE-2023-34039) bug

• Vulnerability

Researcher releases PoC exploit for critical VMware Aria (CVE-2023-34039) bug

Ddos September 1, 2023 0

A cybersecurity researcher has released the details, and a proof-of-concept (PoC) exploit for a critical severity vulnerability...

Read More Read more about Researcher releases PoC exploit for critical VMware Aria (CVE-2023-34039) bug

Multiple Security Vulnerabilities Found in NVIDIA DGX H100 System

• Vulnerability

Multiple Security Vulnerabilities Found in NVIDIA DGX H100 System

Ddos September 1, 2023 0

In an era where Artificial Intelligence (AI) stands at the pinnacle of technological achievement, the NVIDIA DGX...

Read More Read more about Multiple Security Vulnerabilities Found in NVIDIA DGX H100 System

PoC Exploit Releases for Linux Kernel Escalate Privileges Flaw (CVE-2023-35001)

• Vulnerability

PoC Exploit Releases for Linux Kernel Escalate Privileges Flaw (CVE-2023-35001)

Ddos September 1, 2023 0

A cybersecurity researcher from Synacktiv has released the details and a proof-of-concept (PoC) exploit for a high-severity...

Read More Read more about PoC Exploit Releases for Linux Kernel Escalate Privileges Flaw (CVE-2023-35001)

CVE-2023-4696: Memos Account Takeover Vulnerability

• Vulnerability

CVE-2023-4696: Memos Account Takeover Vulnerability

Ddos September 1, 2023 0

Memos is a popular note-taking service that is known for its privacy-first features. Recently, a flaw surfaced...

Read More Read more about CVE-2023-4696: Memos Account Takeover Vulnerability

CVE-2023-38036: Ivanti Avalanche Arbitrary Code Execution Vulnerability

• Vulnerability

CVE-2023-38036: Ivanti Avalanche Arbitrary Code Execution Vulnerability

Ddos September 1, 2023 0

CVE-2023-38036, a recently identified vulnerability in the Ivanti Avalanche system—a leading enterprise mobility management (EMM) solution revered...

Read More Read more about CVE-2023-38036: Ivanti Avalanche Arbitrary Code Execution Vulnerability

Multiple Security Vulnerabilities Found in Splunk

• Vulnerability

Multiple Security Vulnerabilities Found in Splunk

Ddos August 31, 2023 0

A number of security vulnerabilities have been found in Splunk, a data analytics platform. The vulnerabilities affect...

Read More Read more about Multiple Security Vulnerabilities Found in Splunk

CVE-2023-40596: Splunk Enterprise on Windows Privilege Escalation Vulnerability

• Vulnerability

CVE-2023-40596: Splunk Enterprise on Windows Privilege Escalation Vulnerability

Ddos August 31, 2023 0

A critical vulnerability has been found in Splunk Enterprise, a data platform designed to help businesses manage...

Read More Read more about CVE-2023-40596: Splunk Enterprise on Windows Privilege Escalation Vulnerability

CVE-2023-20900: VMware Tools SAML Token Signature Bypass Vulnerability

• Vulnerability

CVE-2023-20900: VMware Tools SAML Token Signature Bypass Vulnerability

Ddos August 31, 2023 0

A critical vulnerability has been found in VMware Tools, a set of services and modules that enable...

Read More Read more about CVE-2023-20900: VMware Tools SAML Token Signature Bypass Vulnerability

Critical Flaws Identified in Qlik Sense Enterprise for Windows

• Vulnerability

Critical Flaws Identified in Qlik Sense Enterprise for Windows

Ddos August 30, 2023 0

Qlik Sense Enterprise is a powerful business intelligence (BI) and data analytics platform that helps organizations make...

Read More Read more about Critical Flaws Identified in Qlik Sense Enterprise for Windows

Openfire Bug (CVE-2023-32315) Exploited to Deploy Kinsing Malware and Cryptominer

• Malware
• Vulnerability

Openfire Bug (CVE-2023-32315) Exploited to Deploy Kinsing Malware and Cryptominer

Ddos August 30, 2023 0

A recent discovery by Aqua Nautilus has unveiled a new campaign targeting the Openfire vulnerability (CVE-2023-32315). Revealed...

Read More Read more about Openfire Bug (CVE-2023-32315) Exploited to Deploy Kinsing Malware and Cryptominer

ClamAV Vulnerable to WinRAR Code Execution (CVE-2023-40477) Vulnerability

• Vulnerability

ClamAV Vulnerable to WinRAR Code Execution (CVE-2023-40477) Vulnerability

Ddos August 29, 2023 0

In today’s rapidly advancing technological age, the safety and security of our digital data remains paramount. Anti-virus...

Read More Read more about ClamAV Vulnerable to WinRAR Code Execution (CVE-2023-40477) Vulnerability

RocketMQ Vulnerability Exploited by DreamBus Malware

• Malware
• Vulnerability

RocketMQ Vulnerability Exploited by DreamBus Malware

Ddos August 29, 2023 0

May 2023 will long be remembered in the cybersecurity community, not just as the month a critical...

Read More Read more about RocketMQ Vulnerability Exploited by DreamBus Malware

CVE-2023-4596: Critical WordPress plugin Forminator flaw affects over 400k sites

• Vulnerability

CVE-2023-4596: Critical WordPress plugin Forminator flaw affects over 400k sites

Ddos August 29, 2023 0

In the vast universe of WordPress plugins, Forminator stands as a beacon of efficiency and functionality. Touted...

Read More Read more about CVE-2023-4596: Critical WordPress plugin Forminator flaw affects over 400k sites

CVE-2023-40590: GitPython Flaw Could Allow Attackers to Execute Arbitrary Code on Windows Systems

• Vulnerability

CVE-2023-40590: GitPython Flaw Could Allow Attackers to Execute Arbitrary Code on Windows Systems

Ddos August 29, 2023 0

A security vulnerability has been found in GitPython, a Python library used to interact with Git repositories....

Read More Read more about CVE-2023-40590: GitPython Flaw Could Allow Attackers to Execute Arbitrary Code on Windows Systems

VMware fixes critical security bugs (CVE-2023-34039 & CVE-2023-20890) in Aria Operations for Networks

• Vulnerability

VMware fixes critical security bugs (CVE-2023-34039 & CVE-2023-20890) in Aria Operations for Networks

Ddos August 29, 2023 0

VMware, the titan of virtualization software, has once again ensured its commitment to fortifying its products. On...

Read More Read more about VMware fixes critical security bugs (CVE-2023-34039 & CVE-2023-20890) in Aria Operations for Networks

CVE-2023-39810: New Security Flaw Found in BusyBox Utility

• Vulnerability

CVE-2023-39810: New Security Flaw Found in BusyBox Utility

Ddos August 29, 2023 0

In the vast world of UNIX utilities, there’s a compact powerhouse that many embedded systems rely upon:...

Read More Read more about CVE-2023-39810: New Security Flaw Found in BusyBox Utility

CVE-2023-36741: An Elevation of Privilege Vulnerability in Microsoft Edge (Chromium-based)

• Vulnerability

CVE-2023-36741: An Elevation of Privilege Vulnerability in Microsoft Edge (Chromium-based)

Ddos August 28, 2023 0

Designated as CVE-2023-36741 and bearing a CVSS score of 8.3, the vulnerability identified within the Chromium-based Microsoft...

Read More Read more about CVE-2023-36741: An Elevation of Privilege Vulnerability in Microsoft Edge (Chromium-based)

Microsoft Releases Mitigation Notes for Windows Downfall Vulnerability

• Vulnerability

Microsoft Releases Mitigation Notes for Windows Downfall Vulnerability

Ddos August 28, 2023 0

At the onset of this month, security researchers under Google’s aegis revealed a new transient execution vulnerability...

Read More Read more about Microsoft Releases Mitigation Notes for Windows Downfall Vulnerability

CVE-2023-41080: Apache Tomcat Open Redirect Vulnerability

• Vulnerability

CVE-2023-41080: Apache Tomcat Open Redirect Vulnerability

Ddos August 26, 2023 0

Web servers are at the heart of our online experiences. They serve web pages, host web applications,...

Read More Read more about CVE-2023-41080: Apache Tomcat Open Redirect Vulnerability

CVE-2023-41106: Zimbra Collaboration Suite Vulnerability Could Allow Unauthenticated Access

• Vulnerability

CVE-2023-41106: Zimbra Collaboration Suite Vulnerability Could Allow Unauthenticated Access

Ddos August 24, 2023 0

A critical security vulnerability has been discovered in the Zimbra Collaboration Suite that could allow an unauthenticated...

Read More Read more about CVE-2023-41106: Zimbra Collaboration Suite Vulnerability Could Allow Unauthenticated Access