Vulnerability Archives • Page 57 of 190 • Daily CyberSecurity

Zero-Day Exploit Code Released for Windows Task Scheduler Flaw (CVE-2024-49039), Actively Exploited by RomCom Group CVE-2024-49039 PoC exploit

Zero-Day Exploit Code Released for Windows Task Scheduler Flaw (CVE-2024-49039), Actively Exploited by RomCom Group

Ddos December 2, 2024

A proof-of-concept (PoC) exploit code for CVE-2024-49039, a zero-day vulnerability in Windows Task Scheduler, has been publicly...

CVE-2024-48651: ProFTPD Vulnerability Grants Root Access to Attackers Artivion cybersecurity - Zero-Day Attacks

CVE-2024-48651: ProFTPD Vulnerability Grants Root Access to Attackers

Ddos December 2, 2024

Popular FTP server ProFTPD has been found to contain a critical security flaw that could allow attackers...

New Report Reveals SmokeLoader’s Advanced Tactics in Taiwan Campaign SmokeLoader malware

New Report Reveals SmokeLoader’s Advanced Tactics in Taiwan Campaign

Ddos December 2, 2024

A recent report by FortiGuard Labs has highlighted a targeted cyberattack involving the infamous SmokeLoader malware. This...

MediaTek Patches High-Severity Vulnerability in Smartphone Chipsets (CVE-2024-20125)

Ddos December 1, 2024

MediaTek has released its latest Product Security Bulletin, addressing a high-severity vulnerability that could lead to unauthorized...

Windows Server 2012 Users Beware: 0day Vulnerability Bypasses Mark of the Web Security Windows Server 2025 Accidental Upgrade Windows Server 2008 final support 2026, Premium Assurance expiration Windows Server, update bug Windows Server PPTP Vulnerability KB5051987 Hotpatching

Windows Server 2012 Users Beware: 0day Vulnerability Bypasses Mark of the Web Security

Ddos December 1, 2024

ACROS Security, the creators of 0patch micropatching technology, have uncovered a zero-day vulnerability affecting Windows Server 2012...

Critical Vulnerabilities Discovered in IBM Security Verify Access Appliance IBM CCA Vulnerability CVE-2025-13375 IBM Anthropic Partnership, AI Software Development watsonx Orchestrate, SQL injection CVE-2024-49803 - CVE-2024-41787 IBM Completes Acquisition HashiCorp

IBM CCA Vulnerability CVE-2025-13375 IBM Anthropic Partnership, AI Software Development watsonx Orchestrate, SQL injection CVE-2024-49803 - CVE-2024-41787 IBM Completes Acquisition HashiCorp

Critical Vulnerabilities Discovered in IBM Security Verify Access Appliance

Ddos December 1, 2024

Security researchers have disclosed multiple critical vulnerabilities affecting IBM Security Verify Access Appliance, a widely deployed solution...

Security Alert: Bootkitty Bootkit Targets Linux via UEFI Vulnerability (CVE-2023-40238) Bootkitty LogoFAIL

Security Alert: Bootkitty Bootkit Targets Linux via UEFI Vulnerability (CVE-2023-40238)

Ddos December 1, 2024

Security researchers from Binarly and ESET have uncovered “Bootkitty,” the first-ever UEFI bootkit designed to target Linux...

Hackers vs. LED Indicators: Why Tape Remains the Ultimate Camera Shield

Ddos December 1, 2024

A few years ago, a viral photo of Mark Zuckerberg’s laptop revealed a simple yet effective security...

Operation “Code on Toast”: A Deep Dive into TA-RedAnt’s Exploitation of Zero-Day Flaw (CVE-2024-38178)

Ddos December 1, 2024

North Korean-linked hacking group TA-RedAnt has been implicated in a sophisticated large-scale cyber attack dubbed “Operation Code...

Trellix Enterprise Security Manager Patches Critical Flaws, Including CVE-2024-11482 (CVSS 9.8) CVE-2024-11481 & CVE-2024-11482

Trellix Enterprise Security Manager Patches Critical Flaws, Including CVE-2024-11482 (CVSS 9.8)

Ddos December 1, 2024

Trellix has released an update to its Enterprise Security Manager (ESM) addressing two critical vulnerabilities that could...

CVE-2024-52336 & CVE-2024-52337: Vulnerabilities in Linux Tuned Daemon

Ddos December 1, 2024

The SUSE Security Team has uncovered two vulnerabilities in the Linux Tuned daemon, a critical tool for...

CVE-2024-11980 (CVSS 10): Critical Flaw in Billion Electric Routers

Ddos December 1, 2024

TWCERT/CC disclosed multiple vulnerabilities affecting several Billion Electric router models, including the M100, M150, M120N, and M500....

CVE-2024-8672 (CVSS 9.9): Critical Flaw in Widget Options Plugin Threatens 100,000+ Websites CVE-2024-8672 - Widget Options

CVE-2024-8672 (CVSS 9.9): Critical Flaw in Widget Options Plugin Threatens 100,000+ Websites

Ddos November 30, 2024

A critical security vulnerability (CVE-2024-8672) in the popular “Widget Options” plugin, which boasts over 100,000 active installations,...

Everon OCPP Vulnerability CVE-2026-26288 ASUSTOR ADM Vulnerability CVE-2026-24936 PrismX MX100 Vulnerability Hard-Coded Credentials Advantech Vulnerability CVE-2025-52694 Eaton UPS Companion, CVE-2025-59887 ASUS Router, Authentication Bypass ASUSTOR DLL Hijacking, Privilege Escalation OpenShift AI, Privilege Escalation GoAnywhere vulnerability CVE-2025-10035 LangChainGo, template injection DeepDiff, class pollution ToolShell Sunshine, CSRF Vulnerability KACE SMA, Critical Vulnerabilities Oracle Zero-Days - PDQ Deploy vulnerability

Over-the-Air Vulnerabilities in Advantech EKI Access Points Put Industrial Networks at Risk

Ddos November 30, 2024

Industrial environments are increasingly relying on wireless technologies to power critical operations. However, a recent report from...

CVE-2024-52338: Critical Security Flaw in Apache Arrow R Package Allows Arbitrary Code Execution

Ddos November 29, 2024

The Apache Software Foundation has addressed a critical security vulnerability (CVE-2024-52338) in the Apache Arrow R package....

CVE-2024-11667: Critical Vulnerability in Zyxel Firewalls Actively Exploited

Ddos November 28, 2024

CERT Germany (CERT-Bund) and Zyxel have warned of actively exploiting a critical vulnerability in Zyxel firewalls. This...

Zero-Day in Active Directory Certificate Services: Researcher Exposes CVE-2024-49019 with PoC CVE-2024-52335 HylaFAX, AvantFAX vulnerability

Zero-Day in Active Directory Certificate Services: Researcher Exposes CVE-2024-49019 with PoC

Ddos November 28, 2024

Security researchers from TrustedSec have uncovered a critical zero-day vulnerability, CVE-2024-49019, affecting Active Directory Certificate Services (AD...

Windows Secure Lock Screen Clock Lag Windows 11 KB5079391 error Windows 11 Kernel Driver Trust Microslop Windows 11 Windows 11 modem driver removal 2026, CVE-2025-24052 Agere driver exploit Windows 11 Password Icon Bug Lock Screen Glitch Windows 11 26H1 ARM Snapdragon X2 Windows 11 Reboot-Free, Insider Build Windows Update Error, 0x80070103 File Explorer, NTLM leak Windows bug, WinRE Windows Update, UAC prompts Secure Boot Certificate, Windows Security Windows 11 22H2 Installation security updates Windows UEFI CA 2023 Windows 11 25H2

Integer Overflow Vulnerability in Windows Driver Enables Privilege Escalation, PoC Published

Ddos November 28, 2024

An independent researcher has uncovered a critical vulnerability in the ksthunk.sys driver, a component of the Windows...

Contiki-NG IoT OS Patches Critical Vulnerabilities Contiki-NG - CVE-2024-41125 & CVE-2024-41126

Contiki-NG IoT OS Patches Critical Vulnerabilities

Ddos November 28, 2024

Researchers have identified and addressed three critical vulnerabilities in Contiki-NG, a popular open-source operating system for Internet...

CVE-2024-42330 (CVSS 9.1): Zabbix Patches Critical Remote Code Execution Vulnerability CVE-2024-42330 Zabbix Privilege Escalation CVE-2025-27237

CVE-2024-42330 (CVSS 9.1): Zabbix Patches Critical Remote Code Execution Vulnerability

Ddos November 28, 2024

Popular open-source monitoring tool Zabbix has released urgent security updates to address a critical vulnerability that could...

Critical Alert 1 Active Exploit Detected Today