Vulnerability

AMD EPYC Processors Exposed: High-Severity Vulnerability CVE-2023-31315

• Vulnerability

AMD EPYC Processors Exposed: High-Severity Vulnerability CVE-2023-31315

do son August 13, 2024

AMD has released a security advisory following the discovery of a high-severity vulnerability affecting several of its...

Read More Read more about AMD EPYC Processors Exposed: High-Severity Vulnerability CVE-2023-31315

Ivanti Issues Critical Fixes for ITSM Vulnerabilities (CVE-2024-7569 and CVE-2024-7570)

• Vulnerability

Ivanti Issues Critical Fixes for ITSM Vulnerabilities (CVE-2024-7569 and CVE-2024-7570)

do son August 13, 2024

Ivanti has released a security advisory addressing two significant vulnerabilities in its Neurons for IT Service Management...

Read More Read more about Ivanti Issues Critical Fixes for ITSM Vulnerabilities (CVE-2024-7569 and CVE-2024-7570)

CVE-2024-39825 and CVE-2024-39818: High-Risk Zoom Flaws Require Urgent Updates

• Vulnerability

CVE-2024-39825 and CVE-2024-39818: High-Risk Zoom Flaws Require Urgent Updates

do son August 13, 2024

Zoom has released a security bulletin addressing several vulnerabilities in its Workplace Apps and Rooms Clients, some...

Read More Read more about CVE-2024-39825 and CVE-2024-39818: High-Risk Zoom Flaws Require Urgent Updates

CVE-2024-7593 (CVSS 9.8): Authentication Bypass in Ivanti vTM: Proof of Concept Available

• Vulnerability

CVE-2024-7593 (CVSS 9.8): Authentication Bypass in Ivanti vTM: Proof of Concept Available

do son August 13, 2024

Ivanti has issued a security advisory addressing a critical vulnerability (CVE-2024-7593) in its Virtual Traffic Manager (vTM),...

Read More Read more about CVE-2024-7593 (CVSS 9.8): Authentication Bypass in Ivanti vTM: Proof of Concept Available

SAP Security Patch Day – August 2024: CVE-2024-41730 (CVSS 9.8) Vulnerability Exposes Systems to Full Control Exploit

• Vulnerability

SAP Security Patch Day – August 2024: CVE-2024-41730 (CVSS 9.8) Vulnerability Exposes Systems to Full Control Exploit

do son August 13, 2024

SAP has released its monthly security patches for August 2024, addressing a range of vulnerabilities across its...

Read More Read more about SAP Security Patch Day – August 2024: CVE-2024-41730 (CVSS 9.8) Vulnerability Exposes Systems to Full Control Exploit

Zabbix Addresses Multi Vulnerabilities, Including RCE CVE-2024-36461 (CVSS 9.1) Flaw

• Vulnerability

Zabbix Addresses Multi Vulnerabilities, Including RCE CVE-2024-36461 (CVSS 9.1) Flaw

do son August 13, 2024

Zabbix, the widely-used open-source monitoring solution, has released a series of security updates addressing critical vulnerabilities, most...

Read More Read more about Zabbix Addresses Multi Vulnerabilities, Including RCE CVE-2024-36461 (CVSS 9.1) Flaw

BYOVDLL: New Exploit Bypasses Microsoft’s LSASS Defenses

• Vulnerability

BYOVDLL: New Exploit Bypasses Microsoft’s LSASS Defenses

do son August 12, 2024

In July 2022, Microsoft made modifications to its Protected Process Light (PPL) system aimed at mitigating a...

Read More Read more about BYOVDLL: New Exploit Bypasses Microsoft’s LSASS Defenses

CVE-2024-22116 (CVSS 9.9): Critical RCE Vulnerability Found in Zabbix Monitoring Solution

• Vulnerability

CVE-2024-22116 (CVSS 9.9): Critical RCE Vulnerability Found in Zabbix Monitoring Solution

do son August 12, 2024

Zabbix, a widely-adopted open-source solution for enterprise-level IT infrastructure monitoring, has disclosed a critical security vulnerability that...

Read More Read more about CVE-2024-22116 (CVSS 9.9): Critical RCE Vulnerability Found in Zabbix Monitoring Solution

Akamai Unveils New VPN Post-Exploitation Techniques: Major Vulnerabilities Discovered in Ivanti and FortiGate VPNs

• Vulnerability

Akamai Unveils New VPN Post-Exploitation Techniques: Major Vulnerabilities Discovered in Ivanti and FortiGate VPNs

do son August 12, 2024

Akamai researchers have exposed a series of vulnerabilities and techniques that could allow threat actors to further...

Read More Read more about Akamai Unveils New VPN Post-Exploitation Techniques: Major Vulnerabilities Discovered in Ivanti and FortiGate VPNs

Security Flaw in PostgreSQL: CVE-2024-7348 Allows Arbitrary SQL Execution

• Vulnerability

Security Flaw in PostgreSQL: CVE-2024-7348 Allows Arbitrary SQL Execution

do son August 12, 2024

The PostgreSQL project has issued a security advisory, warning users of a serious vulnerability (CVE-2024-7348). The flaw,...

Read More Read more about Security Flaw in PostgreSQL: CVE-2024-7348 Allows Arbitrary SQL Execution

GhostWrite: New RISC-V Vulnerability Enables Full Device Takeover

• Vulnerability

GhostWrite: New RISC-V Vulnerability Enables Full Device Takeover

do son August 12, 2024

A team of researchers from the CISPA Helmholtz Center for Information Security has disclosed a critical vulnerability,...

Read More Read more about GhostWrite: New RISC-V Vulnerability Enables Full Device Takeover

Windows Users Beware: CVE-2024-6768 – New ‘Blue Screen of Death’ Vulnerability Affects All

• Vulnerability

Windows Users Beware: CVE-2024-6768 – New ‘Blue Screen of Death’ Vulnerability Affects All

do son August 12, 2024

A newly discovered vulnerability in the Windows operating system has raised concerns among cybersecurity experts due to...

Read More Read more about Windows Users Beware: CVE-2024-6768 – New ‘Blue Screen of Death’ Vulnerability Affects All

QuickShell Security Flaw Exposes Google Quick Share Users to Remote Attacks

• Vulnerability

QuickShell Security Flaw Exposes Google Quick Share Users to Remote Attacks

do son August 12, 2024

Google’s Quick Share, a popular tool for file sharing across Android, Windows, and Chrome OS devices, has...

Read More Read more about QuickShell Security Flaw Exposes Google Quick Share Users to Remote Attacks

CVE-2024-5651: RCE Vulnerability in Fence Agents Exposes Critical Infrastructure to Exploitation

• Vulnerability

CVE-2024-5651: RCE Vulnerability in Fence Agents Exposes Critical Infrastructure to Exploitation

do son August 12, 2024

A high-severity security vulnerability (CVE-2024-5651, CVSS 8.8) has been discovered in fence agents, a vital component of...

Read More Read more about CVE-2024-5651: RCE Vulnerability in Fence Agents Exposes Critical Infrastructure to Exploitation

CVE-2024-7589: OpenSSH Pre-Authentication Vulnerability in FreeBSD Exposes Systems to RCE

• Vulnerability

CVE-2024-7589: OpenSSH Pre-Authentication Vulnerability in FreeBSD Exposes Systems to RCE

do son August 11, 2024

In a recent security advisory, the FreeBSD Project disclosed a critical vulnerability (CVE-2024-7589) in OpenSSH, the widely-used...

Read More Read more about CVE-2024-7589: OpenSSH Pre-Authentication Vulnerability in FreeBSD Exposes Systems to RCE