Vulnerability Archives • Page 58 of 190 • Daily CyberSecurity

CVE-2024-52338: Critical Security Flaw in Apache Arrow R Package Allows Arbitrary Code Execution

Do Son November 29, 2024

The Apache Software Foundation has addressed a critical security vulnerability (CVE-2024-52338) in the Apache Arrow R package....

CVE-2024-11667: Critical Vulnerability in Zyxel Firewalls Actively Exploited

Do Son November 28, 2024

CERT Germany (CERT-Bund) and Zyxel have warned of actively exploiting a critical vulnerability in Zyxel firewalls. This...

Zero-Day in Active Directory Certificate Services: Researcher Exposes CVE-2024-49019 with PoC CVE-2024-52335 HylaFAX, AvantFAX vulnerability

Zero-Day in Active Directory Certificate Services: Researcher Exposes CVE-2024-49019 with PoC

Do Son November 28, 2024

Security researchers from TrustedSec have uncovered a critical zero-day vulnerability, CVE-2024-49019, affecting Active Directory Certificate Services (AD...

Windows Secure Lock Screen Clock Lag Windows 11 KB5079391 error Windows 11 Kernel Driver Trust Microslop Windows 11 Windows 11 modem driver removal 2026, CVE-2025-24052 Agere driver exploit Windows 11 Password Icon Bug Lock Screen Glitch Windows 11 26H1 ARM Snapdragon X2 Windows 11 Reboot-Free, Insider Build Windows Update Error, 0x80070103 File Explorer, NTLM leak Windows bug, WinRE Windows Update, UAC prompts Secure Boot Certificate, Windows Security Windows 11 22H2 Installation security updates Windows UEFI CA 2023 Windows 11 25H2

Integer Overflow Vulnerability in Windows Driver Enables Privilege Escalation, PoC Published

Do Son November 28, 2024

An independent researcher has uncovered a critical vulnerability in the ksthunk.sys driver, a component of the Windows...

Contiki-NG IoT OS Patches Critical Vulnerabilities Contiki-NG - CVE-2024-41125 & CVE-2024-41126

Contiki-NG IoT OS Patches Critical Vulnerabilities

Do Son November 28, 2024

Researchers have identified and addressed three critical vulnerabilities in Contiki-NG, a popular open-source operating system for Internet...

CVE-2024-42330 (CVSS 9.1): Zabbix Patches Critical Remote Code Execution Vulnerability CVE-2024-42330 Zabbix Privilege Escalation CVE-2025-27237

CVE-2024-42330 (CVSS 9.1): Zabbix Patches Critical Remote Code Execution Vulnerability

Do Son November 28, 2024

Popular open-source monitoring tool Zabbix has released urgent security updates to address a critical vulnerability that could...

CVE-2024-42327 (CVSS 9.9): Critical SQL Injection Vulnerability Found in Zabbix

Do Son November 27, 2024

Zabbix, a popular open-source IT infrastructure monitoring tool used by organizations worldwide, has been found to contain...

35 Million Devices Vulnerable: Matrix DDoS Campaign Highlights Growing IoT Threat

Do Son November 27, 2024

Aqua Nautilus researchers have uncovered a major Distributed Denial-of-Service (DDoS) campaign led by a threat actor operating...

Elpaco Ransomware: A New Threat Actor Leverages CVE-2020-1472 for Global Attacks NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

Elpaco Ransomware: A New Threat Actor Leverages CVE-2020-1472 for Global Attacks

Do Son November 27, 2024

Kaspersky Labs has unveiled a sophisticated new ransomware variant named Elpaco, which has emerged as an evolution...

HPE Insight Remote Support Hit with Critical Vulnerabilities, Urgent Patch Released CVE-2024-53676

HPE Insight Remote Support Hit with Critical Vulnerabilities, Urgent Patch Released

Do Son November 27, 2024

HPE has issued an urgent security bulletin addressing multiple critical vulnerabilities discovered in its Insight Remote Support...

Jenkins Users Beware: Multiple Security Vulnerabilities Discovered Jenkins RCE vulnerabilities Jenkins plugin security flaws CVE-2024-47855

Jenkins RCE vulnerabilities Jenkins plugin security flaws CVE-2024-47855

Jenkins Users Beware: Multiple Security Vulnerabilities Discovered

Do Son November 27, 2024

Jenkins, the widely-used open-source automation server, has issued a security advisory addressing multiple vulnerabilities impacting both its...

XorBot Botnet Resurfaces with Advanced Evasion and Exploits, Threatens IoT Devices

Do Son November 27, 2024

NSFOCUS has identified a resurgence of the XorBot botnet, a potent threat to Internet of Things (IoT)...

CVE-2024-11680 (CVSS 9.8): Critical ProjectSend Vulnerability Actively Exploited, PoC Published

Do Son November 27, 2024

A critical vulnerability in the open-source file-sharing web application ProjectSend, identified as CVE-2024-11680, is being actively exploited...

NVIDIA acquisition rumors NVIDIA AI Security AI Framework Vulnerabilities Nvidia 595.76 Hotfix NVIDIA Megatron Bridge vulnerability GPU vs ASIC AI battle NVIDIA Driver Vulnerability CVE-2025-33217 NVIDIA biggest TSMC customer 2026, NVIDIA vs Apple TSMC revenue share NVIDIA CUDA Toolkit CVE-2025-33228 Groq NVIDIA licensing deal, Jonathan Ross acquihire 2025 NeMo Code Injection, AI Framework RCE NVIDIA App Privilege Escalation, CVE-2025-23358 NVIDIA Security Update, DLS Vulnerability CVE-2025-23316 NVIDIA NVDebug, vulnerabilities NVIDIA Driver Vulnerabilities, vGPU Security Nvidia Jetson, UEFI Vulnerabilities CVE-2024-0130 - CVE-2024-0136 CVE-2024-0148 NVIDIA Driver Support, Windows 10 EOL

CVE-2024-0130: NVIDIA Patches High-Severity Vulnerability in UFM Products

Do Son November 26, 2024

NVIDIA has recently released a firmware update to address a high-severity vulnerability affecting its UFM Enterprise, UFM...

macOS Vulnerability (CVE-2023-32428) Grants Root Access, PoC Published CVE-2023-32428 exploit

macOS Vulnerability (CVE-2023-32428) Grants Root Access, PoC Published

Do Son November 26, 2024

Security researcher Gergely Kalman has detailed a high-severity vulnerability in Apple’s MallocStackLogging framework that could allow attackers...

Unpatched NTLM Flaws Leave Microsoft Systems Vulnerable NTLM Privilege Escalation

Unpatched NTLM Flaws Leave Microsoft Systems Vulnerable

Do Son November 26, 2024

Microsoft’s NTLM protocol has once again become the focus of serious cybersecurity concerns, according to a recent...

CVE-2024-8114: GitLab Vulnerability Allows Privilege Escalation GitLab Security Update CVE-2025-7659 CVE-2024-5655 GitLab Vulnerabilities, XSS & Data Exposure

GitLab Security Update CVE-2025-7659 CVE-2024-5655 GitLab Vulnerabilities, XSS & Data Exposure

CVE-2024-8114: GitLab Vulnerability Allows Privilege Escalation

Do Son November 26, 2024

GitLab has released critical security updates to address multiple vulnerabilities affecting its Community Edition (CE) and Enterprise...

VMware Aria Operations Hit By Multiple Vulnerabilities CVE-2022-31702 - VMware Aria Operations

VMware Aria Operations Hit By Multiple Vulnerabilities

Do Son November 26, 2024

VMware has recently issued patches to address multiple vulnerabilities affecting its Aria Operations product. The vulnerabilities, responsibly...

CVE-2024-21887 and More: How Earth Estries APT Group Exploits VPNs & Servers

Do Son November 26, 2024

In a detailed report from Trend Micro, the Chinese advanced persistent threat (APT) group Earth Estries, also...

CVE-2024-41779 (CVSS 9.8): IBM Rhapsody Model Manager Vulnerability Puts Systems at Risk CVE-2024-41779 - CVE-2025-0159 IBM HashiCorp Acquisition

CVE-2024-41779 (CVSS 9.8): IBM Rhapsody Model Manager Vulnerability Puts Systems at Risk

Do Son November 26, 2024

IBM has recently released a security bulletin addressing a critical vulnerability in IBM Engineering Systems Design Rhapsody...

Critical Alert 2 Active Exploits Detected Today