Vulnerability Archives • Page 33 of 190 • Daily CyberSecurity

CVE-2025-27509 (CVSS 9.3): Fleet Patches Critical SAML Authentication Vulnerability

Do Son March 10, 2025

Fleet, an open-source platform widely used for IT and security operations, has released a critical security update...

WinDbg Remote Code Execution Vulnerability: CVE-2025-24043 Exposes Critical Security Risk

Do Son March 9, 2025

A newly disclosed security vulnerability, CVE-2025-24043, affecting Microsoft’s WinDbg debugger, poses a severe remote code execution (RCE)...

1.08M Downloads at Risk: Volt Fixes Severe RCE Vulnerability (CVE-2025-27517)

Do Son March 9, 2025

Volt, a widely adopted functional API for Livewire, has recently patched a critical remote code execution (RCE)...

CVE-2024-12799 (CVSS 10): OpenText Identity Manager Vulnerability Exposes Sensitive Information

Do Son March 9, 2025

OpenText Identity Manager, a comprehensive identity management suite used by organizations to manage user identities and access,...

Critical Vulnerability in Moxa PT Switches Allows Unauthorized Access Moxa Hard-Coded Credentials, Critical JWT Bypass CVE-2024-9137 and CVE-2024-9139 - CVE-2024-12297 CVE-2024-7695 CVE-2024-9404 CVE-2024-12297 CVE-2025-0415

Moxa Hard-Coded Credentials, Critical JWT Bypass CVE-2024-9137 and CVE-2024-9139 - CVE-2024-12297 CVE-2024-7695 CVE-2024-9404 CVE-2024-12297 CVE-2025-0415

Critical Vulnerability in Moxa PT Switches Allows Unauthorized Access

Do Son March 9, 2025

Moxa, a leading provider of industrial networking and communication solutions, has issued a critical security advisory regarding...

Uniguest Tripleplay Security Alert: Multiple CVSS 10 Vulnerabilities Discovered NTLM Vulnerabilities, CVE-2024-43451 CVE-2024-37361 - RESURGE Malware

NTLM Vulnerabilities, CVE-2024-43451 CVE-2024-37361 - RESURGE Malware

Uniguest Tripleplay Security Alert: Multiple CVSS 10 Vulnerabilities Discovered

Do Son March 9, 2025

Uniguest’s Tripleplay, a popular AV integration solution used across various sectors, has been found to harbor multiple...

Apache Traffic Server Patches Multiple Security Vulnerabilities Apache Traffic Server Vulnerabilities CVE-2024-56195 and CVE-2024-56196

Apache Traffic Server Patches Multiple Security Vulnerabilities

Do Son March 9, 2025

The Apache Traffic Server project has released updates to address several security vulnerabilities affecting multiple versions of...

Commvault Addresses Critical Webserver Vulnerability Commvault Vulnerability

Commvault Addresses Critical Webserver Vulnerability

Do Son March 9, 2025

Commvault, a leading provider of data protection and management solutions, has recently addressed a critical webserver vulnerability...

Popular Python Logging Library Vulnerable to Remote Code Execution (CVE-2025-27607)

Do Son March 9, 2025

A critical vulnerability has been discovered in ‘python-json-logger’, a popular Python library used for generating JSON logs....

CVE-2024-50394: QNAP Helpdesk Vulnerability Could Allow Remote System Compromise QNAP Security Patches, NAS Vulnerabilities ASP.NET, QNAP CVE-2023-39296 PoC - CVE-2024-50394

QNAP Security Patches, NAS Vulnerabilities ASP.NET, QNAP CVE-2023-39296 PoC - CVE-2024-50394

CVE-2024-50394: QNAP Helpdesk Vulnerability Could Allow Remote System Compromise

Do Son March 8, 2025

QNAP has issued a security advisory regarding an improper certificate validation vulnerability in its Helpdesk app. The...

Smartwares Security Breach: Vulnerabilities Expose Cameras to Remote Takeover XCharge C6 vulnerabilities EV charger security flaws GNU libtasn1 Vulnerability CVE-2025-13151 Credit Card Skimmer Malware CVE-2024-13892

XCharge C6 vulnerabilities EV charger security flaws GNU libtasn1 Vulnerability CVE-2025-13151 Credit Card Skimmer Malware CVE-2024-13892

Smartwares Security Breach: Vulnerabilities Expose Cameras to Remote Takeover

Do Son March 8, 2025

CERT Polska, operating within the National Research Institute (NASK), has unveiled security vulnerabilities affecting Smartwares CIP-37210AT and...

Google Awards Nearly $12 Million in 2024 to Security Researchers through Its Vulnerability Reward Program

Do Son March 7, 2025

Google’s ongoing commitment to cybersecurity saw a significant boost in 2024, as the tech giant awarded nearly...

ServiceNow Addresses Authorization Bypass Vulnerability in Now Platform (CVE-2025-0337) ServiceNow AI Platform CVE-2026-0542 ServiceNow AI Vulnerability CVE-2025-12420 CVE-2025-0337

ServiceNow AI Platform CVE-2026-0542 ServiceNow AI Vulnerability CVE-2025-12420 CVE-2025-0337

ServiceNow Addresses Authorization Bypass Vulnerability in Now Platform (CVE-2025-0337)

Do Son March 7, 2025

ServiceNow’s Now Platform is a cornerstone for enterprise IT management, automation, and digital workflows. However, a recently...

Telegram’s EvilLoader: Hackers Exploit Video Flaw Again

Do Son March 7, 2025

In June 2024, a vulnerability was discovered in the instant messaging platform Telegram, specifically affecting Telegram for...

Critical Flaws Uncovered in DrayTek Routers: Backdoors, RCE, and Weak Authentication Exposed CVE-2024-41339 & CVE-2024-41334

Critical Flaws Uncovered in DrayTek Routers: Backdoors, RCE, and Weak Authentication Exposed

Do Son March 6, 2025

A comprehensive security audit by the Faraday Team has unveiled a series of critical vulnerabilities in DrayTek...

shell-quote command injection AI-Driven Vulnerabilities Q1 2026 Cyber Threats vm2 Sandbox Escape Node.js RCE upKeeper Privilege Escalation CVE-2026-2449 Pharos Controls Vulnerability Root Access Exploit Cybersecurity Vulnerability Roundup CVSS 10.0 Flaws Shadow Archives CVE-2026-0866 MS-Agent Prompt Injection CVE-2026-2256 basic-ftp Path Traversal CVE-2026-27699 telnetd Root Vulnerability CVE-1999-0073 Regression USR-W610 Vulnerabilities End-of-Life IoT Security IceWarp Security Update IceWarp Vulnerabilities Airleader Master Vulnerability CVE-2026-1358 ZLAN5143D Vulnerability CISA ICS Advisory Acronis Cyber Protect Vulnerability CVE-2025-30411 WAGO 852 Vulnerability OT Network Security SandboxJS Vulnerability Sandbox Escape (CVSS 10.0) Kubernetes Local Path Provisioner CVE-2025-62878 CISA Unresponsive Vendors Avation & RISS Vulnerabilities KiloView Vulnerability CVE-2026-1453 OpenClaw RCE vulnerability Johnson Controls Vulnerability CVE-2025-26385 SandboxJS Vulnerability CVE-2026-23830 ibaPDA Vulnerability CVE-2025-14988 Protobuf Vulnerability CVE-2026-0994 AVEVA Process Optimization Vulnerability CVE-2025-61937 ConnectWise PSA Vulnerability CVE-2026-0695 Aruba VIA Vulnerability CVE-2025-37186 aiohttp v3.13.3, Denial of Service (DoS) SmarterMail RCE, CVE-2025-52691 Airoha RACE, Headphone Jacking HPE OneView RCE CVE-2025-37164 FreePBX Auth Bypass, PBX Takeover ScreenConnect Config Flaw, Untrusted Extensions Ruby SAML Auth Bypass, XML Parser Differential Devolutions SQL Injection, Password Manager Flaw Vivotek Unauthenticated RCE, EOL IP Camera Flaw Lynx+ Critical Flaw, Unauthenticated Reset Firebox Default Credentials, CVE-2025-59396 Veeder-Root RCE, Critical ATG Flaw ArcGIS Server SQLi Watchdoc RCE, CVE-2025-58384 Delta DIALink Daikin Security Gateway, authentication bypass Frostbyte10, industrial controller security SunPower, vulnerability Ubiquiti UniFi Connect, EV Station Vulnerabilities Adobe Experience Manager, RCE Vulnerability UniFi Access, Command Injection LDAPNightmare - CVE-2025-1316

CISA Warns of Critical Edimax IP Camera Flaw (CVE-2025-1316) with Public Exploits and No Vendor Fix

Do Son March 6, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about a critical vulnerability affecting...

CVE-2025-20206: Cisco Secure Client Flaw Allows Code Execution with SYSTEM Privileges Cisco Phone DoS, CVE-2025-20350 Cisco SNMP Flaw CVE-2025-20352 CVE-2024-20398 & CVE-2024-20381 CVE-2025-20206

Cisco Phone DoS, CVE-2025-20350 Cisco SNMP Flaw CVE-2025-20352 CVE-2024-20398 & CVE-2024-20381 CVE-2025-20206

CVE-2025-20206: Cisco Secure Client Flaw Allows Code Execution with SYSTEM Privileges

Do Son March 6, 2025

Cisco has released a security advisory addressing a vulnerability in the Cisco Secure Client for Windows. The...

CSRF and Open Redirect: Jenkins Patches Major Vulnerabilities Jenkins security advisory 2026, CVE-2026-53435, CVE-2026-53436 Jenkins Plugin RCE CI/CD Security Advisory Jenkins Vulnerability CVE-2026-33001 Jenkins CLI DoS, Coverage Plugin XSS Jenkins SAML Hijacking, Plaintext Secrets CVE-2023-43495 - Jenkins Vulnerability

Jenkins security advisory 2026, CVE-2026-53435, CVE-2026-53436 Jenkins Plugin RCE CI/CD Security Advisory Jenkins Vulnerability CVE-2026-33001 Jenkins CLI DoS, Coverage Plugin XSS Jenkins SAML Hijacking, Plaintext Secrets CVE-2023-43495 - Jenkins Vulnerability

CSRF and Open Redirect: Jenkins Patches Major Vulnerabilities

Do Son March 6, 2025

Jenkins, the popular open-source automation server, has issued a security advisory addressing multiple vulnerabilities, including the exposure...

CVE-2025-25015 (CVSS 9.9): Critical Code Execution Vulnerability Patched in Elastic Kibana

Do Son March 5, 2025

Elastic has released a security update to address a critical vulnerability in Kibana, its popular data visualization...

CVE-2025-26776 (CVSS 10) in Chaty Pro Plugin Exposes Thousands of WordPress Sites to Takeover

Do Son March 5, 2025

A critical vulnerability has been discovered in the Chaty Pro plugin for WordPress, potentially allowing attackers to...