Vulnerability Archives • Page 79 of 190 • Daily CyberSecurity

Siemens Issues Critical Security Advisory for User Management Component (UMC) – CVE-2024-33698 CVE-2024-33698 & CVE-2024-35783 & CVE-2024-45032

Siemens Issues Critical Security Advisory for User Management Component (UMC) – CVE-2024-33698

Ddos September 10, 2024

Siemens, a global industrial automation giant, has disclosed a critical heap-based buffer overflow vulnerability in its User...

CISA Alerts on Active Exploitation of Flaws in ImageMagick, Linux Kernel, and SonicWall SonicWall vulnerability

CISA Alerts on Active Exploitation of Flaws in ImageMagick, Linux Kernel, and SonicWall

Ddos September 9, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning, adding three actively exploited vulnerabilities...

CVE-2024-6342: Critical Command Injection Flaw in Zyxel NAS Devices, Hotfixes Released for End-of-Support Products CVE-2024-6342 - Zyxel NAS542 & NAS326

CVE-2024-6342: Critical Command Injection Flaw in Zyxel NAS Devices, Hotfixes Released for End-of-Support Products

Ddos September 9, 2024

Zyxel has released critical hotfixes for two of its NAS products, NAS326 and NAS542, which have already...

CVE-2024-30051: Windows Elevation of Privilege Flaw Exploited by QakBot Malware, PoC Published CVE-2024-30051 exploit PoC

CVE-2024-30051: Windows Elevation of Privilege Flaw Exploited by QakBot Malware, PoC Published

Ddos September 9, 2024

Security researchers published the technical details and a proof-of-concept exploit (PoC) code for a zero-day vulnerability in...

FreeBSD Issues Urgent Security Advisory for CVE-2024-43102 (CVSS 10)

Ddos September 9, 2024

The FreeBSD Project has issued a security advisory warning of a critical vulnerability (CVE-2024-43102) affecting multiple versions...

Critical Kibana Flaws (CVE-2024-37288, CVE-2024-37285) Expose Systems to Arbitrary Code Execution CVE-2024-37288 and CVE-2024-37285 Kibana XSS SSRF, Vega Vulnerability

CVE-2024-37288 and CVE-2024-37285 Kibana XSS SSRF, Vega Vulnerability

Critical Kibana Flaws (CVE-2024-37288, CVE-2024-37285) Expose Systems to Arbitrary Code Execution

Ddos September 8, 2024

Elastic, the company behind the popular open-source data visualization and analytics platform Kibana, has issued a critical...

HAProxy Vulnerability CVE-2024-45506 Under Active Exploit: Urgent Patching Required

Ddos September 8, 2024

In the latest security advisory, HAProxy revealed that CVE-2024-45506, a vulnerability in its popular load balancing and...

PoC Exploit Releases for Windows Elevation of Privilege Vulnerability CVE-2024-26230 CVE-2024-26230 PoC Exploit

PoC Exploit Releases for Windows Elevation of Privilege Vulnerability CVE-2024-26230

Ddos September 8, 2024

Security researcher published the technical details and a proof-of-concept (PoC) exploit for a patched elevation of privilege...

Akira Ransomware Exploits SonicWall SSLVPN Flaw (CVE-2024-40766) Akira ransomware affiliates Akira Ransomware, SonicWall VPN

Akira Ransomware Exploits SonicWall SSLVPN Flaw (CVE-2024-40766)

Ddos September 8, 2024

SonicWall has issued a warning: the recently patched critical access control vulnerability, tracked as CVE-2024-40766, is now...

MindsDB Fixes Critical CVE-2024-24759: DNS Rebinding Attack Bypasses Security Protections CVE-2024-24759 - MindsDB

MindsDB Fixes Critical CVE-2024-24759: DNS Rebinding Attack Bypasses Security Protections

Ddos September 7, 2024

MindsDB, the widely-used open-source platform for building AI applications, has patched a severe security vulnerability that could...

CVE-2024-45076 (CVSS 9.9): Critical Flaw in IBM webMethods Integration Demand Immediate Action CVE-2024-45076 IBM webMethods Integration

CVE-2024-45076 (CVSS 9.9): Critical Flaw in IBM webMethods Integration Demand Immediate Action

Ddos September 6, 2024

IBM has issued a critical security advisory for its webMethods Integration Server, revealing multiple vulnerabilities that could...

Threat Actors Exploit GeoServer Vulnerability CVE-2024-36401 to Launch Malware Campaigns SideWalk malware & GOREVERSE

Threat Actors Exploit GeoServer Vulnerability CVE-2024-36401 to Launch Malware Campaigns

Ddos September 6, 2024

Cybersecurity researchers at FortiGuard Labs have observed multiple campaigns targeting a critical vulnerability in GeoServer, an open-source...

Red Hat Issues Critical Patch for Pulpcore Authentication Bypass Flaw (CVE-2024-7923)

Ddos September 6, 2024

Red Hat has issued a critical security advisory warning of an authentication bypass vulnerability (CVE-2024-7923) in Pulpcore,...

SonicWall Confirms Critical CVE-2024-40766 Vulnerability Actively Exploited in the Wild CVE-2024-40766 exploited SonicOS Vulnerability, DoS Attack

CVE-2024-40766 exploited SonicOS Vulnerability, DoS Attack

SonicWall Confirms Critical CVE-2024-40766 Vulnerability Actively Exploited in the Wild

Ddos September 6, 2024

On September 5, 2024, SonicWall updated its security advisory with an urgent warning: CVE-2024-40766, a critical access...

CVE-2024-26581 PoC Exploit Released: Linux Systems at Risk of Root Compromise CVE-2024-26581 PoC Exploit nftables, CVE-2024-26809

CVE-2024-26581 PoC Exploit Released: Linux Systems at Risk of Root Compromise

Ddos September 5, 2024

The security researchers have publicly disclosed technical details and proof-of-concept (PoC) exploit code for a CVE-2024-26581 (CVSS...

CVE-2024-7591 (CVSS 10): Critical Vulnerability Discovered in Progress LoadMaster CVE-2024-7591 - Progress LoadMaster

CVE-2024-7591 (CVSS 10): Critical Vulnerability Discovered in Progress LoadMaster

Ddos September 5, 2024

Progress Software Corporation has issued a security advisory for a critical vulnerability (CVE-2024-7591) affecting its LoadMaster application...

Critical Flaws in Veeam ONE Expose Systems to RCE (CVE-2024-42024) and Credential Theft (CVE-2024-42019) CVE-2024-42024 & CVE-2024-42019

Critical Flaws in Veeam ONE Expose Systems to RCE (CVE-2024-42024) and Credential Theft (CVE-2024-42019)

Ddos September 5, 2024

Veeam has issued a critical security advisory detailing multiple vulnerabilities affecting Veeam ONE, a comprehensive monitoring solution...

CVE-2024-7012 (CVSS 9.8): Critical Foreman Flaw Exposes Red Hat Satellite to Unauthorized Access

Ddos September 5, 2024

A critical vulnerability, CVE-2024-7012, has been discovered in Foreman, a widely used open-source lifecycle management tool. This...

OpenStack Ironic Users Urged to Patch Critical Vulnerability (CVE-2024-44082) CVE-2024-44082 - OpenStack Ironic OpenStack Keystone LDAP Identity Service Vulnerability

CVE-2024-44082 - OpenStack Ironic OpenStack Keystone LDAP Identity Service Vulnerability

OpenStack Ironic Users Urged to Patch Critical Vulnerability (CVE-2024-44082)

Ddos September 5, 2024

OpenStack’s Ironic project, which provisions bare metal machines, has been found vulnerable to a critical security flaw...

CVE-2024-44000 (CVSS 9.8): Litespeed Cache flaw exposes millions of WordPress sites to takeover attacks

Ddos September 5, 2024

A significant security vulnerability has been uncovered in the popular LiteSpeed Cache plugin for WordPress, which boasts...

Critical Alert 1 Active Exploit Detected Today