Vulnerability Archives • Page 55 of 190 • Daily CyberSecurity

CVE-2024-52335 (CVSS 9.8): Siemens Healthineers Addresses Critical Flaw in Medical Imaging Software CVE-2024-52335 HylaFAX, AvantFAX vulnerability

CVE-2024-52335 HylaFAX, AvantFAX vulnerability

CVE-2024-52335 (CVSS 9.8): Siemens Healthineers Addresses Critical Flaw in Medical Imaging Software

Ddos December 10, 2024

Siemens Healthineers has released a critical security update to address an unauthenticated SQL injection vulnerability in its...

Exploiting CDN Integrations: A WAF Bypass Threatening Global Web Applications Foomuuri Vulnerability CVE-2025-67603 bypass WAF protections

Exploiting CDN Integrations: A WAF Bypass Threatening Global Web Applications

Ddos December 10, 2024

In a recently disclosed analysis, Zafran’s research team has unveiled a pervasive misconfiguration vulnerability affecting some of...

Apache Superset Patches Multi Security Flaws in Latest Release CVE-2024-53947, CVE-2024-53948, and CVE-2024-53949

Apache Superset Patches Multi Security Flaws in Latest Release

Ddos December 10, 2024

The Apache Software Foundation has announced the release of Apache Superset 4.1.0, an important update that addresses...

Schneider Electric Warns of Critical Flaw in Modicon Controllers – CVE-2024-11737 (CVSS 9.8) CVE-2024-8884 & CVE-2024-11737 Schneider Electric, Critical Vulnerabilities

CVE-2024-8884 & CVE-2024-11737 Schneider Electric, Critical Vulnerabilities

Schneider Electric Warns of Critical Flaw in Modicon Controllers – CVE-2024-11737 (CVSS 9.8)

Ddos December 10, 2024

Schneider Electric has issued a security notification warning of a critical vulnerability affecting its Modicon M241, M251,...

Microsoft Addresses Critical Zero-Day CVE-2024-49138 & 72 Additional Flaws in December Patch Tuesday Driver Cleanup CVE-2024-49138 - December Patch Tuesday Windows update errors, Windows update troubleshooting

Driver Cleanup CVE-2024-49138 - December Patch Tuesday Windows update errors, Windows update troubleshooting

Microsoft Addresses Critical Zero-Day CVE-2024-49138 & 72 Additional Flaws in December Patch Tuesday

Ddos December 10, 2024

Microsoft has released its December 2024 Patch Tuesday security update, addressing a total of 73 vulnerabilities across...

Google Chrome Patches High-Severity Vulnerabilities – CVE-2024-12381 & CVE-2024-12382

Ddos December 10, 2024

Google has announced its Chrome browser’s latest stable channel update, addressing several security vulnerabilities, including two classified...

CVE-2024-47578 (CVSS 9.1): SAP Issues Critical Patch for NetWeaver AS for JAVA SAP Security Patches CVE-2026-27685 SAP Security Update CVE-2026-0488 CVE-2024-47578 - CVE-2025-0070 and CVE-2025-0066

SAP Security Patches CVE-2026-27685 SAP Security Update CVE-2026-0488 CVE-2024-47578 - CVE-2025-0070 and CVE-2025-0066

CVE-2024-47578 (CVSS 9.1): SAP Issues Critical Patch for NetWeaver AS for JAVA

Ddos December 10, 2024

SAP’s latest Security Patch Day, released today, detailed 10 new Security Notes alongside updates to three previously...

CVE-2024-50623: Critical Vulnerability in Cleo Software Actively Exploited in the Wild PAN-OS Root RCE CL-STA-1132 Exploitation Tianxin RCE CVE-2021-4473 React Native Supply Chain Attack AstrOOnauta Malware Gladinet Zero-Day, LFI RCE Chain WordPress Theme, Account Takeover CVE-2024-50623 - European Space Agency cyberattack

PAN-OS Root RCE CL-STA-1132 Exploitation Tianxin RCE CVE-2021-4473 React Native Supply Chain Attack AstrOOnauta Malware Gladinet Zero-Day, LFI RCE Chain WordPress Theme, Account Takeover CVE-2024-50623 - European Space Agency cyberattack

CVE-2024-50623: Critical Vulnerability in Cleo Software Actively Exploited in the Wild

Ddos December 10, 2024

Huntress Labs has raised the alarm over the active exploitation of a critical vulnerability (CVE-2024-50623) in Cleo’s...

CVE-2024-54143: Critical Vulnerability in OpenWrt’s Attended SysUpgrade Server Allows for Firmware Poisoning SysUpgrade Server - CVE-2024-54143

CVE-2024-54143: Critical Vulnerability in OpenWrt’s Attended SysUpgrade Server Allows for Firmware Poisoning

Ddos December 9, 2024

OpenWrt, a popular open-source operating system for embedded devices, has disclosed a critical vulnerability (CVE-2024-54143) that could...

CVE-2024-11205: WPForms Plugin Vulnerability Impacts 6 Million WordPress Sites

Ddos December 9, 2024

A critical vulnerability (CVE-2024-11205) discovered in WPForms, a prevalent WordPress form builder plugin with over 6 million...

CVE-2024-12254: CPython Flaw Could Lead to Memory Exhaustion in asyncio Applications Python Security Memory Safety PLY Vulnerability CVE-2025-56005 Python Software Foundation, NSF DEI CVE-2024-12254

Python Security Memory Safety PLY Vulnerability CVE-2025-56005 Python Software Foundation, NSF DEI CVE-2024-12254

CVE-2024-12254: CPython Flaw Could Lead to Memory Exhaustion in asyncio Applications

Ddos December 9, 2024

A high-severity vulnerability (CVE-2024-12254) has been discovered in CPython, the reference implementation of the Python programming language....

CVE-2024-55579 & CVE-2024-55580: Qlik Sense Users Face Serious Security Risk

Ddos December 8, 2024

Qlik, a leading provider of business intelligence and data analytics platforms, has disclosed two vulnerabilities affecting Qlik...

CVE-2024-55563: Transaction-Relay Jamming Vulnerability Poses Threat to Bitcoin Lightning Network CVE-2024-55563 - transaction-relay jamming attack

CVE-2024-55563 - transaction-relay jamming attack

CVE-2024-55563: Transaction-Relay Jamming Vulnerability Poses Threat to Bitcoin Lightning Network

Ddos December 8, 2024

A recently disclosed vulnerability, identified as CVE-2024-55563, has revealed a critical security risk within the Bitcoin network’s...

Windows Zero-Day Vulnerability CVE-2024-38193 Exploited in the Wild: PoC Published

Ddos December 8, 2024

A critical use-after-free vulnerability, identified as CVE-2024-38193, has been discovered in the afd.sys Windows driver. This vulnerability,...

Mauri Ransomware Exploits Apache ActiveMQ Flaw (CVE-2023-46604)

Ddos December 8, 2024

The AhnLab Security Intelligence Response Center (ASEC) has revealed that threat actors exploiting a critical vulnerability in...

QNAP Addresses High Severity Vulnerabilities in License Center and Operating Systems QNAP Zero-Day, Pwn2Own Exploit CVE-2024-21899 - QNAP QTS vulnerability

QNAP Zero-Day, Pwn2Own Exploit CVE-2024-21899 - QNAP QTS vulnerability

QNAP Addresses High Severity Vulnerabilities in License Center and Operating Systems

Ddos December 8, 2024

QNAP, a leading provider of network-attached storage (NAS) solutions, has issued a security advisory addressing multiple vulnerabilities...

Made by Google, Pixel 10 Pixel 10, Qi2 Baseband Security - CVE-2024-39343 Google Tensor TSMC Pixel 10 processor

Google Fixes Critical RCE Vulnerabilities in December 2024 Pixel Security Update

Ddos December 8, 2024

Google has rolled out its December 2024 security update for Pixel devices, addressing a total of 28...

Urgent Action Needed: ABB ASPECT Vulnerabilities Expose Buildings to Cyberattacks

Ddos December 8, 2024

ABB has issued a critical cyber security advisory for its ASPECT system, a building energy management platform....

CVE-2024-12209 (CVSS 9.8): WP Umbrella Plugin Vulnerability Exposes 30,000 Websites to Compromise CVE-2024-12209 - WP Umbrella

CVE-2024-12209 (CVSS 9.8): WP Umbrella Plugin Vulnerability Exposes 30,000 Websites to Compromise

Ddos December 7, 2024

A critical security vulnerability has been discovered in the popular WordPress plugin, WP Umbrella, which is used...

Unpatched Zero-Day Vulnerability in Mitel MiCollab Exposes Businesses to Serious Security Risks Zyxel security - Mitel MiCollab Vulnerability

Zyxel security - Mitel MiCollab Vulnerability

Unpatched Zero-Day Vulnerability in Mitel MiCollab Exposes Businesses to Serious Security Risks

Ddos December 6, 2024

A newly disclosed zero-day vulnerability in the Mitel MiCollab collaboration platform has raised serious concerns regarding the...

Critical Alert 1 Active Exploit Detected Today