Vulnerability Archives • Page 56 of 190 • Daily CyberSecurity

Mauri Ransomware Exploits Apache ActiveMQ Flaw (CVE-2023-46604)

Do Son December 8, 2024

The AhnLab Security Intelligence Response Center (ASEC) has revealed that threat actors exploiting a critical vulnerability in...

QNAP Addresses High Severity Vulnerabilities in License Center and Operating Systems QNAP Zero-Day, Pwn2Own Exploit CVE-2024-21899 - QNAP QTS vulnerability

QNAP Zero-Day, Pwn2Own Exploit CVE-2024-21899 - QNAP QTS vulnerability

QNAP Addresses High Severity Vulnerabilities in License Center and Operating Systems

Do Son December 8, 2024

QNAP, a leading provider of network-attached storage (NAS) solutions, has issued a security advisory addressing multiple vulnerabilities...

Made by Google, Pixel 10 Pixel 10, Qi2 Baseband Security - CVE-2024-39343 Google Tensor TSMC Pixel 10 processor

Google Fixes Critical RCE Vulnerabilities in December 2024 Pixel Security Update

Do Son December 8, 2024

Google has rolled out its December 2024 security update for Pixel devices, addressing a total of 28...

Urgent Action Needed: ABB ASPECT Vulnerabilities Expose Buildings to Cyberattacks

Do Son December 8, 2024

ABB has issued a critical cyber security advisory for its ASPECT system, a building energy management platform....

CVE-2024-12209 (CVSS 9.8): WP Umbrella Plugin Vulnerability Exposes 30,000 Websites to Compromise CVE-2024-12209 - WP Umbrella

CVE-2024-12209 (CVSS 9.8): WP Umbrella Plugin Vulnerability Exposes 30,000 Websites to Compromise

Do Son December 7, 2024

A critical security vulnerability has been discovered in the popular WordPress plugin, WP Umbrella, which is used...

Unpatched Zero-Day Vulnerability in Mitel MiCollab Exposes Businesses to Serious Security Risks Zyxel security - Mitel MiCollab Vulnerability

Zyxel security - Mitel MiCollab Vulnerability

Unpatched Zero-Day Vulnerability in Mitel MiCollab Exposes Businesses to Serious Security Risks

Do Son December 6, 2024

A newly disclosed zero-day vulnerability in the Mitel MiCollab collaboration platform has raised serious concerns regarding the...

Critical Zero-Day Vulnerability in Windows Exposes User Credentials

Do Son December 5, 2024

A newly discovered zero-day vulnerability affecting all supported and legacy versions of Microsoft Windows allows attackers to...

Django Releases Patches for CVE-2024-53907 and CVE-2024-53908 to Mitigate DoS and SQLi Threats CVE-2024-53908 & CVE-2024-53907

Django Releases Patches for CVE-2024-53907 and CVE-2024-53908 to Mitigate DoS and SQLi Threats

Do Son December 5, 2024

The Django team has recently announced the release of Django 5.1.4, Django 5.0.10, and Django 4.2.17 to...

Browser Isolation Bypassed: QR Codes Used in Novel C2 Attacks QR-Code

Browser Isolation Bypassed: QR Codes Used in Novel C2 Attacks

Do Son December 5, 2024

Browser isolation technology, often lauded as a cornerstone of modern cybersecurity, is not impervious to creative exploitation....

CVE-2024-43222 (CVSS 9.8): Critical Flaw in Sweet Date WordPress Theme Exposes Thousands of Sites to Potential Takeovers

Do Son December 5, 2024

A critical vulnerability (CVE-2024-43222) has been identified in the Sweet Date WordPress theme, a popular premium theme...

Multiple Vulnerabilities in SonicWall SMA 100 Could Lead to Remote Code Execution SonicWall ES RCE, Code Integrity Bypass SonicWall SMA, Arbitrary File Upload SonicWall SMA100 - CVE-2024-40764

SonicWall ES RCE, Code Integrity Bypass SonicWall SMA, Arbitrary File Upload SonicWall SMA100 - CVE-2024-40764

Multiple Vulnerabilities in SonicWall SMA 100 Could Lead to Remote Code Execution

Do Son December 5, 2024

SonicWall has issued a security advisory regarding several vulnerabilities impacting its SMA 100 series SSL-VPN products. These...

CVE-2024-53990 (CVSS 9.2): AsyncHttpClient Vulnerability Puts Java Applications at Risk

Do Son December 5, 2024

A critical severity vulnerability (CVE-2024-53990) has been discovered in the AsyncHttpClient (AHC) library, a popular Java library...

Veeam Backup & Replication Vulnerabilities Exposed: High-Severity Flaws Put Data at Risk Veeam Backup vulnerability remote code execution Veeam Backup vulnerability Veeam Vulnerabilities CVE-2024-42448 & CVE-2024-42449

Veeam Backup vulnerability remote code execution Veeam Backup vulnerability Veeam Vulnerabilities CVE-2024-42448 & CVE-2024-42449

Veeam Backup & Replication Vulnerabilities Exposed: High-Severity Flaws Put Data at Risk

Do Son December 4, 2024

Veeam Software, a prominent provider of backup, recovery, and data management solutions, has released a security update...

Five Flaws in Lorex 2K Security Cameras Enable Hackers to Take Full Control, PoC Published Lorex 2K Indoor Wi-Fi Security Camera - CVE-2024-52544

Five Flaws in Lorex 2K Security Cameras Enable Hackers to Take Full Control, PoC Published

Do Son December 4, 2024

Rapid7’s latest research reveals a series of critical vulnerabilities in the Lorex 2K Indoor Wi-Fi Security Camera,...

CVE-2024-10905 (CVSS 10): Critical Vulnerability in SailPoint IdentityIQ Exposes Sensitive Data

Do Son December 4, 2024

A critical vulnerability has been discovered in SailPoint IdentityIQ, a widely used identity and access management (IAM)...

CVE-2024-51378 (CVSS 10): Critical CyberPanel Flaw Under Active Attack, CISA Warns CVE-2024-51378 vulnerability

CVE-2024-51378 (CVSS 10): Critical CyberPanel Flaw Under Active Attack, CISA Warns

Do Son December 4, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has warned about a critical vulnerability in CyberPanel, an open-source...

Exploit Code Available: Critical Flaw Found in WhatsUp Gold- CVE-2024-8785 (CVSS 9.8) Sitefinity critical vulnerabilities Sitefinity security update CVE-2024-7763 - CVE-2024-8785 exploit CVE-2025-1758

Sitefinity critical vulnerabilities Sitefinity security update CVE-2024-7763 - CVE-2024-8785 exploit CVE-2025-1758

Exploit Code Available: Critical Flaw Found in WhatsUp Gold- CVE-2024-8785 (CVSS 9.8)

Do Son December 4, 2024

Tenable’s latest vulnerability analysis has exposed a critical flaw, CVE-2024-8785, in WhatsUp Gold versions prior to 24.0.1....

Cisco SD-WAN Vulnerability CVE-2026-20133 FortiGate Compromise Ivanti EPMM Zero-Day CVE-2026-1281 SmarterMail Vulnerability Storm-2603 WatchGuard Zero-Day, IKEv2 Out-of-Bounds Write Cisco Zero-Day, UAT-9686 Chinese APT FortiWeb RCE Exploitation CVE-2025-58034 VMware Zero-Day, Privilege Escalation Sitecore, remote code execution CVE-2025-53690 Windows CLFS, Privilege Escalation CVE-2024-47575 & CVE-2024-11120 CVE-2025-24983 vulnerability

I-O DATA Routers Under Attack: Urgent Firmware Update Needed!

Do Son December 3, 2024

Multiple vulnerabilities have been discovered in I-O DATA routers UD-LT1 and UD-LT1/EX, and active exploitation is already...

PoC Exploit Releases for Critical Zabbix Vulnerability – CVE-2024-42327 (CVSS 9.9) Screenshot 2024-12-03 172203

PoC Exploit Releases for Critical Zabbix Vulnerability – CVE-2024-42327 (CVSS 9.9)

Do Son December 3, 2024

Security researcher Alejandro Ramos has published a detailed technical analysis and proof-of-concept (PoC) exploit code for CVE-2024-42327,...

CVE-2024-42448 (CVSS 9.9): Critical RCE Vulnerability in Veeam VSPC Veeam Backup vulnerability remote code execution Veeam Backup vulnerability Veeam Vulnerabilities CVE-2024-42448 & CVE-2024-42449

CVE-2024-42448 (CVSS 9.9): Critical RCE Vulnerability in Veeam VSPC

Do Son December 3, 2024

Veeam Software, a prominent provider of backup and disaster recovery solutions, has released urgent security updates to...

Critical Alert 2 Active Exploits Detected Today