Vulnerability Archives • Page 42 of 190 • Daily CyberSecurity

CVE-2025-23114 (CVSS 9.0): Critical Veeam Backup Vulnerability Enables Remote Code Execution CVE-2024-29849 - CVE-2025-23114

CVE-2025-23114 (CVSS 9.0): Critical Veeam Backup Vulnerability Enables Remote Code Execution

Do Son February 4, 2025

A critical vulnerability (CVE-2025-23114, CVSS 9.0) has been discovered in the Veeam Updater component, a core part...

Google Fixes High-Severity Chrome Vulnerabilities (CVE-2025-0444 & CVE-2025-0445) Chrome 133 - CVE-2025-0444 & CVE-2025-0445

Google Fixes High-Severity Chrome Vulnerabilities (CVE-2025-0444 & CVE-2025-0445)

Do Son February 4, 2025

The Chrome team has just unleashed version 133 onto the stable channel for Windows, Mac, and Linux,...

CISA Flags Four Actively Exploited Security Vulnerabilities in KEV Catalog CISA KEV Update, Cisco Zero-Day KEV Vulnerabilities

CISA Flags Four Actively Exploited Security Vulnerabilities in KEV Catalog

Do Son February 4, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added four critical security vulnerabilities to its Known...

Threat Actors Exploit CVE-2019-18935 to Gain Remote Access and Elevate Privileges

Do Son February 4, 2025

The eSentire Threat Response Unit (TRU) has reported that threat actors are actively exploiting a six-year-old vulnerability,...

CVE-2025-0411: 7-Zip Vulnerability Exploited in Attacks on Ukraine CVE-2025-0411 PoC exploit - Homoglyph Attacks

CVE-2025-0411: 7-Zip Vulnerability Exploited in Attacks on Ukraine

Do Son February 4, 2025

A new report from the Zero Day Initiative (ZDI) Threat Hunting team reveals that Ukrainian organizations have...

Privilege Escalation in Active Directory Domain Services: CVE-2025-21293 Exploit Revealed with PoC Code

Do Son February 3, 2025

A newly disclosed elevation of privilege vulnerability (CVE-2025-21293) in Active Directory Domain Services (AD DS) has been...

Time Bandit: ChatGPT-4o Jailbreak Vulnerability OpenAI Major Outage - Time Bandit GPT-4.5 Phase-Out

Time Bandit: ChatGPT-4o Jailbreak Vulnerability

Do Son February 3, 2025

A newly disclosed vulnerability, dubbed “Time Bandit,” has been discovered in ChatGPT-4o, allowing attackers to bypass safety...

CVE-2024-53104: Critical Zero-Day Vulnerability Patched in February 2025 Android Security Update Android Zero-Click RCE CVE-2026-0073 Android sideloading CVE-2024-43096, CVE-2024-43770, CVE-2024-43771, CVE-2024-49747 and, CVE-2024-49748

Android Zero-Click RCE CVE-2026-0073 Android sideloading CVE-2024-43096, CVE-2024-43770, CVE-2024-43771, CVE-2024-49747 and, CVE-2024-49748

CVE-2024-53104: Critical Zero-Day Vulnerability Patched in February 2025 Android Security Update

Do Son February 3, 2025

The February 2025 Android security update addresses 46 vulnerabilities, including a critical zero-day kernel vulnerability actively exploited...

MediaTek’s February 2025 Security Bulletin: Critical WLAN Vulnerabilities Expose Millions to Remote Attacks MediaTek Modem Vulnerabilities, January 2026 Security Bulletin MediaTek Vulnerabilities, Chipset Security CVE-2024-20103 & CVE-2024-20100 - CVE-2024-20154 - February 2025 Product Security Bulletin

MediaTek’s February 2025 Security Bulletin: Critical WLAN Vulnerabilities Expose Millions to Remote Attacks

Do Son February 3, 2025

MediaTek has released its February 2025 Product Security Bulletin, addressing several high-severity vulnerabilities affecting its chipsets used...

PoC Exploit Released for macOS Kernel Vulnerability CVE-2025-24118 (CVSS 9.8) Apple Background Security CVE-2026-20643 Apple Background Security Improvement Apple Backdoor Apple Lawsuit, Data Exfiltration CVE-2024-44131 - CVE-2025-24118 PoC

Apple Background Security CVE-2026-20643 Apple Background Security Improvement Apple Backdoor Apple Lawsuit, Data Exfiltration CVE-2024-44131 - CVE-2025-24118 PoC

PoC Exploit Released for macOS Kernel Vulnerability CVE-2025-24118 (CVSS 9.8)

Do Son February 2, 2025

A newly discovered race condition in Apple’s macOS kernel (XNU) could allow attackers to escalate privileges, corrupt...

CVE-2024-57376: End-of-Life D-Link Routers Vulnerable to Unauthenticated RCE CVE-2024-57376 - DSL-3788 Router Vulnerability

CVE-2024-57376: End-of-Life D-Link Routers Vulnerable to Unauthenticated RCE

Do Son February 2, 2025

D-Link has updated a security advisory warning of a critical buffer overflow vulnerability affecting several end-of-life routers....

CVE-2025-0477 (CVSS 9.8): Critical Security Flaw in Rockwell Automation’s FactoryTalk AssetCentre

Do Son February 2, 2025

Industrial automation giant Rockwell Automation has issued a security advisory addressing multiple critical vulnerabilities in its FactoryTalk...

CVE-2025-0851 (CVSS 9.8): Deep Java Library Vulnerability Allows Path Traversal Exploits

Do Son February 2, 2025

A newly discovered vulnerability in the Deep Java Library (DJL) has been found to leave systems open...

.Gov No More: Government Domains Weaponized in Phishing Surge Layoff Phishing Scam Remcos RAT Malware Aruba Phishing, Phishing-as-a-Service PyPI, phishing CVE-2024-25608 PyPI Phishing, Credential Theft

Layoff Phishing Scam Remcos RAT Malware Aruba Phishing, Phishing-as-a-Service PyPI, phishing CVE-2024-25608 PyPI Phishing, Credential Theft

.Gov No More: Government Domains Weaponized in Phishing Surge

Do Son February 2, 2025

A recent Cofense Intelligence report has uncovered a troubling trend: threat actors are increasingly abusing .gov top-level...

CISA Warns of Hidden Backdoor in Contec CMS8000 Patient Monitors Contec CMS8000 backdoor - CVE-2025-0626 ,CVE-2025-0683

CISA Warns of Hidden Backdoor in Contec CMS8000 Patient Monitors

Do Son February 2, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical security alert regarding the Contec CMS8000,...

CVE-2024-56529: mailcow Patches Session Fixation Vulnerability in Web Panel CVE-2024-56529 - CVE-2025-25198

CVE-2024-56529: mailcow Patches Session Fixation Vulnerability in Web Panel

Do Son February 1, 2025

The mailcow project, an open-source email server platform, has addressed a session fixation vulnerability that could allow...

CVE-2025-24480 (CVSS 9.8): Rockwell Automation Addresses Critical Flaw in FactoryTalk View ME

Do Son February 1, 2025

Rockwell Automation has recently released security advisories to address multiple vulnerabilities in FactoryTalk View Machine Edition (ME),...

CVE-2024-55417: One-Click RCE Vulnerability in Voyager Admin Panel, No Patch

Do Son January 31, 2025

A recent security analysis by Yaniv Nizry, a vulnerability researcher at SonarSource, has revealed multiple critical vulnerabilities...

CVE-2024-7695: Moxa Patches Critical Denial-of-Service Vulnerability in PT Switches Moxa Hard-Coded Credentials, Critical JWT Bypass CVE-2024-9137 and CVE-2024-9139 - CVE-2024-12297 CVE-2024-7695 CVE-2024-9404 CVE-2024-12297 CVE-2025-0415