Vulnerability Archives • Page 84 of 190 • Daily CyberSecurity

CVE-2024-5932 (CVSS 10): Critical RCE Vulnerability Impacts 100k+ WordPress Sites

Ddos August 19, 2024

A critical security flaw (CVE-2024-5932) in the popular GiveWP WordPress plugin has left over 100,000 websites vulnerable...

F5 Issues Security Advisories for NGINX Plus (CVE-2024-39792) & BIG-IP Next Central Manager (CVE-2024-39809)

Ddos August 19, 2024

F5, a prominent provider of application delivery and security solutions, has recently released security advisories addressing vulnerabilities...

Backdoor discovered in MIFARE classic compatible cards XZ backdoor, Docker Hub MIFARE classic backdoor C++/CLI IIS Backdoor

Backdoor discovered in MIFARE classic compatible cards

Ddos August 19, 2024

In a significant revelation, cybersecurity researchers have uncovered critical vulnerabilities in a new variant of the widely...

HookChain: The Technique That Bypass Exposes EDR in 94% of Security Solutions Bypassing EDR Solutions

HookChain: The Technique That Bypass Exposes EDR in 94% of Security Solutions

Ddos August 19, 2024

In an ever-evolving cybersecurity landscape, where threats are becoming more sophisticated by the day, the focus on...

CVE-2024-7646: A Threat to Kubernetes Clusters Running ingress-nginx

Ddos August 18, 2024

A newly discovered security vulnerability, CVE-2024-7646, has been identified in the widely used ingress-nginx controller for Kubernetes,...

Shimano Di2 Wireless Protocol: Critical Vulnerabilities Uncovered

Ddos August 18, 2024

Researchers from the University of California, San Diego, and Northeastern University have uncovered a potential vulnerability in...

10,000+ WordPress Sites at Risk: Critical File Deletion Flaw Found in InPost Plugins

Ddos August 17, 2024

A critical vulnerability, tracked as CVE-2024-6500 (CVSS 10), has been uncovered in two popular WordPress plugins, InPost...

ZDI Details Copy2Pwn: Zero-Day CVE-2024-38213 Evades Windows Security Measures

Ddos August 16, 2024

Researchers at Trend Micro’s Zero Day Initiative (ZDI) published the technical details for a vulnerability in Windows,...

WPS Office Vulnerabilities Expose 200 Million Users: CVE-2024-7262 Exploited in the Wild

Ddos August 16, 2024

WPS Office, a widely used office suite with a user base exceeding 200 million, has been found...

Google Pixel Phones Exposed: Millions at Risk Due to Pre-Installed App Vulnerability Google Pixel Vulnerability

Google Pixel Phones Exposed: Millions at Risk Due to Pre-Installed App Vulnerability

Ddos August 15, 2024

Cybersecurity researchers at iVerify, in collaboration with Palantir Technologies and Trail of Bits, have uncovered a significant...

Critical Vulnerability Found in Flatpak: CVE-2024-42472 (CVSS 10) Exposes Files Outside Sandbox Flatpak Sandbox Escape CVE-2026-34078 Flatpak CVE-2024-42472

Flatpak Sandbox Escape CVE-2026-34078 Flatpak CVE-2024-42472

Critical Vulnerability Found in Flatpak: CVE-2024-42472 (CVSS 10) Exposes Files Outside Sandbox

Ddos August 15, 2024

A serious security flaw has been discovered in Flatpak, a popular system for distributing and running sandboxed...

Unpatched Kubernetes Flaw Leaves Clusters Open to Exploitation: Researcher Unveils Command Injection Vulnerability

Ddos August 15, 2024

Akamai researcher Tomer Peled has uncovered a concerning design flaw within Kubernetes’ git-sync project. This flaw could...

CISA Warns of Active Exploitation in SolarWinds Web Help Desk Vulnerability CVE-2024-28986 exploitation SolarWinds Web Help Desk Linux Vulnerability CVE-2024-53197

CVE-2024-28986 exploitation SolarWinds Web Help Desk Linux Vulnerability CVE-2024-53197

CISA Warns of Active Exploitation in SolarWinds Web Help Desk Vulnerability

Ddos August 15, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned of a critical security vulnerability affecting SolarWinds Web...

CVE-2024-43360: SQLi Flaw Discovered in Popular Surveillance Software ZoneMinder zoneminder - CVE-2024-43360

CVE-2024-43360: SQLi Flaw Discovered in Popular Surveillance Software ZoneMinder

Ddos August 15, 2024

ZoneMinder, a widely used open-source video surveillance solution, has been found to contain a critical SQL injection...

Last Mile Reassembly Attacks Bypass Leading Secure Web Gateways

Ddos August 15, 2024

SquareX, along with its founder Vivek Ramachandran, a renowned cybersecurity expert, recently uncovered a vulnerability in Secure...

CVE-2024-33533 to 33536: Zimbra Users at Risk of XSS and LFI Attacks

Ddos August 15, 2024

Zimbra Collaboration, a widely adopted email and collaboration platform disclosed three new security vulnerabilities. These flaws, identified...

Windows TCP/IP Vulnerability CVE-2024-38063: Researchers Hold Back Exploit Details Due to High Risk CVE-2024-38063 exploit

Windows TCP/IP Vulnerability CVE-2024-38063: Researchers Hold Back Exploit Details Due to High Risk

Ddos August 14, 2024

In a recent August Patch Tuesday, Microsoft urgently addressed a critical security vulnerability within the Windows TCP/IP...

CVE-2024-42479 (CVSS 10) in Popular Python Package llama_cpp_python Exposes Millions to RCE

Ddos August 14, 2024

A severe security vulnerability has been discovered in the widely-used AI library llama_cpp_python, potentially allowing threat actors...

Bypassing Windows Hello: Shwmae Tool Debuts at DEF CON 32

Ddos August 14, 2024

At DEF CON 32, a new tool named Shwmae was introduced, capable of bypassing the security of...

Palo Alto Networks Issues Security Advisories, Urges Updates Amidst 34 Vulnerabilities PAN-OS IKEv2 Buffer Overflow CVE-2026-0263 Palo Alto Cortex XDR Privilege Escalation Palo Alto Networks Vulnerability CVE-2026-0229 PAN-OS Vulnerability CVE-2026-0227 CVE-2024-5914 - Palo Alto Networks - CVE-2025-0108 & CVE-2025-0110

Palo Alto Networks Issues Security Advisories, Urges Updates Amidst 34 Vulnerabilities

Ddos August 14, 2024

Palo Alto Networks, a leading cybersecurity solutions provider, has sounded the alarm for its users, releasing four...

Critical Alert 1 Active Exploit Detected Today