Vulnerability Archives • Page 32 of 190 • Daily CyberSecurity

CVE-2025-27363: Font Library FreeType Flaw Exploited in the Wild, Millions at Risk

Ddos March 11, 2025

A critical vulnerability in the widely used FreeType font rendering library has been revealed, potentially putting millions...

Zoom Addresses Multi High-Severity Vulnerabilities in Workplace Apps and SDKs Zoom Node Vulnerability CVE-2026-22844 CVE-2024-45421 & CVE-2024-45419 CVE-2025-27440

Zoom Node Vulnerability CVE-2026-22844 CVE-2024-45421 & CVE-2024-45419 CVE-2025-27440

Zoom Addresses Multi High-Severity Vulnerabilities in Workplace Apps and SDKs

Ddos March 11, 2025

Zoom Communications, Inc. has recently released security advisories addressing multiple vulnerabilities affecting various Zoom Workplace Apps and...

Critical Flaw Exposes 100,000+ WooCommerce Sites: Unauthenticated File Inclusion Threatens Total Takeover

Ddos March 11, 2025

A severe vulnerability has been discovered in the popular WordPress plugin “HUSKY – WooCommerce Products Filter Professional,”...

Zyxel Patches Multi Vulnerabilities in DSL/Ethernet CPE, Fiber ONT, and WiFi Extender Devices CVE-2023-22920 - CVE-2024-11253, CVE-2024-12009, and CVE-2024-12010

CVE-2023-22920 - CVE-2024-11253, CVE-2024-12009, and CVE-2024-12010

Zyxel Patches Multi Vulnerabilities in DSL/Ethernet CPE, Fiber ONT, and WiFi Extender Devices

Ddos March 11, 2025

Zyxel Networks, a global leader in network technology solutions, has recently released security patches to address post-authentication...

Microsoft Patch Tuesday (March 2025) Addresses 67 Vulnerabilities, Including Seven Zero-Day Flaws Microsoft Patch Tuesday May 2026 Netlogon RCE CVE-2026-41089 SharePoint Exploit Patch Tuesday Windows DWM Zero-Day CVE-2026-21519 CVE-2024-49039 Microsoft Patch Tuesday March 2025

Microsoft Patch Tuesday May 2026 Netlogon RCE CVE-2026-41089 SharePoint Exploit Patch Tuesday Windows DWM Zero-Day CVE-2026-21519 CVE-2024-49039 Microsoft Patch Tuesday March 2025

Microsoft Patch Tuesday (March 2025) Addresses 67 Vulnerabilities, Including Seven Zero-Day Flaws

Ddos March 11, 2025

Microsoft’s Patch Tuesday for March 2025 has rolled out critical security updates addressing 67 vulnerabilities, including six...

CVE-2025-26865: Apache OFBiz Vulnerability Could Lead to Remote Code Execution CVE-2022-25371 - CVE-2025-26865 Apache OFBiz RCE Vulnerability CVE-2026-45434 Authentication Bypass

CVE-2022-25371 - CVE-2025-26865 Apache OFBiz RCE Vulnerability CVE-2026-45434 Authentication Bypass

CVE-2025-26865: Apache OFBiz Vulnerability Could Lead to Remote Code Execution

Ddos March 11, 2025

A recently discovered vulnerability in the Apache OFBiz eCommerce plugin could allow attackers to execute arbitrary code...

CVE-2025-24201: Apple Issues Emergency Patches for Actively Exploited Zero-Day Vulnerability Apple Background Security CVE-2026-20643 Apple Background Security Improvement Apple Backdoor Apple Lawsuit, Data Exfiltration CVE-2024-44131 - CVE-2025-24118 PoC

Apple Background Security CVE-2026-20643 Apple Background Security Improvement Apple Backdoor Apple Lawsuit, Data Exfiltration CVE-2024-44131 - CVE-2025-24118 PoC

CVE-2025-24201: Apple Issues Emergency Patches for Actively Exploited Zero-Day Vulnerability

Ddos March 11, 2025

Apple has released urgent security updates to address a critical zero-day vulnerability in its WebKit browser engine,...

CVE-2025-27494 (CVSS 9.1):Critical Flaw Found in Siemens SiPass Access Control Systems Siemens Edge Vulnerability CVE-2025-40805 CVE-2024-32741 - CVE-2025-27494 Siemens, Industrial Edge, CVE-2024-54092

Siemens Edge Vulnerability CVE-2025-40805 CVE-2024-32741 - CVE-2025-27494 Siemens, Industrial Edge, CVE-2024-54092

CVE-2025-27494 (CVSS 9.1):Critical Flaw Found in Siemens SiPass Access Control Systems

Ddos March 11, 2025

Siemens has issued a security advisory warning of multiple vulnerabilities in SiPass integrated access control systems. The...

SAP Patches High-Severity XSS and Authorization Flaws in Latest Security Updates SAP Security Patch May 2026 CVE-2026-34260 S/4HANA CVE-2024-22127 - CVE-2025-27434 SAP Solution Manager Code Injection, Critical SAP Patch

SAP Patches High-Severity XSS and Authorization Flaws in Latest Security Updates

Ddos March 11, 2025

SAP has released its latest round of security updates, addressing 21 new vulnerabilities and providing 3 updates...

CVE-2025-24813 Flaw in Apache Tomcat Exposes Servers to RCE, Data Leaks: Update Immediately CVE-2024-21733 - CVE-2025-24813

CVE-2025-24813 Flaw in Apache Tomcat Exposes Servers to RCE, Data Leaks: Update Immediately

Ddos March 10, 2025

A serious vulnerability, CVE-2025-24813, has been discovered in Apache Tomcat, potentially allowing attackers to execute remote code,...

CVE-2025-27816 (CVSS 9.8): Critical Vulnerability in Veritas InfoScale Could Allow RCE Veritas Enterprise Vault server CVE-2025-27816

CVE-2025-27816 (CVSS 9.8): Critical Vulnerability in Veritas InfoScale Could Allow RCE

Ddos March 10, 2025

Veritas has issued a critical security advisory regarding a vulnerability in its Arctera InfoScale product that could...

CVE-2024-56325 (CVSS 9.8): Authentication Bypass Vulnerability Discovered in Apache Pinot CVE-2024-56325 Apache Pinot vulnerability

CVE-2024-56325 (CVSS 9.8): Authentication Bypass Vulnerability Discovered in Apache Pinot

Ddos March 10, 2025

Apache Pinot, the high-performance real-time OLAP datastore originally developed by LinkedIn and Uber, has become a critical...

Popular JavaScript Library ‘Axios’ Exposes Millions to Server-Side Vulnerabilities (CVE-2025-27152) Axios Vulnerability Cloud Hijacking Axios npm supply chain attack Axios Vulnerability Node.js DoS CVE-2025-58754 CVE-2025-27152 Axios Vulnerability, Form-Data Flaw

Axios Vulnerability Cloud Hijacking Axios npm supply chain attack Axios Vulnerability Node.js DoS CVE-2025-58754 CVE-2025-27152 Axios Vulnerability, Form-Data Flaw

Popular JavaScript Library ‘Axios’ Exposes Millions to Server-Side Vulnerabilities (CVE-2025-27152)

Ddos March 10, 2025

A newly discovered vulnerability in the widely-used JavaScript library ‘Axios’ could leave millions of users at risk...

Chrome Update: 5 Security Fixes, High-Risk Flaws Addressed ASAP Chrome Vulnerability CVE-2024-4761 - Google Sell Chrome CVE-2025-1920 Chrome Crash, Browser Issue

Chrome Vulnerability CVE-2024-4761 - Google Sell Chrome CVE-2025-1920 Chrome Crash, Browser Issue

Chrome Update: 5 Security Fixes, High-Risk Flaws Addressed ASAP

Ddos March 10, 2025

An important security update has been released for the Chrome Stable channel, addressing five vulnerabilities, including three...

CVE-2025-27509 (CVSS 9.3): Fleet Patches Critical SAML Authentication Vulnerability

Ddos March 10, 2025

Fleet, an open-source platform widely used for IT and security operations, has released a critical security update...

WinDbg Remote Code Execution Vulnerability: CVE-2025-24043 Exposes Critical Security Risk

Ddos March 9, 2025

A newly disclosed security vulnerability, CVE-2025-24043, affecting Microsoft’s WinDbg debugger, poses a severe remote code execution (RCE)...

1.08M Downloads at Risk: Volt Fixes Severe RCE Vulnerability (CVE-2025-27517)

Ddos March 9, 2025

Volt, a widely adopted functional API for Livewire, has recently patched a critical remote code execution (RCE)...

CVE-2024-12799 (CVSS 10): OpenText Identity Manager Vulnerability Exposes Sensitive Information

Ddos March 9, 2025

OpenText Identity Manager, a comprehensive identity management suite used by organizations to manage user identities and access,...

Critical Vulnerability in Moxa PT Switches Allows Unauthorized Access Moxa Hard-Coded Credentials, Critical JWT Bypass CVE-2024-9137 and CVE-2024-9139 - CVE-2024-12297 CVE-2024-7695 CVE-2024-9404 CVE-2024-12297 CVE-2025-0415