Vulnerability Archives • Page 60 of 190 • Daily CyberSecurity

Veritas Enterprise Vault Vulnerability Could Allow Remote Code Execution Veritas Enterprise Vault server CVE-2025-27816

Veritas Enterprise Vault Vulnerability Could Allow Remote Code Execution

Ddos November 20, 2024

Veritas has released a security advisory regarding a critical remote code execution (RCE) vulnerability affecting multiple versions...

Ruckus Networks Issues Security Advisory for Critical RCE Vulnerability in Access Points libheif Vulnerability CVE-2025-65586 Trend Micro RCE CVE-2025-69258 SessionReaper CVE-2025-54236 VS Code Marketplace, supply chain attack npm Supply Chain, Toptal Compromise Ruckus AP Vulnerability

libheif Vulnerability CVE-2025-65586 Trend Micro RCE CVE-2025-69258 SessionReaper CVE-2025-54236 VS Code Marketplace, supply chain attack npm Supply Chain, Toptal Compromise Ruckus AP Vulnerability

Ruckus Networks Issues Security Advisory for Critical RCE Vulnerability in Access Points

Ddos November 20, 2024

Ruckus APs running specific software versions are vulnerable to unauthenticated remote code execution attacks. Ruckus Networks has...

Critical Vulnerability in D-Link EOL Routers Allows Remote Code Execution D-Link Vulnerability - End-of-Life Routers

Critical Vulnerability in D-Link EOL Routers Allows Remote Code Execution

Ddos November 20, 2024

D-Link has issued a security announcement concerning several End-of-Life (EOL) and End-of-Service (EOS) router models, including the...

Five Critical Privilege Escalation Vulnerabilities Found in Ubuntu’s Default Utility, needrestart CVE-2024-48990 and CVE-2024-48922

Five Critical Privilege Escalation Vulnerabilities Found in Ubuntu’s Default Utility, needrestart

Ddos November 20, 2024

Qualys Threat Research Unit uncovers five local privilege escalation flaws, enabling unprivileged users to gain root access....

CVE-2024-51503: Trend Micro Deep Security Agent RCE Vulnerability Fixed Trend Micro Apex One CVE-2025-71210 AI Security Trend Micro Deep Security - CVE-2024-48904 & CVE-2024-51503

Trend Micro Apex One CVE-2025-71210 AI Security Trend Micro Deep Security - CVE-2024-48904 & CVE-2024-51503

CVE-2024-51503: Trend Micro Deep Security Agent RCE Vulnerability Fixed

Ddos November 20, 2024

A recently discovered vulnerability in the Trend Micro Deep Security 20 Agent could have allowed attackers to...

Analysis & PoC Exploits Released for Palo Alto Zero-Days – CVE-2024-0012 and CVE-2024-9474

Ddos November 19, 2024

In a recent analysis, security researcher Sonny from watchTowr unveiled the technical intricacies of two zero-day vulnerabilities...

CVE-2024-21697: High Severity Flaw in Sourcetree Enables Remote Code Execution Sourcetree - CVE-2024-21697

CVE-2024-21697: High Severity Flaw in Sourcetree Enables Remote Code Execution

Ddos November 19, 2024

Atlassian has issued a security advisory warning of a critical remote code execution (RCE) vulnerability in its...

Google Chrome Patches High-Severity Flaw CVE-2024-11395 in Latest Stable Release

Ddos November 19, 2024

Google has released a new stable version of its Chrome browser for desktop, addressing three security vulnerabilities,...

CVE-2024-21287: Critical Zero-Day Exploited in Oracle Agile PLM Oracle Agile PLM - CVE-2024-21287

CVE-2024-21287: Critical Zero-Day Exploited in Oracle Agile PLM

Ddos November 19, 2024

Oracle has issued an urgent security alert regarding a critical vulnerability in its Agile Product Lifecycle Management...

CVE-2024-47533 (CVSS 9.8): Cobbler Vulnerability Exposes Linux Servers to Compromise

Ddos November 19, 2024

CVE-2024-47533 exposes Cobbler servers to unauthorized access and control, enabling attackers to manipulate system configurations. A critical...

CVE-2024-42057: Exploited by Helldown Ransomware to Target Linux Helldown ransomware Linux

CVE-2024-42057: Exploited by Helldown Ransomware to Target Linux

Ddos November 19, 2024

Sekoia’s Threat Detection & Research (TDR) team uncovers a Linux variant of the Helldown ransomware, expanding the...

Wget Vulnerability (CVE-2024-10524) Opens Door to SSRF Attacks

Ddos November 19, 2024

A newly discovered vulnerability in the popular Wget download utility could allow attackers to launch server-side request...

CVE-2024-47208 & CVE-2024-48962: Apache OFBiz Exposed to Remote Code Execution Apache OFBiz RCE, Unrestricted File Upload CVE-2024-47208 and CVE-2024-48962

CVE-2024-47208 & CVE-2024-48962: Apache OFBiz Exposed to Remote Code Execution

Ddos November 19, 2024

The Apache Software Foundation has released important security updates to address two critical vulnerabilities in Apache OFBiz,...

CVE-2024-44308 and CVE-2024-44309: Apple Addresses Zero-Day Vulnerabilities DarkSword exploit kit iOS 18.7.7 security update CVE-2024-44308 & CVE-2024-44309 Apple appeal, Epic Games lawsuit

DarkSword exploit kit iOS 18.7.7 security update CVE-2024-44308 & CVE-2024-44309 Apple appeal, Epic Games lawsuit

CVE-2024-44308 and CVE-2024-44309: Apple Addresses Zero-Day Vulnerabilities

Ddos November 19, 2024

Apple users are urged to update their devices immediately following the discovery of two critical zero-day vulnerabilities...

CISA Warns of Actively Exploited Vulnerabilities in Kemp LoadMaster and Palo Alto Networks PAN-OS State-Sponsored Exploitation CISA KEV Catalog F5 BIG-IP RCE CISA KEV Catalog SolarWinds WHD Exploit CVE-2025-40551 Zimbra XSS Zero-Day CVE-2025-27915 Exploited Windows Security Vulnerabilities

State-Sponsored Exploitation CISA KEV Catalog F5 BIG-IP RCE CISA KEV Catalog SolarWinds WHD Exploit CVE-2025-40551 Zimbra XSS Zero-Day CVE-2025-27915 Exploited Windows Security Vulnerabilities

CISA Warns of Actively Exploited Vulnerabilities in Kemp LoadMaster and Palo Alto Networks PAN-OS

Ddos November 19, 2024

Critical flaws in widely-used networking and security products demand immediate attention from administrators. The Cybersecurity and Infrastructure...

From CVE to PoC: A Collection Maps Windows Privilege Escalation Landscape Windows Privilege Escalation Vulnerabilities

From CVE to PoC: A Collection Maps Windows Privilege Escalation Landscape

Ddos November 18, 2024

Security researcher Michael Zhmaylo has assembled a comprehensive collection of publicly disclosed exploits for Local Privilege Escalation...

CVE-2024-52308: GitHub CLI Vulnerability Could Allow Remote Code Execution

Ddos November 18, 2024

A critical security vulnerability (CVE-2024-52308) in the GitHub Command Line Interface (CLI) has been identified, potentially enabling...

LibreNMS Vulnerability (CVE-2024-51092): Mitigating the Risk of Server Compromise CVE-2024-51092 - LibreNMS

LibreNMS Vulnerability (CVE-2024-51092): Mitigating the Risk of Server Compromise

Ddos November 18, 2024

A recent security advisory from the LibreNMS project has revealed a severe vulnerability (CVE-2024-51092) affecting versions up...

Actively Exploited VMware Vulnerabilities (CVE-2024-38812 & CVE-2024-38813) Threaten Virtualized Infrastructure

Ddos November 18, 2024

Broadcom has updated an urgent security advisory following confirmation of in-the-wild exploitation of two critical vulnerabilities affecting...

Trio of Apache Tomcat Flaws Disclosed: Authentication Bypass, HTTP/2 Request Mix-Up, and XSS Flaw CVE-2023-45648 Apache Tomcat Security Encryption Bypass

CVE-2023-45648 Apache Tomcat Security Encryption Bypass

Trio of Apache Tomcat Flaws Disclosed: Authentication Bypass, HTTP/2 Request Mix-Up, and XSS Flaw

Ddos November 18, 2024

The Apache Software Foundation has recently disclosed three new vulnerabilities affecting Apache Tomcat, a widely-used open-source web...

Critical Alert 1 Active Exploit Detected Today