Vulnerability Archives • Page 66 of 190 • Daily CyberSecurity

0patch Uncovers and Patches New Windows Zero-Day Vulnerability, Microsoft Scrambles to Re-Fix Flaw Microsoft Windows Zero-Day

0patch Uncovers and Patches New Windows Zero-Day Vulnerability, Microsoft Scrambles to Re-Fix Flaw

Do Son October 29, 2024

Security researchers at 0patch have discovered a new zero-day vulnerability in Microsoft Windows, exposing users to potential...

Denial-of-Service Vulnerability Found in Squid Proxy Server (CVE-2024-45802) CVE-2024-45802 Squid Vulnerability, Remote Code Execution CVE-2025-54574

CVE-2024-45802 Squid Vulnerability, Remote Code Execution CVE-2025-54574

Denial-of-Service Vulnerability Found in Squid Proxy Server (CVE-2024-45802)

Do Son October 29, 2024

A recent security advisory from the SQUID project has highlighted a critical Denial-of-Service (DoS) vulnerability, tracked as...

ThreatFabric Reveals Dangerous Upgrades in LightSpy Spyware – 28 Plugins Targeting iOS Devices

Do Son October 29, 2024

ThreatFabric released a report detailing advancements in the LightSpy implant, an iOS spyware first identified in 2020,...

Chrome 148 lazy loading Chrome for Linux ARM64 Chrome 145 Update Chrome Security Fixes Chrome Security Update CVE-2026-1220 Chrome 144 Security Update CVE-2026-0899 Chrome Memory Safety, WebGPU UAF Chrome V8 Type Confusion, Google Updater Flaw Chrome V8 Flaw, CVE-2025-13042 Chrome V8, Type Confusion, Chrome 142 Update Chrome V8 Flaw, CVE-2025-12036 Chrome 141, WebGPU Overflow Google Chrome preloading Chrome, V8 vulnerability CVE-2025-9132 Chrome Security Update, Use-After-Free Chrome V8, Type Confusion Chrome Telemetry, Windows 10 EOL Microsoft Family Safety, Chrome Blocking Chrome Security Update, High-Severity Google Chrome, Antitrust CVE-2024-10487 and CVE-2024-10488 Google Chrome Root Program Chrome Update, CVE-2025-3619 Chrome Acquisition, Perplexity.ai

New Chrome Security Patch Targets Critical CVE-2024-10487 & 10488 Flaws – Update Immediately

Do Son October 29, 2024

Google has just released an urgent update for its Chrome browser, addressing two serious security vulnerabilities that...

CVE-2024-45656: A 9.8 Severity Threat to IBM Power Systems Security IBM API Connect, CVE-2025-13915 IBM Privilege Escalation, CVE-2025-36356 IBM Power Systems - CVE-2024-45656 CVE-2024-49814 and CVE-2024-51450 CVE-2024-56346 and CVE-2024-56347 CVE-2025-1302

IBM API Connect, CVE-2025-13915 IBM Privilege Escalation, CVE-2025-36356 IBM Power Systems - CVE-2024-45656 CVE-2024-49814 and CVE-2024-51450 CVE-2024-56346 and CVE-2024-56347 CVE-2025-1302

CVE-2024-45656: A 9.8 Severity Threat to IBM Power Systems Security

Do Son October 29, 2024

A critical vulnerability has been discovered in IBM Power Systems servers, potentially allowing unauthorized access and complete...

22,000 CyberPanel Servers Exposed: Zero-Click RCE Vulnerability Discovered, PoC Published CyberPanel vulnerability

22,000 CyberPanel Servers Exposed: Zero-Click RCE Vulnerability Discovered, PoC Published

Do Son October 29, 2024

A new critical vulnerability has been discovered in CyberPanel, a popular open-source web hosting control panel, by...

CLFS Flaw in Windows 11 Allows for Privilege Escalation, PoC Published Windows 11 Privilege Escalation

CLFS Flaw in Windows 11 Allows for Privilege Escalation, PoC Published

Do Son October 28, 2024

A high-severity vulnerability has been discovered in the Common Log File System (CLFS) driver in Windows 11,...

CVE-2024-38821 (CVSS 9.1) Allows Authorization Bypass in Spring WebFlux Applications CVE-2024-38821 - CVE-2025-22223 and CVE-2025-22228 Spring Framework vulnerability, Spring Security

CVE-2024-38821 - CVE-2025-22223 and CVE-2025-22228 Spring Framework vulnerability, Spring Security

CVE-2024-38821 (CVSS 9.1) Allows Authorization Bypass in Spring WebFlux Applications

Do Son October 28, 2024

In a recent security advisory, Spring Security disclosed CVE-2024-38821, a critical vulnerability impacting WebFlux applications, with a...

CVE-2024-22036 (CVSS 9.1): Critical RCE Vulnerability Discovered in SUSE Rancher Rancher security flaws cluster privilege escalation Rancher Path Traversal CVE-2026-25705 Rancher Vulnerabilities, SAML Phishing CVE-2024-22036 Rancher, vulnerability

Rancher security flaws cluster privilege escalation Rancher Path Traversal CVE-2026-25705 Rancher Vulnerabilities, SAML Phishing CVE-2024-22036 Rancher, vulnerability

CVE-2024-22036 (CVSS 9.1): Critical RCE Vulnerability Discovered in SUSE Rancher

Do Son October 28, 2024

A new vulnerability, CVE-2024-22036, has been disclosed by the SUSE Rancher Security team, highlighting a critical flaw...

Sharp and Toshiba Tec MFPs Exposed: Multiple Vulnerabilities Put Businesses at Risk CVE-2024-47406 CVE-2025-1268 Canon Printer Vulnerability CVE-2025-14231

CVE-2024-47406 CVE-2025-1268 Canon Printer Vulnerability CVE-2025-14231

Sharp and Toshiba Tec MFPs Exposed: Multiple Vulnerabilities Put Businesses at Risk

Do Son October 28, 2024

A new report reveals a concerning number of security vulnerabilities affecting Sharp and Toshiba Tec multifunction printers...

Driver Signature Enforcement Cracked: OS Downgrade Attacks Possible on Windows

Do Son October 28, 2024

SafeBreach specialist Alon Leviev has discovered that attackers can exploit outdated Windows kernel components to bypass critical...

CVE-2024-46483 (CVSS 9.8): Xlight FTP Server Flaw Leaves Users Exposed to Remote Attacks, PoC Published

Do Son October 28, 2024

A severe security vulnerability has been identified in the Xlight SFTP server, a popular Windows-based FTP and...

CVE-2023-32197 (CVSS 9.1): Critical RKE2 Flaw Exposes Windows Nodes to Privilege Escalation

Do Son October 28, 2024

A significant security vulnerability, CVE-2023-32197, has been identified in RKE2, Rancher’s Kubernetes distribution geared toward high-security environments,...

Grafana Vulnerability CVE-2024-9264: PoC Exploit Released for 9.9-Rated Critical Flaw CVE-2024-9264 exploit

Grafana Vulnerability CVE-2024-9264: PoC Exploit Released for 9.9-Rated Critical Flaw

Do Son October 28, 2024

The researcher published the technical details and proof-of-concept (PoC) exploit code for CVE-2024-9264 – a critical vulnerability...

Synology Fixes Critical Vulnerabilities in Synology Photos and BeePhotos After Pwn2Own Exposure

Do Son October 27, 2024

Synology has released security updates to address critical vulnerabilities in Synology Photos and BeePhotos, its photo management...

CVE-2022-45157 (CVSS 9.1): Critical Security Flaw in Rancher Exposes vSphere Credentials in Plaintext Rancher - CVE-2022-45157

CVE-2022-45157 (CVSS 9.1): Critical Security Flaw in Rancher Exposes vSphere Credentials in Plaintext

Do Son October 27, 2024

The SUSE Rancher Security team has recently issued a high-severity advisory, CVE-2022-45157, warning users of a critical...

Researcher Details CVE-2024-38812 (CVSS 9.8): Critical RCE Flaw in VMware vCenter Screenshot 2024-10-25 005350

Researcher Details CVE-2024-38812 (CVSS 9.8): Critical RCE Flaw in VMware vCenter

Do Son October 27, 2024

The SonicWall Capture Labs Threat Research Team has published an in-depth analysis of CVE-2024-38812, a critical heap-overflow...

Intrinsec Report: China’s Strategic Exploitation of Cybersecurity Vulnerabilities China cybersecurity

Intrinsec Report: China’s Strategic Exploitation of Cybersecurity Vulnerabilities

Do Son October 27, 2024

A recent report from Intrinsec, titled “China: Vulnerabilities as a Strategic Resource,” details how China systematically utilizes...

WhatsUp Gold Users Beware: Critical Authentication Bypass Flaw Exposed – CVE-2024-7763 (CVSS 9.8) Sitefinity critical vulnerabilities Sitefinity security update CVE-2024-7763 - CVE-2024-8785 exploit CVE-2025-1758

Sitefinity critical vulnerabilities Sitefinity security update CVE-2024-7763 - CVE-2024-8785 exploit CVE-2025-1758

WhatsUp Gold Users Beware: Critical Authentication Bypass Flaw Exposed – CVE-2024-7763 (CVSS 9.8)

Do Son October 27, 2024

Progress Software has disclosed a severe new vulnerability in its popular network monitoring solution, WhatsUp Gold, that...

DTLS “ClientHello” Race Condition: A New Threat to WebRTC Security

Do Son October 27, 2024

Enable Security recently released a report detailing a newly discovered vulnerability in WebRTC, the open-standard technology enabling...

Critical Alert 2 Active Exploits Detected Today