Vulnerability Archives • Page 39 of 190 • Daily CyberSecurity

CVE-2025-23359: NVIDIA Container Toolkit Flaw Could Lead to Code Execution and Denial of Service

Ddos February 13, 2025

NVIDIA has released a security update to address a high-severity vulnerability in its Container Toolkit for Linux...

XSS Flaw in Apache Atlas (CVE-2024-46910) Puts Data Governance at Risk CVE-2024-46910 Apache Atlas Vulnerability Gremlin Code Injection

XSS Flaw in Apache Atlas (CVE-2024-46910) Puts Data Governance at Risk

Ddos February 13, 2025

A serious security vulnerability has been uncovered in Apache Atlas, the open-source governance and metadata management tool...

macOS Security Breach: CVE-2024-54531 PoC Published, Attackers Can Bypass KASLR

Ddos February 12, 2025

Security researchers from Korea University have unveiled an attack that successfully bypasses Kernel Address Space Layout Randomization...

CVE-2025-0108 & CVE-2025-0110: Palo Alto Networks Fixes High-Severity PAN-OS Vulnerabilities PAN-OS IKEv2 Buffer Overflow CVE-2026-0263 Palo Alto Cortex XDR Privilege Escalation Palo Alto Networks Vulnerability CVE-2026-0229 PAN-OS Vulnerability CVE-2026-0227 CVE-2024-5914 - Palo Alto Networks - CVE-2025-0108 & CVE-2025-0110

CVE-2025-0108 & CVE-2025-0110: Palo Alto Networks Fixes High-Severity PAN-OS Vulnerabilities

Ddos February 12, 2025

Palo Alto Networks has released security advisories addressing two high-severity vulnerabilities in its PAN-OS network security operating...

CrowdStrike Addresses High-Severity TLS Vulnerability in Falcon Sensor for Linux (CVE-2025-1146) LogScale Vulnerability Path Traversal Falcon Sensor File Deletion, CVE-2025-42701 CrowdStrike update crashes - CVE 2025-1146

CrowdStrike Addresses High-Severity TLS Vulnerability in Falcon Sensor for Linux (CVE-2025-1146)

Ddos February 12, 2025

CrowdStrike has issued a security advisory regarding a high-severity Transport Layer Security (TLS) vulnerability in its Falcon...

Checkmarx Breach Supply Chain Attack Ivanti EPMM RCE CVE-2026-1281 Modular DS Vulnerability CVE-2026-23550 D-Link RCE Vulnerability CVE-2026-0625 Christmas 2025 GreyNoise Campaign, Japan-Based Initial Access Broker React2Shell Zero-Day, APT Active Exploitation WordPress vulnerability, authentication bypass FreePBX, zero-day Trend Micro Apex One, Remote Code Execution BitoPro Hack, Crypto Theft UNC5337 - CVE-2022-47945 Safe{Wallet} hack Fortinet vulnerability, CVE-2024-21762, FortiGate attack Balloonfly, Play ransomware Ivanti EPMM CVE-2025-4427 and CVE-2025-4428

Attackers Ramp Up Exploitation of CVE-2022-47945 and CVE-2023-49103 Vulnerabilities

Ddos February 12, 2025

A new report from GreyNoise reveals a significant spike in exploitation activity targeting two vulnerabilities: one in...

CVE-2024-0112: NVIDIA Patches High-Severity Vulnerability in Jetson and IGX Orin Platforms NemoClaw Prompt Injection AI Sandbox Security NVIDIA Physical AI CES 2026, Jetson T4000 robotics hardware NVIDIA AI Security, Isaac Lab RCE NVIDIA Driver RCE, CVE-2025-23309 NVIDIA Triton, AI Server Vulnerabilities CVE-2023-31029 & CVE-2023-31024 - CVE‑2024-0112

NemoClaw Prompt Injection AI Sandbox Security NVIDIA Physical AI CES 2026, Jetson T4000 robotics hardware NVIDIA AI Security, Isaac Lab RCE NVIDIA Driver RCE, CVE-2025-23309 NVIDIA Triton, AI Server Vulnerabilities CVE-2023-31029 & CVE-2023-31024 - CVE‑2024-0112

CVE-2024-0112: NVIDIA Patches High-Severity Vulnerability in Jetson and IGX Orin Platforms

Ddos February 12, 2025

NVIDIA has issued a security bulletin announcing a software update for its Jetson AGX Orin series, including...

GitLab Patches High-Severity XSS Flaw (CVE-2025-0376) and Other Security Flaws in Latest Release CVE-2024-9164 - CVE-2025-0376 GitLab Wiki XSS, Session Hijack Flaw

CVE-2024-9164 - CVE-2025-0376 GitLab Wiki XSS, Session Hijack Flaw

GitLab Patches High-Severity XSS Flaw (CVE-2025-0376) and Other Security Flaws in Latest Release

Ddos February 12, 2025

GitLab has issued a security advisory, urging users to update their installations immediately to address a range...

Chrome Patches Four High-Severity Vulnerabilities in Latest Stable Channel Update CVE-2025-0995

Chrome Patches Four High-Severity Vulnerabilities in Latest Stable Channel Update

Ddos February 12, 2025

In a update for desktop users, Google has released Chrome version 133.0.6943.98/.99 for Windows and Mac, and...

Chinese Hackers Suspected in Ivanti CSA Attacks: Webshells and Lateral Movement Detected Sources and related content Quest KACE Vulnerability CVE-2025-32975 FortiGate SSO Bypass, Active Exploitation GoAnywhere RCE, Storm-1175 Cisco VPN RCE, ASA Zero-Day TinyColor Supply Chain Attack SK Telecom, data breach Erlang/OTP RCE, OT Network Security Ivanti CSA Attacks WordPress RCE, Theme Vulnerability

Quest KACE Vulnerability CVE-2025-32975 FortiGate SSO Bypass, Active Exploitation GoAnywhere RCE, Storm-1175 Cisco VPN RCE, ASA Zero-Day TinyColor Supply Chain Attack SK Telecom, data breach Erlang/OTP RCE, OT Network Security Ivanti CSA Attacks WordPress RCE, Theme Vulnerability

Chinese Hackers Suspected in Ivanti CSA Attacks: Webshells and Lateral Movement Detected Sources and related content

Ddos February 12, 2025

A series of critical vulnerabilities affecting Ivanti Cloud Service Appliance (CSA) 4.6 have been actively exploited in...

CVE-2025-22467 (CVSS 9.9): Ivanti Connect Secure Vulnerability Allows Remote Code Execution CVE-2024-37404 - CVE-2025-22467

CVE-2025-22467 (CVSS 9.9): Ivanti Connect Secure Vulnerability Allows Remote Code Execution

Ddos February 11, 2025

Ivanti has disclosed multiple vulnerabilities affecting its Connect Secure, Policy Secure, and Secure Access Client products, with...

CVE-2025-24016 (CVSS 9.9): Critical RCE Vulnerability Discovered in Wazuh Server

Ddos February 11, 2025

Wazuh, a leading provider of open-source security solutions, has issued a critical security advisory regarding a remote...

CVE-2024-12366: Prompt Injection in PandasAI Enables Full System Compromise

Ddos February 11, 2025

A newly disclosed security vulnerability in PandasAI, an open-source AI-powered data analysis library by SinaptikAI, exposes users...

CVE-2025-24032, CVE-2025-24531, and More: Critical Flaws in PAM-PKCS#11 Expose Linux Authentication to Attackers

Ddos February 11, 2025

The PAM-PKCS#11 login module, a widely used tool for X.509 certificate-based user login on Linux systems, has...

Devolutions Warns of Severe RDM Vulnerabilities Allowing Encrypted Communication Interception axios Supply Chain Attack WAVESHAPER.V2 SnappyBee Malware Salt Typhoon Stately Taurus ScoringMathTea RAT, Lazarus Reflective DLL

axios Supply Chain Attack WAVESHAPER.V2 SnappyBee Malware Salt Typhoon Stately Taurus ScoringMathTea RAT, Lazarus Reflective DLL

Devolutions Warns of Severe RDM Vulnerabilities Allowing Encrypted Communication Interception

Ddos February 11, 2025

Devolutions, a leading provider of remote connection management solutions, has issued a security advisory addressing critical vulnerabilities...

CVE-2025-1143: Billion Electric Routers Vulnerable to Remote Takeover Due to Hard-coded Credentials

Ddos February 11, 2025

The Taiwan Computer Emergency Response Team / Coordination Center (TWCERT/CC) has issued a security advisory warning of...

Microsoft Patches Actively Exploited Zero-Day Flaws – CVE-2025-21418 & CVE-2025-21391 Windows Wormable Exploit April 2026 Patch Tuesday Microsoft Patch Tuesday Zero-Day Vulnerabilities Microsoft, Patch Tuesday CVE-2025-55234 CVE-2024-43573 and CVE-2024-43572 Microsoft Patch Tuesday Security Vulnerabilities

Windows Wormable Exploit April 2026 Patch Tuesday Microsoft Patch Tuesday Zero-Day Vulnerabilities Microsoft, Patch Tuesday CVE-2025-55234 CVE-2024-43573 and CVE-2024-43572 Microsoft Patch Tuesday Security Vulnerabilities

Microsoft Patches Actively Exploited Zero-Day Flaws – CVE-2025-21418 & CVE-2025-21391

Ddos February 11, 2025

Microsoft has rolled out its February 2025 Patch Tuesday security updates, addressing 67 vulnerabilities across multiple products....

CVE-2024-12797 – High-Severity OpenSSL Flaw: Update Now to Prevent MITM Attacks OpenSSL Vulnerability RSA Memory Leak OpenSSL Vulnerability CVE-2025-15467 CVE-2022-2274 OpenSSL Vulnerabilities, Timing Side-Channel

OpenSSL Vulnerability RSA Memory Leak OpenSSL Vulnerability CVE-2025-15467 CVE-2022-2274 OpenSSL Vulnerabilities, Timing Side-Channel

CVE-2024-12797 – High-Severity OpenSSL Flaw: Update Now to Prevent MITM Attacks

Ddos February 11, 2025

A high-severity vulnerability has been discovered in OpenSSL, a widely-used cryptography library that secures countless websites and...

CVE-2024-47908 (CVSS 9.1): Critical Ivanti CSA Flaw Enables Attackers to Run Arbitrary Code CVE-2023-39335 - CVE-2024-47908 - CVE-2024-11771

CVE-2024-47908 (CVSS 9.1): Critical Ivanti CSA Flaw Enables Attackers to Run Arbitrary Code

Ddos February 11, 2025

Ivanti has issued a security advisory regarding critical vulnerabilities in its Cloud Services Application (CSA). The vulnerabilities,...

SAP Security Patch Day February 2025: Multi Vulnerabilities Addressed CVE-2024-33006 - CVE-2025-0064 SAP Critical Patch, RMI-P4 RCE

SAP Security Patch Day February 2025: Multi Vulnerabilities Addressed

Ddos February 11, 2025

SAP has released its latest round of security patches, addressing 19 new vulnerabilities and updating 2 previous...

Critical Alert 1 Active Exploit Detected Today