Vulnerability Archives • Page 34 of 190 • Daily CyberSecurity

Vim Users Warned: Crafted TAR Files Could Trigger Code Execution (CVE-2025-27423) CVE-2025-27423 Vim Arbitrary Code Execution, Uncontrolled Search Path

CVE-2025-27423 Vim Arbitrary Code Execution, Uncontrolled Search Path

Vim Users Warned: Crafted TAR Files Could Trigger Code Execution (CVE-2025-27423)

Ddos March 4, 2025

A newly discovered vulnerability in the popular text editor Vim could allow malicious actors to execute arbitrary...

CVE-2024-0114: NVIDIA Addresses High-Severity HMC Vulnerability NVIDIA DGX Cloud restructuring, Dwight Diercks engineering shift NVIDIA Isaac Launchable, Hard-coded Credentials NVIDIA Merlin Deserialization, AI Pipeline RCE Triton DoS Flaws, AI Inference Server Security NVIDIA AI programming AI Chips China 800VDC Data Center, AI Power Architecture CVE-2024-0114 NVIDIA Container Toolkit vulnerability Container escape

NVIDIA DGX Cloud restructuring, Dwight Diercks engineering shift NVIDIA Isaac Launchable, Hard-coded Credentials NVIDIA Merlin Deserialization, AI Pipeline RCE Triton DoS Flaws, AI Inference Server Security NVIDIA AI programming AI Chips China 800VDC Data Center, AI Power Architecture CVE-2024-0114 NVIDIA Container Toolkit vulnerability Container escape

CVE-2024-0114: NVIDIA Addresses High-Severity HMC Vulnerability

Ddos March 4, 2025

Nvidia has issued a security update addressing two vulnerabilities in its Hopper HGX 8-GPU HMC, including a...

Chrome 134 Update Addresses High-Risk Vulnerability (CVE-2025-1914)

Ddos March 4, 2025

The Google Chrome team has officially pushed Chrome 134 to the stable channel for Windows (134.0.6998.35/36), Mac...

CVE-2025-0912: Critical Flaw Exposes Over 100,000 WordPress Donation Sites to RCE

Ddos March 4, 2025

A severe security vulnerability has been discovered in GiveWP, the popular WordPress donation plugin, putting over 100,000...

CVE-2025-22224, CVE-2025-22225, CVE-2025-22226: Critical VMware Vulnerabilities Exploited VMware Fusion Privilege Escalation CVE-2026-41702 TOCTOU VMware Vulnerabilities, Broadcom Security CVE-2024-38814 - VMware HCX CVE-2025-22224, CVE-2025-22225, and CVE-2025-22226

VMware Fusion Privilege Escalation CVE-2026-41702 TOCTOU VMware Vulnerabilities, Broadcom Security CVE-2024-38814 - VMware HCX CVE-2025-22224, CVE-2025-22225, and CVE-2025-22226

CVE-2025-22224, CVE-2025-22225, CVE-2025-22226: Critical VMware Vulnerabilities Exploited

Ddos March 4, 2025

Broadcom, the parent company of VMware, has released a critical security advisory (VMSA-2025-0004) detailing multiple vulnerabilities affecting...

Android Alert: Critical Flaws CVE-2024-43093 & CVE-2024-50302 Exploited, Update Now! Excessive Wake Lock Android Battery Warning LianSpy spyware - CVE-2024-50302 Android 15 Storage Requirement

Excessive Wake Lock Android Battery Warning LianSpy spyware - CVE-2024-50302 Android 15 Storage Requirement

Android Alert: Critical Flaws CVE-2024-43093 & CVE-2024-50302 Exploited, Update Now!

Ddos March 3, 2025

Google has released the Android Security Bulletin for March 2025, detailing multiple security vulnerabilities affecting Android devices....

CVE-2025-0364 (CVSS 9.8): BigAnt Server Zero-Day, Public Exploit Confirmed CVE-2025-0364 PoC

CVE-2025-0364 (CVSS 9.8): BigAnt Server Zero-Day, Public Exploit Confirmed

Ddos March 3, 2025

Security researchers from VulnCheck have disclosed a critical unauthenticated remote code execution (RCE) vulnerability in BigAntSoft BigAnt...

CVE-2025-0159 (CVSS 9.1): Critical IBM Storage Flaw Allows Authentication Bypass CVE-2024-41779 - CVE-2025-0159 IBM HashiCorp Acquisition

CVE-2025-0159 (CVSS 9.1): Critical IBM Storage Flaw Allows Authentication Bypass

Ddos March 3, 2025

IBM has issued a security bulletin disclosing two vulnerabilities affecting the graphical user interface (GUI) of several...

Critical Flaws Exploited: Cisco, Windows, Hitachi, WhatsUp Gold at Risk CISA KEV Catalog SharePoint RCE CISA, Known Exploited Vulnerabilities CVE-2023-33010

CISA KEV Catalog SharePoint RCE CISA, Known Exploited Vulnerabilities CVE-2023-33010

Critical Flaws Exploited: Cisco, Windows, Hitachi, WhatsUp Gold at Risk

Ddos March 3, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning for federal agencies to mitigate...

Flaws in Rancher (CVE-2025-23388 & CVE-2025-23389) Expose Kubernetes Environments to Attacks CVE-2024-22030 - CVE-2025-23388 & CVE-2025-23389

Flaws in Rancher (CVE-2025-23388 & CVE-2025-23389) Expose Kubernetes Environments to Attacks

Ddos March 3, 2025

SUSE has released security advisories to address two critical vulnerabilities in Rancher, an open-source container management platform....

CVE-2025-0289: Paragon Partition Manager Flaw Exploited in BYOVD Ransomware Attacks Osiris Ransomware Inc Ransomware Connection CountLoader Massive Ransomware Campaign CVE-2025-0289

Osiris Ransomware Inc Ransomware Connection CountLoader Massive Ransomware Campaign CVE-2025-0289

CVE-2025-0289: Paragon Partition Manager Flaw Exploited in BYOVD Ransomware Attacks

Ddos March 3, 2025

A cluster of critical vulnerabilities in Paragon Partition Manager’s BioNTdrv.sys driver has been actively exploited in ransomware...

Qualcomm’s March 2025 Security Bulletin Addresses Critical Flaws Across Multiple Products Qualcomm Samsung 2nm foundry deal, Snapdragon 8 Elite 2nm refresh Qualcomm Ventana Acquisition, RISC-V Strategy Qualcomm Autotalks, China Antitrust Qualcomm Antitrust, Which? Lawsuit Qualcomm GPU driver, CVE-2024-38399 Qualcomm's March 2025 Security Bulletin

Qualcomm Samsung 2nm foundry deal, Snapdragon 8 Elite 2nm refresh Qualcomm Ventana Acquisition, RISC-V Strategy Qualcomm Autotalks, China Antitrust Qualcomm Antitrust, Which? Lawsuit Qualcomm GPU driver, CVE-2024-38399 Qualcomm's March 2025 Security Bulletin

Qualcomm’s March 2025 Security Bulletin Addresses Critical Flaws Across Multiple Products

Ddos March 3, 2025

Qualcomm has released its March 2025 Security Bulletin, addressing a range of vulnerabilities affecting various products, including...

10 New Vulnerabilities Found in MediaTek Chipsets MediaTek Modem Vulnerabilities, January 2026 Security Bulletin MediaTek Vulnerabilities, Chipset Security CVE-2024-20103 & CVE-2024-20100 - CVE-2024-20154 - February 2025 Product Security Bulletin

10 New Vulnerabilities Found in MediaTek Chipsets

Ddos March 3, 2025

MediaTek has unveiled its March 2025 Product Security Bulletin, detailing a series of newly identified security vulnerabilities...

Windows Hyper-V Zero-Day CVE-2025-21333: PoC Drops, SYSTEM Access Exposed CVE-2025-21333 PoC exploit

Windows Hyper-V Zero-Day CVE-2025-21333: PoC Drops, SYSTEM Access Exposed

Ddos March 2, 2025

Security researcher Alessandro Iandoli has published a proof-of-concept (PoC) exploit for CVE-2025-21333, a zero-day vulnerability in Windows...

CVE-2025-27154: Spotipy Vulnerability Exposes Spotify Auth Tokens Spotify data leak, Anna’s Archive CVE-2025-27154

CVE-2025-27154: Spotipy Vulnerability Exposes Spotify Auth Tokens

Ddos March 2, 2025

Spotipy, a popular Python library for interacting with the Spotify Web API, recently addressed a security vulnerability...

Extreme Networks Addresses Critical Security Vulnerabilities in HiveOS CVE-2025-27227

Extreme Networks Addresses Critical Security Vulnerabilities in HiveOS

Ddos March 2, 2025

Extreme Networks has recently released security advisories to address three critical vulnerabilities affecting its IQ Engine (HiveOS)...

Webmin Vulnerability Allows Bypassing of SSL Certificate Authentication webmin authentication vulnerability

Webmin Vulnerability Allows Bypassing of SSL Certificate Authentication

Ddos March 2, 2025

A security vulnerability has been discovered in Webmin, a widely used web-based system administration tool for Unix-like...

Arista EOS Devices Vulnerable to Unauthorized Data Access and Configuration Changes (CVE-2025-1259 & CVE-2025-1260)

Ddos March 2, 2025

Arista Networks, a leading provider of network switching solutions, has issued a security advisory warning of two...

CVE-2024-47051 (CVSS 9.1): Critical RCE and File Deletion Flaws Expose 200,000+ Organizations

Ddos March 2, 2025

The Mautic project has disclosed a severe security vulnerability, CVE-2024-47051, affecting versions before 5.2.3, with a CVSS...

Critical LDAP Injection Flaw in IBM TXSeries for Multiplatforms CVE-2022-46337

Critical LDAP Injection Flaw in IBM TXSeries for Multiplatforms

Ddos March 2, 2025

IBM has released a security bulletin addressing a vulnerability in the Apache Derby package shipped with IBM...

Critical Alert 1 Active Exploit Detected Today