Vulnerability

Researcher Releases PoC Exploit for Foxit PDF Reader RCE (CVE-2023-27363) Vulnerability

• Vulnerability

Researcher Releases PoC Exploit for Foxit PDF Reader RCE (CVE-2023-27363) Vulnerability

Do Son May 12, 2023 0

A recent discovery by a renowned security researcher, Andrea Micalizzi, known as rgod in cybersecurity circles, has...

Read More Read more about Researcher Releases PoC Exploit for Foxit PDF Reader RCE (CVE-2023-27363) Vulnerability

Aruba Networks fixes multiple vulnerabilities in Aruba Access Points

• Vulnerability

Aruba Networks fixes multiple vulnerabilities in Aruba Access Points

Do Son May 11, 2023 0

In the constantly evolving world of computer networking and wireless connectivity solutions, Aruba Networks, a California-based subsidiary...

Read More Read more about Aruba Networks fixes multiple vulnerabilities in Aruba Access Points

CVE-2023-28936 allows attacker to access any arbitrary recording or room in Apache OpenMeetings

• Vulnerability

CVE-2023-28936 allows attacker to access any arbitrary recording or room in Apache OpenMeetings

Do Son May 11, 2023 0

As our world continues to pivot towards an increasingly digital environment, the importance of robust and reliable...

Read More Read more about CVE-2023-28936 allows attacker to access any arbitrary recording or room in Apache OpenMeetings

CVE-2023-32243: Critical Bug Found in WordPress Plugin With More Than 1 million Installations

• Vulnerability

CVE-2023-32243: Critical Bug Found in WordPress Plugin With More Than 1 million Installations

Do Son May 11, 2023 0

Boasting over a million active installations, Essential Addons for Elementor is the go-to plugin for many WordPress...

Read More Read more about CVE-2023-32243: Critical Bug Found in WordPress Plugin With More Than 1 million Installations

Microsoft’s Latest Patch Tuesday: A Deep Dive into Security Vulnerabilities and Zero-Day Exploits

• Vulnerability

Microsoft’s Latest Patch Tuesday: A Deep Dive into Security Vulnerabilities and Zero-Day Exploits

Do Son May 9, 2023 0

Microsoft’s recent Patch Tuesday release addressed a staggering 38 security vulnerabilities across six product families, including six...

Read More Read more about Microsoft’s Latest Patch Tuesday: A Deep Dive into Security Vulnerabilities and Zero-Day Exploits

AndoryuBot: The Emerging Botnet Exploiting Ruckus Vulnerability

• Malware
• Vulnerability

AndoryuBot: The Emerging Botnet Exploiting Ruckus Vulnerability

Do Son May 9, 2023 0

In April, cybersecurity researchers at FortiGuard Labs discovered a novel botnet, AndoryuBot, which leverages the SOCKS protocol...

Read More Read more about AndoryuBot: The Emerging Botnet Exploiting Ruckus Vulnerability

CVE-2023-32233 – Linux Kernel Privilege Escalation: A Critical Security Vulnerability Uncovered

• Vulnerability

CVE-2023-32233 – Linux Kernel Privilege Escalation: A Critical Security Vulnerability Uncovered

Do Son May 9, 2023 0

The Linux kernel is the core component of the Linux operating system, responsible for managing system resources,...

Read More Read more about CVE-2023-32233 – Linux Kernel Privilege Escalation: A Critical Security Vulnerability Uncovered

CVE-2023-30237: CyberGhost VPN Command Injection Vulnerability

• Vulnerability

CVE-2023-30237: CyberGhost VPN Command Injection Vulnerability

Do Son May 8, 2023 0

CyberGhost VPN, a popular virtual private network (VPN) solution provider, has recently addressed a command injection vulnerability...

Read More Read more about CVE-2023-30237: CyberGhost VPN Command Injection Vulnerability

CVE-2023-31039: Apache bRPC Remote Code Execution Vulnerability

• Vulnerability

CVE-2023-31039: Apache bRPC Remote Code Execution Vulnerability

Do Son May 8, 2023 0

Apache bRPC, an industrial-grade RPC framework utilizing C++ language, has recently come under scrutiny due to a...

Read More Read more about CVE-2023-31039: Apache bRPC Remote Code Execution Vulnerability

Researcher releases PoC exploit for Parallels Desktop privilege escalation (CVE-2023-27326) flaw

• Vulnerability

Researcher releases PoC exploit for Parallels Desktop privilege escalation (CVE-2023-27326) flaw

Do Son May 6, 2023 0

A proof-of-concept (PoC) exploit for a serious privilege escalation vulnerability in Parallels Desktop has been released by...

Read More Read more about Researcher releases PoC exploit for Parallels Desktop privilege escalation (CVE-2023-27326) flaw

Critical GitLab Security Vulnerability: CVE-2023-2478 Exposes Projects to Malicious Runners

• Vulnerability

Critical GitLab Security Vulnerability: CVE-2023-2478 Exposes Projects to Malicious Runners

Do Son May 6, 2023 0

GitLab, the popular web-based DevOps lifecycle tool, has recently issued a critical security advisory concerning a significant...

Read More Read more about Critical GitLab Security Vulnerability: CVE-2023-2478 Exposes Projects to Malicious Runners

PoC Exploit Released for Linux Kernel Privilege Escalation (CVE-2023-0386) Bug

• Vulnerability

PoC Exploit Released for Linux Kernel Privilege Escalation (CVE-2023-0386) Bug

Do Son May 5, 2023 0

A recently discovered flaw, CVE-2023-0386, with a CVSS score of 7.8, has been identified in the Linux...

Read More Read more about PoC Exploit Released for Linux Kernel Privilege Escalation (CVE-2023-0386) Bug

CVE-2023-30777: XSS Flaw Found in WordPress Plugin With More Than 2 million Installations

• Vulnerability

CVE-2023-30777: XSS Flaw Found in WordPress Plugin With More Than 2 million Installations

Do Son May 5, 2023 0

The Advanced Custom Fields (ACF) and Advanced Custom Fields Pro plugins, which boast over 2 million active...

Read More Read more about CVE-2023-30777: XSS Flaw Found in WordPress Plugin With More Than 2 million Installations

Unveiling the ‘faulTPM’ Exploit: AMD’s Vulnerable Trusted Platform Module

• Vulnerability

Unveiling the ‘faulTPM’ Exploit: AMD’s Vulnerable Trusted Platform Module

Do Son May 3, 2023 0

Microsoft mandated personal computer support for TPM to install Windows 11, provoking controversy upon the operating system’s...

Read More Read more about Unveiling the ‘faulTPM’ Exploit: AMD’s Vulnerable Trusted Platform Module

CVE-2023-20126: A Critical Cisco Vulnerability Threatening SPA112 Phone Adapters

• Vulnerability

CVE-2023-20126: A Critical Cisco Vulnerability Threatening SPA112 Phone Adapters

Do Son May 3, 2023 0

The world of cybersecurity is continuously evolving, with companies constantly working to patch security vulnerabilities and protect...

Read More Read more about CVE-2023-20126: A Critical Cisco Vulnerability Threatening SPA112 Phone Adapters

CVE-2022-46718 iOS Vulnerability Exposes Sensitive Location Data: PoC is available

• Vulnerability

CVE-2022-46718 iOS Vulnerability Exposes Sensitive Location Data: PoC is available

Do Son May 2, 2023 0

In today’s world, privacy is paramount, especially when it comes to protecting users’ sensitive information on their...

Read More Read more about CVE-2022-46718 iOS Vulnerability Exposes Sensitive Location Data: PoC is available

CVE-2023-30869: Critical Security Vulnerability Found in Popular WordPress Plugin

• Vulnerability

CVE-2023-30869: Critical Security Vulnerability Found in Popular WordPress Plugin

Do Son May 2, 2023 0

The world of digital e-commerce has experienced rapid growth, with many businesses relying on powerful plugins to...

Read More Read more about CVE-2023-30869: Critical Security Vulnerability Found in Popular WordPress Plugin

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog

• Vulnerability

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog

Do Son May 1, 2023 0

The Cybersecurity and Infrastructure Security Agency (CISA) has identified three emerging security vulnerabilities posing significant risks to...

Read More Read more about CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog

MLflow Vulnerability: CVE-2023-2356 Exposes Sensitive Data on Tracking Server

• Vulnerability

MLflow Vulnerability: CVE-2023-2356 Exposes Sensitive Data on Tracking Server

Do Son April 27, 2023 0

MLflow, a widely-used platform for streamlining machine learning development, recently caught the attention of security researchers due...

Read More Read more about MLflow Vulnerability: CVE-2023-2356 Exposes Sensitive Data on Tracking Server

CVE-2023-30847: High-severity vulnerability in H2O open-source web server software

• Vulnerability

CVE-2023-30847: High-severity vulnerability in H2O open-source web server software

Do Son April 27, 2023 0

As the digital world continues to evolve at breakneck speeds, developers are in a constant race to...

Read More Read more about CVE-2023-30847: High-severity vulnerability in H2O open-source web server software