Vulnerability Archives • Page 48 of 190 • Daily CyberSecurity

Linux Kernel Privilege Escalation Vulnerability (CVE-2024-27397) Exploited: PoC Released CrackArmor AppArmor Vulnerabilities Linux Kernel UAF, Privilege Escalation PoC CVE-2024-27397 PoC

CrackArmor AppArmor Vulnerabilities Linux Kernel UAF, Privilege Escalation PoC CVE-2024-27397 PoC

Linux Kernel Privilege Escalation Vulnerability (CVE-2024-27397) Exploited: PoC Released

Do Son January 13, 2025

Security researcher liona24 has provided an in-depth analysis and a proof-of-concept (PoC) exploit code for CVE-2024-27397, a...

Zyxel Urges Patch Application for Privilege Escalation Vulnerability (CVE-2024-12398) CVE-2022-43389 - CVE-2024-12398 Zyxel UPnP Vulnerability CVE-2025-13942

CVE-2022-43389 - CVE-2024-12398 Zyxel UPnP Vulnerability CVE-2025-13942

Zyxel Urges Patch Application for Privilege Escalation Vulnerability (CVE-2024-12398)

Do Son January 13, 2025

Zyxel has issued an advisory for a newly identified security vulnerability, CVE-2024-12398, that affects multiple access points...

CISA Warns of Active Exploitation of Critical Flaws in BeyondTrust and Qlik Sense GUARDIANWALL MailSuite Exploit CVE-2026-32661 FileZen Vulnerability CVE-2026-25108 Ivanti EPMM Vulnerability Dormant Backdoor Fortinet Authentication Bypass CVE-2026-24858 VMware vCenter Server Flaw CVE-2025-21590

GUARDIANWALL MailSuite Exploit CVE-2026-32661 FileZen Vulnerability CVE-2026-25108 Ivanti EPMM Vulnerability Dormant Backdoor Fortinet Authentication Bypass CVE-2026-24858 VMware vCenter Server Flaw CVE-2025-21590

CISA Warns of Active Exploitation of Critical Flaws in BeyondTrust and Qlik Sense

Do Son January 13, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about two critical security vulnerabilities...

Microsoft Unveils CVE-2024-44243: A macOS System Integrity Protection Bypass Through Kernel Extensions

Do Son January 13, 2025

Microsoft Defender Research Team has revealed a macOS vulnerability—CVE-2024-44243—that allows attackers to bypass Apple’s robust System Integrity...

CVE-2024-56511: Critical Authentication Bypass Vulnerability in DataEase

Do Son January 13, 2025

The DataEase project has issued an urgent advisory regarding a critical vulnerability (CVE-2024-56511) affecting its popular open-source...

CVE-2024-41787 (CVSS 9.8): Critical IBM DOORS Next Flaw Enables Remote Code Execution IBM CCA Vulnerability CVE-2025-13375 IBM Anthropic Partnership, AI Software Development watsonx Orchestrate, SQL injection CVE-2024-49803 - CVE-2024-41787 IBM Completes Acquisition HashiCorp

IBM CCA Vulnerability CVE-2025-13375 IBM Anthropic Partnership, AI Software Development watsonx Orchestrate, SQL injection CVE-2024-49803 - CVE-2024-41787 IBM Completes Acquisition HashiCorp

CVE-2024-41787 (CVSS 9.8): Critical IBM DOORS Next Flaw Enables Remote Code Execution

Do Son January 13, 2025

IBM has issued an urgent security bulletin regarding two critical vulnerabilities affecting its Engineering Requirements Management DOORS...

Unauthenticated Attackers Can Exploit Junos Vulnerabilities (CVE-2025-21598 & CVE-2025-21599) Junos OS Evolved CVE-2026-21902 Juniper Security Director, Critical Vulnerability Junos OS vulnerabilities - CVE-2025-21598 & CVE-2025-21599

Junos OS Evolved CVE-2026-21902 Juniper Security Director, Critical Vulnerability Junos OS vulnerabilities - CVE-2025-21598 & CVE-2025-21599

Unauthenticated Attackers Can Exploit Junos Vulnerabilities (CVE-2025-21598 & CVE-2025-21599)

Do Son January 13, 2025

Juniper Networks has released advisories detailing two significant vulnerabilities affecting their Junos OS and Junos OS Evolved...

New macOS Exploit Revealed: PoC for CVE-2024-54498 Breaks Sandbox Security CVE-2024-54498 PoC

New macOS Exploit Revealed: PoC for CVE-2024-54498 Breaks Sandbox Security

Do Son January 12, 2025

Recently, security researcher @wh1te4ever has revealed a proof of concept (PoC) exploit for CVE-2024-54498, a vulnerability that...

0-Click Vulnerability in Samsung S24 Devices: PoC Releases for CVE-2024-49415

Do Son January 12, 2025

A newly published report from Natalie Silvanovich, a security researcher at Google’s Project Zero team, has revealed...

Aviatrix Controller RCE CVE-2024-50603 Exploited in the Wild: Cryptojacking and Backdoors Deployed CRussian Market, "Fly" (Flyded) hange Healthcare Cyberattack - CVE-2024-50603 Exploit

CRussian Market, "Fly" (Flyded) hange Healthcare Cyberattack - CVE-2024-50603 Exploit

Aviatrix Controller RCE CVE-2024-50603 Exploited in the Wild: Cryptojacking and Backdoors Deployed

Do Son January 12, 2025

A critical Remote Code Execution (RCE) vulnerability, CVE-2024-50603, has been identified in Aviatrix Controller, with the maximum...

CVE-2025-22152 (CVSS 9.4): Severe Vulnerabilities Found in Atheos Web-Based IDE

Do Son January 12, 2025

A security advisory from the Atheos project has disclosed a critical vulnerability (CVE-2025-22152) that could compromise servers...

CVE-2025-22777 (CVSS 9.8): Critical Security Alert for GiveWP Plugin with 100,000 Active Installations

Do Son January 11, 2025

A severe vulnerability has been identified in the GiveWP plugin, one of WordPress’s most widely used tools...

CVE-2024-12847 (CVSS 9.8): NETGEAR Router Flaw Exploited in the Wild for Years, PoC Published CVE-2024-12847 - CVE-2022-41545

CVE-2024-12847 (CVSS 9.8): NETGEAR Router Flaw Exploited in the Wild for Years, PoC Published

Do Son January 10, 2025

A severe security vulnerability has been discovered in several Netgear routers, allowing remote attackers to gain unauthorized...

Ivanti Connect Secure Zero-Day Threat: 2,048 Vulnerable Devices and Critical Exploitation Details Unveiled NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

Ivanti Connect Secure Zero-Day Threat: 2,048 Vulnerable Devices and Critical Exploitation Details Unveiled

Do Son January 10, 2025

On January 8, 2025, Ivanti disclosed an actively exploited zero-day vulnerability, tracked as CVE-2025-0282, affecting its Connect...

Node.js to Issue CVE for End-of-Life Versions CVE-2024-36138 - Node.js vulnerability

Node.js to Issue CVE for End-of-Life Versions

Do Son January 9, 2025

In a significant move to bolster security and encourage users to stay up-to-date, the Node.js Project has...

Unpatched Vulnerabilities in Fancy Product Designer Plugin Put 20,000+ Websites at Risk CVE-2024-51919 & CVE-2024-51918

Unpatched Vulnerabilities in Fancy Product Designer Plugin Put 20,000+ Websites at Risk

Do Son January 9, 2025

In a recent security advisory, Rafie Muhammad, a security researcher at Patchstack, has uncovered critical vulnerabilities in...

Tails 6.11 Fixes Exploitable Vulnerabilities with Critical Security Patches Tails vulnerability - Tails 6.11

Tails 6.11 Fixes Exploitable Vulnerabilities with Critical Security Patches

Do Son January 9, 2025

The Amnesic Incognito Live System (Tails) has released version 6.11, addressing critical security vulnerabilities uncovered during an...

Check Point VPN vulnerability exploited in the wild Check Point VPN exploit CVE-2026-50751 zero-day Checkmarx Breach Supply Chain Attack Ivanti EPMM RCE CVE-2026-1281 Modular DS Vulnerability CVE-2026-23550 D-Link RCE Vulnerability CVE-2026-0625 Christmas 2025 GreyNoise Campaign, Japan-Based Initial Access Broker React2Shell Zero-Day, APT Active Exploitation WordPress vulnerability, authentication bypass FreePBX, zero-day Trend Micro Apex One, Remote Code Execution BitoPro Hack, Crypto Theft UNC5337 - CVE-2022-47945 Safe{Wallet} hack Fortinet vulnerability, CVE-2024-21762, FortiGate attack Balloonfly, Play ransomware Ivanti EPMM CVE-2025-4427 and CVE-2025-4428

Zero-Day Alert: UNC5337 Exploits Ivanti VPN Vulnerability CVE-2025-0282 for Espionage Operations

Do Son January 8, 2025

Ivanti Connect Secure (ICS) VPN appliances have become the focus of advanced threat actors, exploiting a newly...

macOS Vulnerability CVE-2024-54527 Unveiled: TCC Bypass PoC Exploit Code Released Apple Zero-Day CVE-2025-43529 WebKit Zero-Day, Targeted iOS Spyware Apple spyware alerts, zero-click attacks Apple, trademark lawsuit CVE-2024-54527 PoC exploit Apple, App Store