Vulnerability Archives • Page 62 of 190 • Daily CyberSecurity

CVE-2024-10571 (CVSS 9.8): Critical Flaw in WordPress Chart Plugin Under Active Attack

Ddos November 14, 2024

Administrator websites are facing a new threat as attackers actively exploit a critical vulnerability in the popular...

Right-Click to Hack: Zero-Day CVE-2024-43451 Vulnerability Targets Windows Users

Ddos November 13, 2024

ClearSky Cyber Security has uncovered a new zero-day vulnerability, CVE-2024-43451, actively exploited in the wild, targeting Windows...

2023’s Most Exploited Vulnerabilities: A Global Cybersecurity Advisory Fortinet patch bypass 2026, FortiGate SSO authentication exploit SharePoint Zero-Day, China APTs Exploited Vulnerabilities 2023

Fortinet patch bypass 2026, FortiGate SSO authentication exploit SharePoint Zero-Day, China APTs Exploited Vulnerabilities 2023

2023’s Most Exploited Vulnerabilities: A Global Cybersecurity Advisory

Ddos November 13, 2024

In a joint cybersecurity advisory, the top cybersecurity agencies from the United States, Australia, Canada, New Zealand,...

CVE-2024-9693: GitLab Issues Critical Patch for Kubernetes Agent GitLab security updates Duo AI flaw fixed GitLab Runner Hijack, DoS Fix GitLab GraphQL Flaws, CVE-2025-11340 CVE-2024-9693 GitLab vulnerability, XSS

GitLab security updates Duo AI flaw fixed GitLab Runner Hijack, DoS Fix GitLab GraphQL Flaws, CVE-2025-11340 CVE-2024-9693 GitLab vulnerability, XSS

CVE-2024-9693: GitLab Issues Critical Patch for Kubernetes Agent

Ddos November 13, 2024

GitLab has released a critical security update addressing a high-severity vulnerability that could grant unauthorized access to...

ModeLeak Flaw: Researcher Uncovers Privilege Escalation & Model Exfiltration Threats in Google Vertex AI ModeLeak - Google Vertex AI

ModeLeak Flaw: Researcher Uncovers Privilege Escalation & Model Exfiltration Threats in Google Vertex AI

Ddos November 13, 2024

In a recent report, Palo Alto Networks researchers disclosed two critical vulnerabilities within Google’s Vertex AI platform...

CVE-2024-10914: Critical Flaw in D-Link NAS Devices Actively Exploited, No Patch! CVE-2024-10914 exploit

CVE-2024-10914: Critical Flaw in D-Link NAS Devices Actively Exploited, No Patch!

Ddos November 13, 2024

A critical command injection vulnerability (CVE-2024-10914) impacting numerous end-of-life D-Link network-attached storage (NAS) devices is currently under...

Chrome 131 Rolls Out with Security Fixes and Performance Enhancements Chrome 131 - CVE-2024-11110

Chrome 131 Rolls Out with Security Fixes and Performance Enhancements

Ddos November 13, 2024

Google has released Chrome version 131, addressing a range of security vulnerabilities, including one classified as “high...

CISA Adds Five Actively Exploited Vulnerabilities to KEV Catalog CISA KEV Update Versa Concerto Vulnerability KEV Catalog Vulnerability Patch CVE-2025-30406

CISA KEV Update Versa Concerto Vulnerability KEV Catalog Vulnerability Patch CVE-2025-30406

CISA Adds Five Actively Exploited Vulnerabilities to KEV Catalog

Ddos November 12, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) catalog, highlighting...

Ivanti Connect Secure, Policy Secure and Secure Access Client Affected by Critical Vulnerabilities

Ddos November 12, 2024

Ivanti has released urgent security updates to address a range of vulnerabilities, including critical remote code execution...

CVE-2024-10575 (CVSS 10): Critical Flaw in Schneider Electric’s EcoStruxure IT Gateway CVE-2024-10575 CVE-2025-1960 Schneider Electric Vulnerability CVE-2026-0667

CVE-2024-10575 CVE-2025-1960 Schneider Electric Vulnerability CVE-2026-0667

CVE-2024-10575 (CVSS 10): Critical Flaw in Schneider Electric’s EcoStruxure IT Gateway

Ddos November 12, 2024

Schneider Electric has published a security notification about a critical vulnerability in its EcoStruxure™ IT Gateway platform,...

Apache CloudStack Releases Security Update for KVM Infrastructure Vulnerability – CVE-2024-50386 CVE-2024-50386 Apache CloudStack, Critical Vulnerabilities

CVE-2024-50386 Apache CloudStack, Critical Vulnerabilities

Apache CloudStack Releases Security Update for KVM Infrastructure Vulnerability – CVE-2024-50386

Ddos November 12, 2024

The Apache CloudStack project has issued an important security advisory alongside the release of Long-Term Support (LTS)...

Zoom Issues Security Update Addressing Vulnerabilities in Workplace and SDK Apps Zoom Node Vulnerability CVE-2026-22844 CVE-2024-45421 & CVE-2024-45419 CVE-2025-27440

Zoom Node Vulnerability CVE-2026-22844 CVE-2024-45421 & CVE-2024-45419 CVE-2025-27440

Zoom Issues Security Update Addressing Vulnerabilities in Workplace and SDK Apps

Ddos November 12, 2024

Zoom Video Communications has issued a security bulletin addressing multiple vulnerabilities affecting its Workplace Apps, SDKs, and...

New Critical Vulnerabilities in Kanboard Project Management Software: Admins Urged to Patch CVE-2024-51747 & CVE-2024-51748

New Critical Vulnerabilities in Kanboard Project Management Software: Admins Urged to Patch

Ddos November 12, 2024

Two severe vulnerabilities have been discovered in Kanboard, a project management software that adheres to the Kanban...

Microsoft Addresses Critical Zero-Day Vulnerabilities in November Patch Tuesday Microsoft Patch Tuesday May 2026 Netlogon RCE CVE-2026-41089 SharePoint Exploit Patch Tuesday Windows DWM Zero-Day CVE-2026-21519 CVE-2024-49039 Microsoft Patch Tuesday March 2025

Microsoft Patch Tuesday May 2026 Netlogon RCE CVE-2026-41089 SharePoint Exploit Patch Tuesday Windows DWM Zero-Day CVE-2026-21519 CVE-2024-49039 Microsoft Patch Tuesday March 2025

Microsoft Addresses Critical Zero-Day Vulnerabilities in November Patch Tuesday

Ddos November 12, 2024

Microsoft’s November 2024 Patch Tuesday addresses 92 vulnerabilities, including four critical and 83 deemed “important.” Notably, this...

Dell SmartFabric OS10 Receives Important Security Updates Dell DD OS Vulnerability, Authentication Bypass Dell SmartFabric OS10 Vulnerabilities

Dell SmartFabric OS10 Receives Important Security Updates

Ddos November 12, 2024

Dell Networking has released security updates for its SmartFabric OS10 operating system to address multiple vulnerabilities that...

CVE-2024-50330 (CVSS 9.8): Unpatched Ivanti Endpoint Manager Vulnerable to RCE Attacks Ivanti Xtraction vulnerability CVE-2026-8043 Ivanti EPM RCE, SQL Injection Ivanti EPM, remote code execution CVE-2024-50330 - CVE-2025-0282 and CVE-2025-0283

Ivanti Xtraction vulnerability CVE-2026-8043 Ivanti EPM RCE, SQL Injection Ivanti EPM, remote code execution CVE-2024-50330 - CVE-2025-0282 and CVE-2025-0283

CVE-2024-50330 (CVSS 9.8): Unpatched Ivanti Endpoint Manager Vulnerable to RCE Attacks

Ddos November 12, 2024

Software company Ivanti has released urgent security updates for its Endpoint Manager to address a range of...

CVE-2024-8068 & CVE-2024-8069: Citrix Session Recording Manager Unauthenticated RCE Exploits Publicly Available

Ddos November 12, 2024

Security researchers at watchTowr have uncovered two critical vulnerabilities in Citrix Session Recording Manager that, when chained...

Citrix NetScaler ADC and Gateway Vulnerabilities Put Organizations at Risk NetScaler Vulnerability CVE-2026-3055 Citrix VDA, Privilege Escalation NetScaler Vulnerabilities, Access Bypass CVE-2024-8534 and CVE-2024-8535

NetScaler Vulnerability CVE-2026-3055 Citrix VDA, Privilege Escalation NetScaler Vulnerabilities, Access Bypass CVE-2024-8534 and CVE-2024-8535

Citrix NetScaler ADC and Gateway Vulnerabilities Put Organizations at Risk

Ddos November 12, 2024

Citrix has issued a security bulletin warning of two vulnerabilities affecting NetScaler ADC and NetScaler Gateway, products...

CVE-2024-44102 (CVSS 10) Found in Siemens TeleControl Server Basic: Urgent Update Required Siemens SIMATIC S7 Vulnerability Industrial PLC XSS CVE-2024-44102 - Siemens TeleControl Server Basic

Siemens SIMATIC S7 Vulnerability Industrial PLC XSS CVE-2024-44102 - Siemens TeleControl Server Basic

CVE-2024-44102 (CVSS 10) Found in Siemens TeleControl Server Basic: Urgent Update Required

Ddos November 12, 2024

A critical security vulnerability has been discovered in Siemens TeleControl Server Basic V3.1, a software solution used...

Schneider Electric Warns of Multiple Vulnerabilities in Modicon Controllers CVE-2024-8937 & CVE-2024-8938

Schneider Electric Warns of Multiple Vulnerabilities in Modicon Controllers

Ddos November 12, 2024

Schneider Electric has issued a security notification regarding critical vulnerabilities in its Modicon M340, Momentum, and MC80...

Critical Alert 1 Active Exploit Detected Today