Vulnerability

Windows TCP/IP Vulnerability CVE-2024-38063: Researchers Hold Back Exploit Details Due to High Risk

• Vulnerability

Windows TCP/IP Vulnerability CVE-2024-38063: Researchers Hold Back Exploit Details Due to High Risk

Do Son August 14, 2024 0

In a recent August Patch Tuesday, Microsoft urgently addressed a critical security vulnerability within the Windows TCP/IP...

Read More Read more about Windows TCP/IP Vulnerability CVE-2024-38063: Researchers Hold Back Exploit Details Due to High Risk

CVE-2024-42479 (CVSS 10) in Popular Python Package llama_cpp_python Exposes Millions to RCE

• Vulnerability

CVE-2024-42479 (CVSS 10) in Popular Python Package llama_cpp_python Exposes Millions to RCE

Do Son August 14, 2024 0

A severe security vulnerability has been discovered in the widely-used AI library llama_cpp_python, potentially allowing threat actors...

Read More Read more about CVE-2024-42479 (CVSS 10) in Popular Python Package llama_cpp_python Exposes Millions to RCE

Bypassing Windows Hello: Shwmae Tool Debuts at DEF CON 32

• Vulnerability

Bypassing Windows Hello: Shwmae Tool Debuts at DEF CON 32

Do Son August 14, 2024 0

At DEF CON 32, a new tool named Shwmae was introduced, capable of bypassing the security of...

Read More Read more about Bypassing Windows Hello: Shwmae Tool Debuts at DEF CON 32

Palo Alto Networks Issues Security Advisories, Urges Updates Amidst 34 Vulnerabilities

• Vulnerability

Palo Alto Networks Issues Security Advisories, Urges Updates Amidst 34 Vulnerabilities

Do Son August 14, 2024 0

Palo Alto Networks, a leading cybersecurity solutions provider, has sounded the alarm for its users, releasing four...

Read More Read more about Palo Alto Networks Issues Security Advisories, Urges Updates Amidst 34 Vulnerabilities

Adobe Issues Critical Security Updates for Commerce and Magento Platforms

• Vulnerability

Adobe Issues Critical Security Updates for Commerce and Magento Platforms

Do Son August 14, 2024 0

Adobe has released a critical security update for its widely-used e-commerce platforms, Adobe Commerce and Magento Open...

Read More Read more about Adobe Issues Critical Security Updates for Commerce and Magento Platforms

RansomEXX Group Exploits Jenkins Vulnerability (CVE-2024-23897) in Major Indian Banking Attack

• Cyber Security
• Vulnerability

RansomEXX Group Exploits Jenkins Vulnerability (CVE-2024-23897) in Major Indian Banking Attack

Do Son August 14, 2024 0

On August 1st, India experienced a massive disruption in its banking payment systems due to a ransomware...

Read More Read more about RansomEXX Group Exploits Jenkins Vulnerability (CVE-2024-23897) in Major Indian Banking Attack

CISA Warns Critical Vulnerabilities in Vonets WiFi Bridge Devices, No Patch Available

• Vulnerability

CISA Warns Critical Vulnerabilities in Vonets WiFi Bridge Devices, No Patch Available

Do Son August 14, 2024 0

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a security advisory detailing multiple critical vulnerabilities discovered...

Read More Read more about CISA Warns Critical Vulnerabilities in Vonets WiFi Bridge Devices, No Patch Available

CVE-2024-36877 in MSI Motherboards Opens Door to Code Execution Attacks, PoC Published

• Vulnerability

CVE-2024-36877 in MSI Motherboards Opens Door to Code Execution Attacks, PoC Published

Do Son August 14, 2024 0

MSI, a leading manufacturer of computer hardware, has recently disclosed a critical vulnerability, tracked as CVE-2024-36877, that...

Read More Read more about CVE-2024-36877 in MSI Motherboards Opens Door to Code Execution Attacks, PoC Published

CVE-2024-39091: Critical Vulnerability in MIPC Camera Framework Puts Millions at Risk

• Vulnerability

CVE-2024-39091: Critical Vulnerability in MIPC Camera Framework Puts Millions at Risk

Do Son August 14, 2024 0

A high-severity vulnerability (CVE-2024-39091, CVSS 8.8) has been discovered in the MIPC camera framework, a widely-used software...

Read More Read more about CVE-2024-39091: Critical Vulnerability in MIPC Camera Framework Puts Millions at Risk

ArtiPACKED: A New GitHub Actions Vulnerability Exposes Critical Credentials

• Vulnerability

ArtiPACKED: A New GitHub Actions Vulnerability Exposes Critical Credentials

Do Son August 14, 2024 0

A recently uncovered vulnerability in GitHub Actions artifacts has the potential to compromise high-profile open-source projects and...

Read More Read more about ArtiPACKED: A New GitHub Actions Vulnerability Exposes Critical Credentials

CVE-2024-38063 (CVSS 9.8): 0-Click RCE Affects All Windows Systems

• Vulnerability

CVE-2024-38063 (CVSS 9.8): 0-Click RCE Affects All Windows Systems

Do Son August 13, 2024 0

In its latest Patch Tuesday security update, Microsoft has disclosed a critical vulnerability in the Windows TCP/IP...

Read More Read more about CVE-2024-38063 (CVSS 9.8): 0-Click RCE Affects All Windows Systems

CVE-2024-28986 (CVSS 9.8): SolarWinds Web Help Desk Users Must Patch Now!

• Vulnerability

CVE-2024-28986 (CVSS 9.8): SolarWinds Web Help Desk Users Must Patch Now!

Do Son August 13, 2024 0

SolarWinds has released an urgent security advisory regarding a critical vulnerability in its Web Help Desk software....

Read More Read more about CVE-2024-28986 (CVSS 9.8): SolarWinds Web Help Desk Users Must Patch Now!

CISA & Microsoft Warn of 6 Actively Exploited Zero-Day Vulnerabilities

• Vulnerability

CISA & Microsoft Warn of 6 Actively Exploited Zero-Day Vulnerabilities

Do Son August 13, 2024 0

Microsoft’s August 2024 Patch Tuesday release addresses 88 vulnerabilities, including seven critical flaws and 10 zero-day vulnerabilities....

Read More Read more about CISA & Microsoft Warn of 6 Actively Exploited Zero-Day Vulnerabilities

Linux Kernel Vulnerabilities Expose Systems to Privilege Escalation: Flaws Detailed and Exploit Code Released

• Linux
• Vulnerability

Linux Kernel Vulnerabilities Expose Systems to Privilege Escalation: Flaws Detailed and Exploit Code Released

Do Son August 13, 2024 0

Security researchers have disclosed the technical details and proof-of-concept (PoC) exploit codes for three vulnerabilities (CVE-2023-4206, CVE-2023-4207,...

Read More Read more about Linux Kernel Vulnerabilities Expose Systems to Privilege Escalation: Flaws Detailed and Exploit Code Released

AMD EPYC Processors Exposed: High-Severity Vulnerability CVE-2023-31315

• Vulnerability

AMD EPYC Processors Exposed: High-Severity Vulnerability CVE-2023-31315

Do Son August 13, 2024 0

AMD has released a security advisory following the discovery of a high-severity vulnerability affecting several of its...

Read More Read more about AMD EPYC Processors Exposed: High-Severity Vulnerability CVE-2023-31315

Ivanti Issues Critical Fixes for ITSM Vulnerabilities (CVE-2024-7569 and CVE-2024-7570)

• Vulnerability

Ivanti Issues Critical Fixes for ITSM Vulnerabilities (CVE-2024-7569 and CVE-2024-7570)

Do Son August 13, 2024 0

Ivanti has released a security advisory addressing two significant vulnerabilities in its Neurons for IT Service Management...

Read More Read more about Ivanti Issues Critical Fixes for ITSM Vulnerabilities (CVE-2024-7569 and CVE-2024-7570)

CVE-2024-39825 and CVE-2024-39818: High-Risk Zoom Flaws Require Urgent Updates

• Vulnerability

CVE-2024-39825 and CVE-2024-39818: High-Risk Zoom Flaws Require Urgent Updates

Do Son August 13, 2024 0

Zoom has released a security bulletin addressing several vulnerabilities in its Workplace Apps and Rooms Clients, some...

Read More Read more about CVE-2024-39825 and CVE-2024-39818: High-Risk Zoom Flaws Require Urgent Updates

CVE-2024-7593 (CVSS 9.8): Authentication Bypass in Ivanti vTM: Proof of Concept Available

• Vulnerability

CVE-2024-7593 (CVSS 9.8): Authentication Bypass in Ivanti vTM: Proof of Concept Available

Do Son August 13, 2024 0

Ivanti has issued a security advisory addressing a critical vulnerability (CVE-2024-7593) in its Virtual Traffic Manager (vTM),...

Read More Read more about CVE-2024-7593 (CVSS 9.8): Authentication Bypass in Ivanti vTM: Proof of Concept Available

SAP Security Patch Day – August 2024: CVE-2024-41730 (CVSS 9.8) Vulnerability Exposes Systems to Full Control Exploit

• Vulnerability

SAP Security Patch Day – August 2024: CVE-2024-41730 (CVSS 9.8) Vulnerability Exposes Systems to Full Control Exploit

Do Son August 13, 2024 0

SAP has released its monthly security patches for August 2024, addressing a range of vulnerabilities across its...

Read More Read more about SAP Security Patch Day – August 2024: CVE-2024-41730 (CVSS 9.8) Vulnerability Exposes Systems to Full Control Exploit

Zabbix Addresses Multi Vulnerabilities, Including RCE CVE-2024-36461 (CVSS 9.1) Flaw

• Vulnerability

Zabbix Addresses Multi Vulnerabilities, Including RCE CVE-2024-36461 (CVSS 9.1) Flaw

Do Son August 13, 2024 0

Zabbix, the widely-used open-source monitoring solution, has released a series of security updates addressing critical vulnerabilities, most...

Read More Read more about Zabbix Addresses Multi Vulnerabilities, Including RCE CVE-2024-36461 (CVSS 9.1) Flaw