Vulnerability Archives • Page 80 of 190 • Daily CyberSecurity

CVE-2024-38650 & CVE-2024-39714 (CVSS 9.9): Critical Flaws in Veeam Console Put Data at Risk CVE-2024-39714 & CVE-2024-38650

CVE-2024-38650 & CVE-2024-39714 (CVSS 9.9): Critical Flaws in Veeam Console Put Data at Risk

Ddos September 5, 2024

A series of critical vulnerabilities have been discovered in Veeam Service Provider Console, a widely-used platform for...

CVE-2024-20017 (CVSS 9.8): Zero-Click Exploit Discovered in Popular Wi-Fi Chipsets, PoC Published CVE-2024-20017 exploit PoC

CVE-2024-20017 (CVSS 9.8): Zero-Click Exploit Discovered in Popular Wi-Fi Chipsets, PoC Published

Ddos September 4, 2024

Security researcher Hyprdude has published detailed information and a proof-of-concept (PoC) exploit for a critical vulnerability identified...

Veeam Backup & Replication Faces RCE Flaw– CVE-2024-40711 (CVSS 9.8) Allows Full System Takeover Veeam RCE Vulnerability CVE-2026-21666 CVE-2024-40711 Veeam Backup & Replication

Veeam Backup & Replication Faces RCE Flaw– CVE-2024-40711 (CVSS 9.8) Allows Full System Takeover

Ddos September 4, 2024

A series of critical vulnerabilities have been uncovered in Veeam Backup & Replication, potentially exposing organizations to...

Critical Cisco SLU Vulnerabilities CVE-2024-20439 and CVE-2024-20440 Threaten Remote Admin Control CVE-2024-20439 & CVE-2024-20440

Critical Cisco SLU Vulnerabilities CVE-2024-20439 and CVE-2024-20440 Threaten Remote Admin Control

Ddos September 4, 2024

Cisco has issued a security advisory warning organizations of multiple vulnerabilities in its Smart Licensing Utility (SLU)...

Warning: CVE-2024-20469 in Cisco ISE with PoC Code Puts Networks at Risk CVE-2024-20469 Cisco Identity Services Engine

Warning: CVE-2024-20469 in Cisco ISE with PoC Code Puts Networks at Risk

Ddos September 4, 2024

A vulnerability, tracked as CVE-2024-20469, has been discovered in Cisco Identity Services Engine (ISE). With a CVSS...

Webmin/Virtualmin Vulnerability Opens Door to Loop DoS Attacks (CVE-2024-2169) Webmin CVE-2024-2169 Loop DoS attack CVE-2024-45692

Webmin/Virtualmin Vulnerability Opens Door to Loop DoS Attacks (CVE-2024-2169)

Ddos September 4, 2024

System administrators and web hosting providers relying on the popular Webmin and Virtualmin control panels are urged...

ECDSA Vulnerability in YubiKey: What You Need to Know YubiKey ECDSA Vulnerability CVE-2024-45678

ECDSA Vulnerability in YubiKey: What You Need to Know

Ddos September 4, 2024

In a recent security advisory, Yubico disclosed a moderate vulnerability (CVE-2024-45678) affecting several of its hardware security...

Revival Hijack: A New PyPI Hijacking Technique Threatens Thousands of Packages

Ddos September 4, 2024

The JFrog security research team has uncovered a novel PyPI package hijacking method known as “Revival Hijack,”...

CVE-2024-38106: 0-Day Windows Kernel Vulnerability Exploited in the Wild, PoC Published Microsoft MAI-Image-1, In-House AI Microsoft Learn, MCP Server Windows Kernel Vulnerability - CVE-2024-38106 PoC exploit

Microsoft MAI-Image-1, In-House AI Microsoft Learn, MCP Server Windows Kernel Vulnerability - CVE-2024-38106 PoC exploit

CVE-2024-38106: 0-Day Windows Kernel Vulnerability Exploited in the Wild, PoC Published

Ddos September 3, 2024

Recently, security researcher Sergey Kornienko from PixiePoint Security published an analysis and proof-of-concept (PoC) exploit for a...

CISA Issues Alert: Three Actively Exploited Vulnerabilities Demand Immediate Attention CISA KEV Catalog DarkSword Exploit Draytek Routers VMware vCenter RCE CVE-2024-37079

CISA KEV Catalog DarkSword Exploit Draytek Routers VMware vCenter RCE CVE-2024-37079

CISA Issues Alert: Three Actively Exploited Vulnerabilities Demand Immediate Attention

Ddos September 3, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has added three critical vulnerabilities to its Known Exploited Vulnerabilities...

Google Patches Actively Exploited Zero-Day in September Android Update Google Lawsuit, Android Data Privacy Android September Security

Google Patches Actively Exploited Zero-Day in September Android Update

Ddos September 3, 2024

Google’s September 2024 Android security patch addresses 36 vulnerabilities, one of which has already been exploited in...

CVE-2024-38811: Code Execution Vulnerability Discovered in VMware Fusion VMware Aria Operations CVE-2026-22719 VMware Fusion - CVE-2024-38811 VMware security, CVE-2025-22247

VMware Aria Operations CVE-2026-22719 VMware Fusion - CVE-2024-38811 VMware security, CVE-2025-22247

CVE-2024-38811: Code Execution Vulnerability Discovered in VMware Fusion

Ddos September 3, 2024

A high-severity security vulnerability (CVE-2024-38811, CVSS 8.8) has been identified in VMware Fusion, a popular virtualization software...

CVE-2024-7261 (CVSS 9.8): Zyxel Patches Critical Vulnerability in Wi-Fi Devices CVE-2024-7261 - Zyxel routers

CVE-2024-7261 (CVSS 9.8): Zyxel Patches Critical Vulnerability in Wi-Fi Devices

Ddos September 2, 2024

Zyxel, a prominent networking equipment manufacturer, has issued a security advisory urging users to promptly update their...

CVE-2024-7593 (CVSS 9.8): Critical Ivanti vTM Flaw Now Weaponized, PoC Exploit Available

Ddos September 2, 2024

A critical authentication bypass vulnerability, tracked as CVE-2024-7593 (CVSS 9.8), in Ivanti’s Virtual Traffic Manager (vTM), is...

D-Link Won’t Fix 4 RCE Vulnerabilities in DIR-846W Router CVE-2024-3080

D-Link Won’t Fix 4 RCE Vulnerabilities in DIR-846W Router

Ddos September 2, 2024

Four severe security flaws have been found in the D-Link DIR-846W router, leaving users potentially exposed to...

CVE-2024-8105: An UEFI Flaw Putting Millions of Devices at Risk CVE-2024-8105 - PKfail

CVE-2024-8105: An UEFI Flaw Putting Millions of Devices at Risk

Ddos September 2, 2024

A significant vulnerability, CVE-2024-8105, dubbed PKfail, has surfaced within the UEFI ecosystem. With a CVSS score of...

Publicly Exposed GenAI Development Services Raise Serious Security Concerns CVE-2024-31621

Publicly Exposed GenAI Development Services Raise Serious Security Concerns

Ddos September 2, 2024

A new report released by Legit Security has raised significant concerns about the security posture of publicly...

CVE-2024-43044: Critical Jenkins Vulnerability Exposes Servers to RCE, PoC Exploit Published CVE-2024-43044 exploit PoC

CVE-2024-43044: Critical Jenkins Vulnerability Exposes Servers to RCE, PoC Exploit Published

Ddos September 1, 2024

A security researcher from Conviso Labs published the technical details and a proof-of-concept (PoC) exploit for a...

Safeguard for Privileged Passwords - CVE-2024-45488

CVE-2024-45488: Flaw in Safeguard for Privileged Passwords Enables Unauthorized Access

Ddos September 1, 2024

In a recent security bulletin, a critical vulnerability has been identified in One Identity’s Safeguard for Privileged...

Proof-of-Concept Exploit Released for WhatsUp Gold Authentication Bypass (CVE-2024-6670) CVE-2024-6670 exploit PoC

Proof-of-Concept Exploit Released for WhatsUp Gold Authentication Bypass (CVE-2024-6670)

Ddos September 1, 2024

Researcher Sina Kheirkhah of the Summoning Team has published the technical details and a proof-of-concept (PoC) exploit...

Critical Alert 1 Active Exploit Detected Today