Vulnerability Archives • Page 68 of 190 • Daily CyberSecurity

CVE-2024-21216 (CVSS 9.8): Oracle WebLogic Flaw That Could Give Attackers Full Control

Ddos October 20, 2024

Oracle has recently rolled out its October 2024 Critical Patch Update (CPU), addressing 329 vulnerabilities across a...

CVE-2024-10025 (CVSS 9.1): Critical Flaw in SICK Products Exposes Systems to Remote Attacks CVE-2024-10025 CVE-2025-27593 & CVE-2025-27595

CVE-2024-10025 (CVSS 9.1): Critical Flaw in SICK Products Exposes Systems to Remote Attacks

Ddos October 19, 2024

A newly disclosed vulnerability in multiple SICK products, tracked as CVE-2024-10025, has raised significant cybersecurity concerns across...

Critical Flaw in Synology Camera Firmware Expose Devices to RCE and DoS Attacks Synology Camera BC500 Firmware

Critical Flaw in Synology Camera Firmware Expose Devices to RCE and DoS Attacks

Ddos October 18, 2024

Synology has issued a security advisory, Synology-SA-24:17, warning of critical vulnerabilities in several of its camera firmware...

Gatekeeper Bypass: Malicious Apps Could Slip Through macOS Defenses

Ddos October 18, 2024

A new report from Unit 42 researchers has uncovered significant weaknesses in macOS’s Gatekeeper security mechanism, which...

CVE-2024-48914 (CVSS 9.1): Critical File Read Flaw Discovered in Vendure E-commerce Platform

Ddos October 18, 2024

Vendure, a popular open-source headless commerce platform, has patched a critical security vulnerability that could allow attackers...

Hikvision HikCentral Master Lite and Professional Affected by Multi Vulnerabilities HikCentral Master Lite & HikCentral Professional

Hikvision HikCentral Master Lite and Professional Affected by Multi Vulnerabilities

Ddos October 18, 2024

Hikvision, a leading provider of AIoT and video surveillance solutions, has disclosed three vulnerabilities affecting its HikCentral...

Critical Vulnerabilities in Bitdefender Total Security Expose Users to Man-in-the-Middle Attacks

Ddos October 18, 2024

Bitdefender, a leading global cybersecurity technology company, has issued an urgent advisory regarding three critical vulnerabilities discovered...

Patch Now! Grafana Hit by 9.9 Severity RCE Vulnerability (CVE-2024-9264)

Ddos October 18, 2024

A critical security vulnerability (CVE-2024-9264) has been discovered in Grafana, the popular open-source platform for monitoring and...

SolarWinds Web Help Desk Hit With Critical RCE Flaw (CVE-2024-28988, CVSS 9.8)

Ddos October 17, 2024

SolarWinds, a major provider of IT management software, has issued a security advisory addressing a severe vulnerability...

F5 BIG-IP Vulnerability (CVE-2024-45844): Access Control Bypass Risk, PoC Available CVE-2024-45844 command injection root access

F5 BIG-IP Vulnerability (CVE-2024-45844): Access Control Bypass Risk, PoC Available

Ddos October 17, 2024

A critical vulnerability has been identified in F5 BIG-IP, a popular network traffic management and security solution....

Spring Framework Vulnerability CVE-2024-38819: Path Traversal Risk in Web Apps Spring Cloud Config CVE-2026-22739 Spring Gateway SpEL, STOMP WebSocket CSRF Spring Security, vulnerability CVE-2024-38819 CVE-2025-41243 Spring Cloud Gateway, vulnerability

Spring Cloud Config CVE-2026-22739 Spring Gateway SpEL, STOMP WebSocket CSRF Spring Security, vulnerability CVE-2024-38819 CVE-2025-41243 Spring Cloud Gateway, vulnerability

Spring Framework Vulnerability CVE-2024-38819: Path Traversal Risk in Web Apps

Ddos October 17, 2024

A newly disclosed path traversal vulnerability, tracked as CVE-2024-38819, has been found in the widely used Spring...

Cisco ATA 190 Series Analog Telephone Adapter Firmware Flaws Exposed: Patch Now! Cisco CCX RCE and Java RMI Flaw CVE-2024-20458 - CVE-2025-20111 Cisco Smart Licensing Utility Flaw

Cisco CCX RCE and Java RMI Flaw CVE-2024-20458 - CVE-2025-20111 Cisco Smart Licensing Utility Flaw

Cisco ATA 190 Series Analog Telephone Adapter Firmware Flaws Exposed: Patch Now!

Ddos October 17, 2024

Cisco has recently disclosed a series of high-severity vulnerabilities in the Cisco ATA 190 Series Analog Telephone...

HM Surf (CVE-2024-44133): macOS Flaw Exposing Cameras and Microphones to Hackers, PoC Published CVE-2024-44133 - HM Surf

HM Surf (CVE-2024-44133): macOS Flaw Exposing Cameras and Microphones to Hackers, PoC Published

Ddos October 17, 2024

In a significant discovery by Microsoft Threat Intelligence, a vulnerability in macOS, identified as CVE-2024-44133, has been...

CVE-2024-43240 & CVE-2024-43242 in Ultimate Membership Pro Plugin Put 40,000 Websites at Risk Ultimate Membership Pro - CVE-2024-43240 & CVE-2024-43242

CVE-2024-43240 & CVE-2024-43242 in Ultimate Membership Pro Plugin Put 40,000 Websites at Risk

Ddos October 17, 2024

The Ultimate Membership Pro plugin, a premium WordPress plugin widely used for managing membership subscriptions, has been...

CVE-2024-45216: Critical Authentication Bypass Vulnerability Patched in Apache Solr CVE-2024-45216 & CVE-2024-45217

CVE-2024-45216: Critical Authentication Bypass Vulnerability Patched in Apache Solr

Ddos October 16, 2024

Apache Solr, a highly reliable and scalable search platform powering the search functionalities of some of the...

Broadcom Warns of High-Risk VMware HCX Vulnerability (CVE-2024-38814) VMware Fusion Privilege Escalation CVE-2026-41702 TOCTOU VMware Vulnerabilities, Broadcom Security CVE-2024-38814 - VMware HCX CVE-2025-22224, CVE-2025-22225, and CVE-2025-22226

VMware Fusion Privilege Escalation CVE-2026-41702 TOCTOU VMware Vulnerabilities, Broadcom Security CVE-2024-38814 - VMware HCX CVE-2025-22224, CVE-2025-22225, and CVE-2025-22226

Broadcom Warns of High-Risk VMware HCX Vulnerability (CVE-2024-38814)

Ddos October 16, 2024

In a recent security advisory, Broadcom disclosed a significant SQL injection vulnerability (CVE-2024-38814) affecting VMware HCX, a...

CVE-2024-48904 (CVSS 9.8): Critical Command Injection Vulnerability in Trend Micro Cloud Edge Trend Micro Apex One CVE-2025-71210 AI Security Trend Micro Deep Security - CVE-2024-48904 & CVE-2024-51503

Trend Micro Apex One CVE-2025-71210 AI Security Trend Micro Deep Security - CVE-2024-48904 & CVE-2024-51503

CVE-2024-48904 (CVSS 9.8): Critical Command Injection Vulnerability in Trend Micro Cloud Edge

Ddos October 16, 2024

Trend Micro has issued an urgent security bulletin warning users of a critical command injection vulnerability in...

Ragic Enterprise Cloud Database - CVE-2024-9983 - CVE-2024-9984 - CVE-2024-9985

Ragic Enterprise Cloud Database Patches Multi Flaws, Including CVE-2024-9984 (CVSS 9.8)

Ddos October 16, 2024

Taiwan’s Computer Emergency Response Team (TWCERT/CC) has issued a warning regarding multiple vulnerabilities discovered in the Ragic...

Matrix Discloses High-Severity Vulnerabilities in Encryption Key Sharing CVE-2024-47080 & CVE-2024-47824

Matrix Discloses High-Severity Vulnerabilities in Encryption Key Sharing

Ddos October 16, 2024

The Matrix.org Security Team has recently disclosed two high-severity vulnerabilities impacting the matrix-js-sdk and matrix-react-sdk. These vulnerabilities, related...

Apache CloudStack Patches Critical Security Flaws in Latest Release CVE-2024-45219 - CVE-2024-45693

Apache CloudStack Patches Critical Security Flaws in Latest Release

Ddos October 16, 2024

The Apache CloudStack project has announced the release of LTS security releases 4.18.2.4 and 4.19.1.2 to address...

Critical Alert 1 Active Exploit Detected Today