Vulnerability Archives • Page 89 of 190 • Daily CyberSecurity

Massive XSS Threat: Millions of Websites Vulnerable via OAuth Flaw OAuth vulnerabilities

Massive XSS Threat: Millions of Websites Vulnerable via OAuth Flaw

Ddos July 30, 2024

A critical vulnerability in the OAuth authentication standard has been discovered, potentially exposing millions of websites and...

CVE-2024-5670 (CVSS 9.8): Critical Vulnerability Exposes Softnext Email Systems to Attack

Ddos July 30, 2024

Taiwan’s CERT (Computer Emergency Response Team) has issued a critical warning regarding a severe vulnerability in Softnext’s...

Meta’s AI Safety Shield Prompt-Guard-86M Compromised: Simple Jailbreak Discovered Messenger Desktop EOL, Web Redirect Meta Political Ads, EU Regulation Meta EU Fine, DMA Compliance Meta AI, PlayAI Acquisition bypass AI security Meta AI EU Data Privacy

Messenger Desktop EOL, Web Redirect Meta Political Ads, EU Regulation Meta EU Fine, DMA Compliance Meta AI, PlayAI Acquisition bypass AI security Meta AI EU Data Privacy

Meta’s AI Safety Shield Prompt-Guard-86M Compromised: Simple Jailbreak Discovered

Ddos July 30, 2024

A newly unveiled safety measure for Meta’s artificial intelligence, Prompt-Guard-86M, designed to protect against malicious manipulation, has...

Philips VUE PACS Vulnerabilities Expose Healthcare Sector to Cyberattacks

Ddos July 30, 2024

Philips, a leading health technology company, recently disclosed multiple vulnerabilities in its Vue Picture Archiving and Communication...

Progress Software Issues Security Alert for MOVEit Transfer Users: CVE-2024-6576

Ddos July 30, 2024

Progress Software, the developer of the popular MOVEit Transfer managed file transfer solution, has warned customers about...

Network Equipment Under Siege: New Report Exposes Widespread Vulnerabilities firewall vulnerability

Network Equipment Under Siege: New Report Exposes Widespread Vulnerabilities

Ddos July 30, 2024

A new report by NetRise analyzes the software composition, vulnerabilities, and non-CVE risks present in corporate network...

Critical OpenSSH Vulnerability “regreSSHion” Threatens macOS Users

Ddos July 29, 2024

Apple has confirmed that macOS systems are vulnerable to a severe OpenSSH vulnerability dubbed “regreSSHion” (CVE-2024-6387). This...

Apple Extends Zero-Day Patch to Older Macs, Urges Immediate Update macOS Monterey vulnerability Apple Advanced Data Protection

Apple Extends Zero-Day Patch to Older Macs, Urges Immediate Update

Ddos July 29, 2024

Apple has expanded its security efforts by backporting a critical zero-day patch to older Mac models running...

CVE-2024-41714 (CVSS 9.9): Command Injection Flaw Discovered in Mitel MiCollab and MiVB SVI CVE-2024-41714 - CVE-2025-23092

CVE-2024-41714 (CVSS 9.9): Command Injection Flaw Discovered in Mitel MiCollab and MiVB SVI

Ddos July 29, 2024

Mitel, a leading provider of business communication solutions, has issued a critical security advisory (24-0021-001) regarding a...

CVE-2024-37085: VMware ESXi Vulnerability Exploited by Ransomware Gangs

Ddos July 29, 2024

Microsoft Threat Intelligence has disclosed a vulnerability (CVE-2024-37085) in VMware ESXi hypervisors, which is being actively exploited...

Three Security Flaws Discovered in Adtran 834-5 Wi-Fi 5 Service Delivery Gateway Adtran vulnerabilities

Three Security Flaws Discovered in Adtran 834-5 Wi-Fi 5 Service Delivery Gateway

Ddos July 29, 2024

A series of vulnerabilities have been uncovered in the widely deployed Adtran 834-5 Wi-Fi 5 Service Delivery...

Actively Exploited ServiceNow and Acronis Vulnerabilities Pose Significant Threats to Government and Private Sectors DELMIA Apriso RCE, CISA KEV Exploitation ServiceNow Vulnerabilities

DELMIA Apriso RCE, CISA KEV Exploitation ServiceNow Vulnerabilities

Actively Exploited ServiceNow and Acronis Vulnerabilities Pose Significant Threats to Government and Private Sectors

Ddos July 29, 2024

In a critical update from the U.S. Cybersecurity and Infrastructure Security Agency (CISA), three newly identified security...

ImageMagick AppImage Vulnerability Opens Door to Arbitrary Code Execution ImageMagick vulnerability

ImageMagick AppImage Vulnerability Opens Door to Arbitrary Code Execution

Ddos July 29, 2024

ImageMagick, a popular image processing library used in a wide range of industries, has issued a security...

Google Patches Workspace Authentication Flaw, Thwarting Account Takeover Attempts Google Workspace Authentication Flaw

Google Patches Workspace Authentication Flaw, Thwarting Account Takeover Attempts

Ddos July 29, 2024

Google has recently addressed a critical security flaw in its Google Workspace platform that allowed threat actors...

RaspAP Vulnerability: Root Access at Risk for Raspberry Pi Users CVE-2024-41637 exploit

RaspAP Vulnerability: Root Access at Risk for Raspberry Pi Users

Ddos July 29, 2024

Security researcher Zonifer has uncovered a critical vulnerability (CVE-2024-41637) in RaspAP, a popular open-source tool used to...

Critical Vulnerabilities Discovered in WinMatrix IT Management System WinMatrix vulnerabilities

Critical Vulnerabilities Discovered in WinMatrix IT Management System

Ddos July 28, 2024

Taiwan’s CERT (Computer Emergency Response Team) has issued a critical warning regarding two severe vulnerabilities [1, 2]...

Microsoft Edge Update Tackles 18 Vulnerabilities, Including Proprietary Fixes CVE-2024-39379

Microsoft Edge Update Tackles 18 Vulnerabilities, Including Proprietary Fixes

Ddos July 28, 2024

Microsoft has recently released a security update for its Edge browser, version 127.0.2651.74, addressing a total of...

CVE-2024-34693: Apache Superset Arbitrary File Read Vulnerability, PoC Published CVE-2024-34693 PoC

CVE-2024-34693: Apache Superset Arbitrary File Read Vulnerability, PoC Published

Ddos July 28, 2024

The Apache Software Foundation recently released security updates to address an arbitrary file read vulnerability (CVE-2024-34693) in...

Cisco Confirms Critical RADIUS Protocol Vulnerability in Multi Products: Patch Now!

Ddos July 28, 2024

Cisco has issued a security advisory for a critical vulnerability (CVE-2024-3596) in the RADIUS protocol, a widely...

CVE-2024-6922: SSRF Flaw Found in Automation Anywhere, 3,500+ Servers Exposed CVE-2024-6922 - Automation 360 vulnerability

CVE-2024-6922: SSRF Flaw Found in Automation Anywhere, 3,500+ Servers Exposed

Ddos July 28, 2024

A vulnerability, identified as CVE-2024-6922, has been discovered in Automation Anywhere Automation 360, a widely used robotic...

Critical Alert 1 Active Exploit Detected Today