Vulnerability Archives • Page 190 of 190 • Daily CyberSecurity

CVE-2017-17692: Same-Origin Policy (SOP) bypass vulnerability in the Samsung Internet Browser

Ddos December 31, 2017

On December 29, Dhiraj Mishra, a cybersecurity researcher, recently disclosed a critical SOP vulnerability (CVE-2017-17692) for the Samsung...

Hacker successfully exploit the Nintendo Switch

Ddos December 30, 2017

Recently, at the 34C3 hacker conference in Germany, hackers Plutoo, Derrek and Naehrwert introduced how they can...

VmWare fix two high-risk arbitrary code execution vulnerabilities in several products

Ddos December 30, 2017

VMWare released six patches for ESXi, Workstations 12.5.8, Fusion 8.5.9 and vCSA 6.5 U1d respectively. An attacker can...

CVE-2017-0554: Android Tethering Provisioning Check Bypass

Ddos December 29, 2017

CVE-2017-0554 On most unrooted, stock, Android phones, enabling tethering will run a “Provisioning Check” with your wireless provider to...

Sound waves can Disrupt Functions of Hard Disk Drives

Ddos December 29, 2017

Hackers can use sound waves to interfere with the normal operation of the hard disk drive (HDD),...

PS4 4.05 Kernel Exploit was released, Jailbreak Coming Soon

Ddos December 29, 2017

On December 26, Developer SpecterDev released a PS4 4.05 Kernel Exploit project on Github. In this project you...

Security Researcher found autofill vulnerability in browsers

Ddos December 29, 2017

According to foreign media reports on December 27, Princeton Center for Information Technology Policy (CITP) has discovered...

Mozilla fix high-risk vulnerability in Thunderbird

Ddos December 28, 2017

According to foreign media reported on December 26, Mozilla recently for its popular open source Thunderbird e-mail client...

Debian 9 fixes 18 critical security vulnerabilities in Linux 4.9 LTS kernel

Ddos December 27, 2017

The Debian project recently released a new Linux kernel security update for the Debian GNU/Linux 9 “Stretch” family of...

Ubuntu released a major update to fix 9 vulnerabilities

Ddos December 27, 2017

Canonical released a new Linux kernel security update for all supported Ubuntu operating systems, addressing a total of nine...

Windows 10 facial recognition feature exist vulnerablity that can use a photo to unlock the computer

Ddos December 22, 2017

Earlier this month, Microsoft released an update to fix a vulnerability in Windows Hello facial recognition system...

Security researchers found the Apple HomeKit vulnerability

Ddos December 21, 2017

As early as the beginning of this month, some developers found a serious flaw in HomeKit that allowed anyone to control...

CVE-2017-17562: GoAhead httpd 2.5 – 3.5 Remote Code Execution Vulnerability

Ddos December 20, 2017

Today, a remote code execution vulnerability (CVE-2017-17562) exists in all versions of GoAhead Web Server that broke...

shell-quote command injection AI-Driven Vulnerabilities Q1 2026 Cyber Threats vm2 Sandbox Escape Node.js RCE upKeeper Privilege Escalation CVE-2026-2449 Pharos Controls Vulnerability Root Access Exploit Cybersecurity Vulnerability Roundup CVSS 10.0 Flaws Shadow Archives CVE-2026-0866 MS-Agent Prompt Injection CVE-2026-2256 basic-ftp Path Traversal CVE-2026-27699 telnetd Root Vulnerability CVE-1999-0073 Regression USR-W610 Vulnerabilities End-of-Life IoT Security IceWarp Security Update IceWarp Vulnerabilities Airleader Master Vulnerability CVE-2026-1358 ZLAN5143D Vulnerability CISA ICS Advisory Acronis Cyber Protect Vulnerability CVE-2025-30411 WAGO 852 Vulnerability OT Network Security SandboxJS Vulnerability Sandbox Escape (CVSS 10.0) Kubernetes Local Path Provisioner CVE-2025-62878 CISA Unresponsive Vendors Avation & RISS Vulnerabilities KiloView Vulnerability CVE-2026-1453 OpenClaw RCE vulnerability Johnson Controls Vulnerability CVE-2025-26385 SandboxJS Vulnerability CVE-2026-23830 ibaPDA Vulnerability CVE-2025-14988 Protobuf Vulnerability CVE-2026-0994 AVEVA Process Optimization Vulnerability CVE-2025-61937 ConnectWise PSA Vulnerability CVE-2026-0695 Aruba VIA Vulnerability CVE-2025-37186 aiohttp v3.13.3, Denial of Service (DoS) SmarterMail RCE, CVE-2025-52691 Airoha RACE, Headphone Jacking HPE OneView RCE CVE-2025-37164 FreePBX Auth Bypass, PBX Takeover ScreenConnect Config Flaw, Untrusted Extensions Ruby SAML Auth Bypass, XML Parser Differential Devolutions SQL Injection, Password Manager Flaw Vivotek Unauthenticated RCE, EOL IP Camera Flaw Lynx+ Critical Flaw, Unauthenticated Reset Firebox Default Credentials, CVE-2025-59396 Veeder-Root RCE, Critical ATG Flaw ArcGIS Server SQLi Watchdoc RCE, CVE-2025-58384 Delta DIALink Daikin Security Gateway, authentication bypass Frostbyte10, industrial controller security SunPower, vulnerability Ubiquiti UniFi Connect, EV Station Vulnerabilities Adobe Experience Manager, RCE Vulnerability UniFi Access, Command Injection LDAPNightmare - CVE-2025-1316

Export Injection – A new server side vulnerability

Inon Shkedy June 14, 2017

This article will talk about a new server-side vulnerability that I discovered in the PDF export process....

Critical Alert 1 Active Exploit Detected Today