Vulnerability Archives • Page 70 of 190 • Daily CyberSecurity

Thousands of Fortinet Devices Remain Exposed to RCE CVE-2024-23113 Vulnerability

Ddos October 13, 2024

A recent report from the Shadowserver Foundation has revealed a concerning number of Fortinet devices remain vulnerable...

Apache Roller Patches CSRF Flaw CVE-2024-46911 in Latest Update Apache Roller - CVE-2024-46911

Apache Roller Patches CSRF Flaw CVE-2024-46911 in Latest Update

Ddos October 13, 2024

The Apache Software Foundation has released a security update for Apache Roller, a popular Java-based blogging platform....

Plane Project Management Tool Patches Critical SSRF Flaw – CVE-2024-47830 (CVSS 9.3) project management tool - CVE-2024-47830

Plane Project Management Tool Patches Critical SSRF Flaw – CVE-2024-47830 (CVSS 9.3)

Ddos October 13, 2024

A critical security vulnerability has been discovered and patched in Plane, a popular open-source project management tool....

Suspected Nation-State Adversary Exploits Ivanti CSA in a Series of Sophisticated Attacks hackerbot-claw campaign Cisco RCE Exploit CVE-2026-20045 SonicWall VPN, Akira Ransomware Nobelium Apache Tomcat, Apache Camel

hackerbot-claw campaign Cisco RCE Exploit CVE-2026-20045 SonicWall VPN, Akira Ransomware Nobelium Apache Tomcat, Apache Camel

Suspected Nation-State Adversary Exploits Ivanti CSA in a Series of Sophisticated Attacks

Ddos October 12, 2024

Fortinet’s FortiGuard Labs recently released a detailed analysis of a sophisticated cyberattack targeting the Ivanti Cloud Services...

CVE-2024-9180: HashiCorp Vault Vulnerability Could Lead to Privilege Escalation Vault LDAP Bypass, Terraform Insecure Default Vault Community Edition - CVE-2024-9180

Vault LDAP Bypass, Terraform Insecure Default Vault Community Edition - CVE-2024-9180

CVE-2024-9180: HashiCorp Vault Vulnerability Could Lead to Privilege Escalation

Ddos October 12, 2024

HashiCorp has issued a security bulletin disclosing a vulnerability in its Vault secret management platform that could...

Mozilla Confirms Active Attacks on Tor Browser via Firefox Vulnerability Firefox Vulnerability Tor CGO Encryption Tor1 Protocol Vulnerability

Firefox Vulnerability Tor CGO Encryption Tor1 Protocol Vulnerability

Mozilla Confirms Active Attacks on Tor Browser via Firefox Vulnerability

Ddos October 11, 2024

Mozilla has issued an urgent security update for its Firefox browser to address a critical vulnerability that...

NSA, FBI, and Allies Expose Ongoing Russian Cyber Espionage Operations Cyber Operations Messaging App Security State-Sponsored Hijacking

NSA, FBI, and Allies Expose Ongoing Russian Cyber Espionage Operations

Ddos October 11, 2024

Recently, the National Security Agency (NSA), Federal Bureau of Investigation (FBI), the United States Cyber Command’s Cyber...

CISA Warns of F5 BIG-IP Cookie Exploitation F5 BIG-IP Hunt Electronic DVR, Critical Vulnerability

CISA Warns of F5 BIG-IP Cookie Exploitation

Ddos October 11, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert warning organizations about a vulnerability...

Fog & Akira Ransomware Exploit Critical Veeam RCE Flaw CVE-2024-40711 After PoC Release

Ddos October 10, 2024

In a recent alert, Sophos X-Ops MDR and Incident Response revealed a surge in ransomware attacks exploiting...

Multiple Vulnerabilities Found in SonicWall SSL-VPN SMA1000 and Connect Tunnel Windows Client SonicWall SSL-VPN SMA1000 - CVE-2024-45316

Multiple Vulnerabilities Found in SonicWall SSL-VPN SMA1000 and Connect Tunnel Windows Client

Ddos October 10, 2024

SonicWall has released security updates to address multiple vulnerabilities affecting its SMA 1000 series SSL-VPN appliances and...

CVE-2024-9465 (CVSS 9.2) SQLi Flaw in Palo Alto Expedition Revealed: Full Exploit & PoC Published CVE-2024-9465 PoC exploit

CVE-2024-9465 (CVSS 9.2) SQLi Flaw in Palo Alto Expedition Revealed: Full Exploit & PoC Published

Ddos October 10, 2024

A critical vulnerability, CVE-2024-9465, has been discovered in Palo Alto Networks’ Expedition tool by security researcher Zach...

Zyxel Devices Targeted by Malicious Actors: Urgent Firmware Update Required Zyxel security - Mitel MiCollab Vulnerability

Zyxel Devices Targeted by Malicious Actors: Urgent Firmware Update Required

Ddos October 10, 2024

A recent security announcement from security researcher Serhii Boiarynov at the Zyxel EMEA team has uncovered malicious...

CVE-2024-41713 (CVSS 9.8): Unpatched MiCollab Vulnerability Allows Unauthorized Access Mitel MiCollab SQL Injection MiCollab software - CVE-2024-47223 & CVE-2024-41713

Mitel MiCollab SQL Injection MiCollab software - CVE-2024-47223 & CVE-2024-41713

CVE-2024-41713 (CVSS 9.8): Unpatched MiCollab Vulnerability Allows Unauthorized Access

Ddos October 10, 2024

Mitel has issued a critical security advisory addressing a newly discovered vulnerability, CVE-2024-41713, in the MiCollab platform....

Progress Patches Critical Security Flaw CVE-2024-8015 (CVSS 9.1) in Telerik Report Server CVE-2023-42659 & CVE-2024-8015 MOVEit AS2 DoS, Uncontrolled Resource Consumption

CVE-2023-42659 & CVE-2024-8015 MOVEit AS2 DoS, Uncontrolled Resource Consumption

Progress Patches Critical Security Flaw CVE-2024-8015 (CVSS 9.1) in Telerik Report Server

Ddos October 10, 2024

Progress Software has released an important security advisory addressing four newly discovered vulnerabilities in their powerful Telerik...

Keycloak Patches CVE-2024-3656 Granting Low-Privilege Users Administrative Access

Ddos October 10, 2024

Open-source identity and access management platform Keycloak has released a security update to address a high-severity vulnerability...

CVE-2024-38365: Btcd Bug Could Have Led to Bitcoin Network Fork

Ddos October 10, 2024

A critical vulnerability in btcd, a popular alternative implementation of the Bitcoin protocol, could have allowed malicious...

CVE-2024-9466 Flaw in Palo Alto Networks’ Expedition Exposes Sensitive Credentials to Attackers, PoC Published

Ddos October 10, 2024

A recent analysis by security researcher Zach Hanley of Horizon3.ai has uncovered a critical vulnerability, CVE-2024-9466, in...

CVE-2024-47223 (CVSS 9.4): SQLi Flaw in Mitel MiCollab Poses Severe Risk to Enterprises Mitel MiCollab SQL Injection MiCollab software - CVE-2024-47223 & CVE-2024-41713

CVE-2024-47223 (CVSS 9.4): SQLi Flaw in Mitel MiCollab Poses Severe Risk to Enterprises

Ddos October 10, 2024

Mitel, a global leader in business communications, has issued a critical security advisory concerning a high-severity SQL...

CVE-2024-9164 (CVSS 9.6): GitLab Users Urged to Update Now CVE-2024-9164 - CVE-2025-0376 GitLab Wiki XSS, Session Hijack Flaw

CVE-2024-9164 (CVSS 9.6): GitLab Users Urged to Update Now

Ddos October 9, 2024

GitLab, a leading platform for DevOps and continuous integration/continuous delivery (CI/CD), has just released crucial security updates...

Researcher Details Privilege Escalation in Palo Alto Networks’ GlobalProtect MSI Installer (CVE-2024-9473)

Ddos October 9, 2024

In a recent vulnerability analysis by Michael Baer from SEC Consult Vulnerability Lab, a significant local privilege...

Critical Alert 1 Active Exploit Detected Today