Vulnerability Archives • Page 24 of 190 • Daily CyberSecurity

Ivanti Zero-Day CVE-2025-22457 Exploit Details Released Ivanti CVE-2025-22457 Ivanti zero-day

Ivanti Zero-Day CVE-2025-22457 Exploit Details Released

Do Son April 11, 2025

Researchers at Rapid7 published technical details and proof-of-concept exploit code for a critical zero-day vulnerability in Ivanti...

Jenkins Docker Images Vulnerable to SSH Host Key Reuse Jenkins RCE vulnerability active exploitation, CVE-2026-53435, CVE-2026-53436, CVE-2026-53437 Jenkins - CVE-2024-43044 Jenkins vulnerability SSH host key reuse

Jenkins RCE vulnerability active exploitation, CVE-2026-53435, CVE-2026-53436, CVE-2026-53437 Jenkins - CVE-2024-43044 Jenkins vulnerability SSH host key reuse

Jenkins Docker Images Vulnerable to SSH Host Key Reuse

Do Son April 11, 2025

In the ever-evolving world of DevOps automation, Jenkins is a cornerstone tool powering countless build pipelines across...

Joomla Security Alert: Critical SQL Injection & MFA Bypass Vulnerabilities Uncovered Joomla Vulnerability SQL Injection

Joomla Security Alert: Critical SQL Injection & MFA Bypass Vulnerabilities Uncovered

Do Son April 11, 2025

The Joomla Project has issued two security announcements addressing two significant vulnerabilities affecting its CMS and database...

Critical Vulnerabilities in Spotfire Products Allow Code Execution (CVE-2025-3114, CVE-2025-3115) Spotfire Vulnerability CVE-2025-3114 CVE-2025-3115

Spotfire Vulnerability CVE-2025-3114 CVE-2025-3115

Critical Vulnerabilities in Spotfire Products Allow Code Execution (CVE-2025-3114, CVE-2025-3115)

Do Son April 11, 2025

Cloud Software Group has released security advisories addressing critical vulnerabilities in its Spotfire products that could allow...

Microsoft Enhances Exchange and SharePoint Security with AMSI Integration Microsoft AMSI Exchange Server Security

Microsoft Enhances Exchange and SharePoint Security with AMSI Integration

Do Son April 11, 2025

Microsoft has announced enhanced security measures for its Exchange Server and SharePoint Server products, both of which...

Arista EOS: Critical Vulnerability Exposes Cleartext Transmission (CVE-2024-12378)

Do Son April 11, 2025

Arista Networks has released a security advisory addressing a critical vulnerability in its EOS (Extensible Operating System)...

Critical Vulnerability (CVE-2025-31498) Patched in c-ares DNS Library c-ares Vulnerability CVE-2025-31498

Critical Vulnerability (CVE-2025-31498) Patched in c-ares DNS Library

Do Son April 11, 2025

The Domain Name System (DNS) plays a pivotal role, translating human-friendly domain names into the numerical IP...

SonicWall Patches Multi Vulnerabilities in NetExtender VPN Client SonicWall Zero-Day, SMA1000 Exploit Chain SonicWall, firewall configuration CVE-2024-29010 & CVE-2024-29011 SonicWall NetExtender VPN Vulnerability

SonicWall Zero-Day, SMA1000 Exploit Chain SonicWall, firewall configuration CVE-2024-29010 & CVE-2024-29011 SonicWall NetExtender VPN Vulnerability

SonicWall Patches Multi Vulnerabilities in NetExtender VPN Client

Do Son April 10, 2025

SonicWall has issued a security advisory disclosing three newly identified vulnerabilities in its NetExtender Windows client, a...

CISA Warns of Actively Exploited Linux Kernel Vulnerabilities (CVE-2024-53197, CVE-2024-53150) CVE-2024-28986 exploitation SolarWinds Web Help Desk Linux Vulnerability CVE-2024-53197

CVE-2024-28986 exploitation SolarWinds Web Help Desk Linux Vulnerability CVE-2024-53197

CISA Warns of Actively Exploited Linux Kernel Vulnerabilities (CVE-2024-53197, CVE-2024-53150)

Do Son April 10, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning after adding two newly discovered Linux...

Seven Years Later: Cisco CVE-2018-0171 Still Exposes Thousands to RCE Cisco ISE Root Escalation * Read-Only Admin Exploit Cisco Secure FMC Vulnerability CVE-2026-20131 Cisco Meeting Management Vulnerability CVE-2026-20098 Cisco vulnerability, RCE flaw CVE-2025-20265 Cisco Meraki, VPN Vulnerability Cisco Nexus Dashboard - CVE-2024-20424 CVE-2025-20115 Cisco Vulnerability CVE-2018-0171 Privilege Escalation Cisco Unified Intelligence Center

Cisco ISE Root Escalation * Read-Only Admin Exploit Cisco Secure FMC Vulnerability CVE-2026-20131 Cisco Meeting Management Vulnerability CVE-2026-20098 Cisco vulnerability, RCE flaw CVE-2025-20265 Cisco Meraki, VPN Vulnerability Cisco Nexus Dashboard - CVE-2024-20424 CVE-2025-20115 Cisco Vulnerability CVE-2018-0171 Privilege Escalation Cisco Unified Intelligence Center

Seven Years Later: Cisco CVE-2018-0171 Still Exposes Thousands to RCE

Do Son April 10, 2025

In a deep dive published by Guy Bruneau, Senior Security Consultant and former network engineer, the lingering...

SureTriggers Vulnerability Exposes 100,000+ WordPress Sites to Admin Takeover WordPress Vulnerability SureTriggers

SureTriggers Vulnerability Exposes 100,000+ WordPress Sites to Admin Takeover

Do Son April 10, 2025

A critical vulnerability in the popular WordPress automation plugin SureTriggers has exposed over 100,000 sites to the...

Dell Addresses Security Vulnerabilities in PowerScale OneFS CVE-2024-37143 & CVE-2024-37144 Dell PowerScale OneFS vulnerability

Dell Addresses Security Vulnerabilities in PowerScale OneFS

Do Son April 10, 2025

Dell has released a security advisory addressing multiple vulnerabilities in PowerScale OneFS, its scale-out network-attached storage operating...

NATS Server Vulnerability: Missing Access Controls in JetStream API NATS security JetStream API vulnerability

NATS Server Vulnerability: Missing Access Controls in JetStream API

Do Son April 10, 2025

A security vulnerability has been discovered in NATS Server, a communications system for digital systems, services, and...

Critical SSRF Vulnerability Patched in LNbits Lightning Wallet Server LNbits SSRF LNURL Vulnerability

Critical SSRF Vulnerability Patched in LNbits Lightning Wallet Server

Do Son April 10, 2025

LNbits, the modular and extendable Lightning Network wallet server, has patched a critical Server-Side Request Forgery (SSRF)...

High-Severity XXE Vulnerability Found in NAKIVO Backup & Replication NAKIVO XXE vulnerability CVE-2025-32406

High-Severity XXE Vulnerability Found in NAKIVO Backup & Replication

Do Son April 10, 2025

A high-severity security vulnerability has been identified in NAKIVO Backup & Replication, a popular data protection solution....

Tool Poisoning Attacks: Critical Vulnerability Discovered in Model Context Protocol (MCP) Tool Poisoning Attack MCP Vulnerability

Tool Poisoning Attacks: Critical Vulnerability Discovered in Model Context Protocol (MCP)

Do Son April 10, 2025

Invariant Labs has disclosed a critical vulnerability in the Model Context Protocol (MCP) that enables what they...

Critical Vulnerabilities: CISA Alerts to Windows CLFS and Gladinet CentreStack Threats CISA KEV Update Versa Concerto Vulnerability KEV Catalog Vulnerability Patch CVE-2025-30406

CISA KEV Update Versa Concerto Vulnerability KEV Catalog Vulnerability Patch CVE-2025-30406

Critical Vulnerabilities: CISA Alerts to Windows CLFS and Gladinet CentreStack Threats

Do Son April 9, 2025

Recently, the Cybersecurity and Infrastructure Security Agency (CISA) added two significant vulnerabilities to its Known Exploited Vulnerabilities...

Windows CLFS Zero-Day Exploited to Deploy Ransomware CLFS zero-day Ransomware attack

Windows CLFS Zero-Day Exploited to Deploy Ransomware

Do Son April 9, 2025

Microsoft Threat Intelligence has disclosed active exploitation of a zero-day vulnerability in the Windows Common Log File...

Siemens Security Alert: Critical Vulnerabilities in SENTRON 7KT PAC1260 Data Manager Siemens RTLS, CVE-2025-40746 CVE-2024-22040 - SINEC Security Monitor Siemens Security Advisory SENTRON 7KT PAC1260