Vulnerability

Ghostscript Patches Multiple Vulnerabilities, Potential for Arbitrary Code Execution

• Vulnerability

Ghostscript Patches Multiple Vulnerabilities, Potential for Arbitrary Code Execution

Ddos June 20, 2024 0

Ghostscript, a widely-used open-source software for rendering and converting PostScript and PDF files, has released a critical...

Read More Read more about Ghostscript Patches Multiple Vulnerabilities, Potential for Arbitrary Code Execution

PoC Published for Critical Nvidia Triton Inference Server Vulnerabilities

• Vulnerability

PoC Published for Critical Nvidia Triton Inference Server Vulnerabilities

Ddos June 20, 2024 0

Cybersecurity researcher Zhiniang Peng published the technical details and proof-of-concept for two serious vulnerabilities in NVIDIA’s widely...

Read More Read more about PoC Published for Critical Nvidia Triton Inference Server Vulnerabilities

Fortra Warns: Hard-Coded Password Vulnerability in FileCatalyst – CVE-2024-5275

• Vulnerability

Fortra Warns: Hard-Coded Password Vulnerability in FileCatalyst – CVE-2024-5275

Ddos June 19, 2024 0

Fortra, the developer of the popular FileCatalyst file transfer solutions, has issued a critical security advisory warning...

Read More Read more about Fortra Warns: Hard-Coded Password Vulnerability in FileCatalyst – CVE-2024-5275

GreyNoise Warns of Active Exploitation Attempts Targeting SolarWinds Serv-U Vulnerability (CVE-2024-28995)

• Cyber Security
• Vulnerability

GreyNoise Warns of Active Exploitation Attempts Targeting SolarWinds Serv-U Vulnerability (CVE-2024-28995)

Ddos June 19, 2024 0

On June 5, 2024, SolarWinds issued a critical advisory regarding a newly discovered path-traversal vulnerability in Serv-U,...

Read More Read more about GreyNoise Warns of Active Exploitation Attempts Targeting SolarWinds Serv-U Vulnerability (CVE-2024-28995)

China-Linked UNC3886: Mandiant Reveals Extensive Espionage TTPs

• Cyber Security
• Malware
• Vulnerability

China-Linked UNC3886: Mandiant Reveals Extensive Espionage TTPs

Ddos June 19, 2024 0

Cybersecurity firm Mandiant has unveiled a comprehensive report detailing the extensive cyber espionage campaign of UNC3886, a...

Read More Read more about China-Linked UNC3886: Mandiant Reveals Extensive Espionage TTPs

CVE-2023-32191 (CVSS 10) in Rancher Kubernetes Engine Exposes Sensitive Credentials

• Vulnerability

CVE-2023-32191 (CVSS 10) in Rancher Kubernetes Engine Exposes Sensitive Credentials

Ddos June 18, 2024 0

A critical vulnerability has been discovered in the Rancher Kubernetes Engine (RKE), a widely used Kubernetes distribution...

Read More Read more about CVE-2023-32191 (CVSS 10) in Rancher Kubernetes Engine Exposes Sensitive Credentials

CVE-2024-5671 (CVSS 9.8) Exposes Trellix Intrusion Prevention System to Remote Attacks

• Vulnerability

CVE-2024-5671 (CVSS 9.8) Exposes Trellix Intrusion Prevention System to Remote Attacks

Ddos June 18, 2024 0

Trellix, a prominent cybersecurity provider, has issued urgent patches for two critical vulnerabilities discovered in its Intrusion...

Read More Read more about CVE-2024-5671 (CVSS 9.8) Exposes Trellix Intrusion Prevention System to Remote Attacks

CVE-2024-37079, CVE-2024-37080: Critical VMware vCenter Server Vulnerabilities Demand Immediate Action

• Vulnerability

CVE-2024-37079, CVE-2024-37080: Critical VMware vCenter Server Vulnerabilities Demand Immediate Action

Ddos June 18, 2024 0

In a security advisory released today, Broadcom revealed multiple critical vulnerabilities in VMware vCenter Server, the widely...

Read More Read more about CVE-2024-37079, CVE-2024-37080: Critical VMware vCenter Server Vulnerabilities Demand Immediate Action

CVE-2024-37902 (CVSS 10): Critical Flaw in Deep Java Library Opens Door to System Takeover

• Vulnerability

CVE-2024-37902 (CVSS 10): Critical Flaw in Deep Java Library Opens Door to System Takeover

Ddos June 17, 2024 0

A critical vulnerability (CVE-2024-37902) has been discovered in the Deep Java Library (DJL), a widely-used open-source framework...

Read More Read more about CVE-2024-37902 (CVSS 10): Critical Flaw in Deep Java Library Opens Door to System Takeover

CVE-2024-6047 (CVSS 9.8): Urgent Security Risk for GeoVision Users

• Vulnerability

CVE-2024-6047 (CVSS 9.8): Urgent Security Risk for GeoVision Users

Ddos June 17, 2024 0

Taiwan’s CERT has issued a critical security warning regarding a severe vulnerability (CVE-2024-6047) affecting various end-of-life (EOL)...

Read More Read more about CVE-2024-6047 (CVSS 9.8): Urgent Security Risk for GeoVision Users

XenForo Issues Urgent Security Patch to Thwart Remote Code Execution Threat

• Vulnerability

XenForo Issues Urgent Security Patch to Thwart Remote Code Execution Threat

Ddos June 17, 2024 0

Popular forum software platform, XenForo, has released an urgent security patch to address a critical vulnerability that...

Read More Read more about XenForo Issues Urgent Security Patch to Thwart Remote Code Execution Threat

Pandora FMS Reveals High-Risk Security Flaws Affecting 50,000+ Installations

• Vulnerability

Pandora FMS Reveals High-Risk Security Flaws Affecting 50,000+ Installations

Ddos June 17, 2024 0

Pandora FMS, the renowned open-source monitoring application with over 50,000 installations globally, has issued a critical security...

Read More Read more about Pandora FMS Reveals High-Risk Security Flaws Affecting 50,000+ Installations

D-Link Routers Exposed: Critical Backdoor Vulnerability Discovered (CVE-2024-6045)

• Vulnerability

D-Link Routers Exposed: Critical Backdoor Vulnerability Discovered (CVE-2024-6045)

Ddos June 16, 2024 0

Taiwan’s CERT (Computer Emergency Response Team) has issued a critical security advisory regarding a high-severity vulnerability (CVE-2024-6045)...

Read More Read more about D-Link Routers Exposed: Critical Backdoor Vulnerability Discovered (CVE-2024-6045)

BlastRADIUS Vulnerability (CVE-2024-3596): Flaw in RADIUS Protocol Exposes Networks to Attack

• Vulnerability

BlastRADIUS Vulnerability (CVE-2024-3596): Flaw in RADIUS Protocol Exposes Networks to Attack

Ddos June 16, 2024 0

A newly identified vulnerability (CVE-2024-3596), dubbed “BlastRADIUS,” has been uncovered in the RADIUS protocol, posing a critical...

Read More Read more about BlastRADIUS Vulnerability (CVE-2024-3596): Flaw in RADIUS Protocol Exposes Networks to Attack

CVE-2024-3105 (CVSS 9.9) in Woody Code Snippets Plugin Threatens 70,000+ WordPress Sites

• Vulnerability

CVE-2024-3105 (CVSS 9.9) in Woody Code Snippets Plugin Threatens 70,000+ WordPress Sites

Ddos June 16, 2024 0

A critical security vulnerability has been discovered in the Woody Code Snippets plugin for WordPress, a popular...

Read More Read more about CVE-2024-3105 (CVSS 9.9) in Woody Code Snippets Plugin Threatens 70,000+ WordPress Sites

Critical Security Vulnerability CVE-2024-3912 (CVSS 9.8) Hits ASUS Routers

• Vulnerability

Critical Security Vulnerability CVE-2024-3912 (CVSS 9.8) Hits ASUS Routers

Ddos June 16, 2024 0

Taiwan’s CERT has issued a critical security alert regarding a severe vulnerability (CVE-2024-3912) found in multiple ASUS...

Read More Read more about Critical Security Vulnerability CVE-2024-3912 (CVSS 9.8) Hits ASUS Routers

ASUS Issues Critical Security Update for Router Vulnerability CVE-2024-3080 (CVSS 9.8)

• Vulnerability

ASUS Issues Critical Security Update for Router Vulnerability CVE-2024-3080 (CVSS 9.8)

Ddos June 16, 2024 0

ASUS has released an urgent firmware update to address a critical security vulnerability affecting seven of its...

Read More Read more about ASUS Issues Critical Security Update for Router Vulnerability CVE-2024-3080 (CVSS 9.8)

CVE-2024-26229: Windows Elevation of Privilege Flaw Weaponized, PoC Exploit on GitHub

• Vulnerability

CVE-2024-26229: Windows Elevation of Privilege Flaw Weaponized, PoC Exploit on GitHub

Ddos June 14, 2024 0

Security researchers are raising the alarm as proof-of-concept (PoC) exploit code targeting a recently patched high-severity vulnerability...

Read More Read more about CVE-2024-26229: Windows Elevation of Privilege Flaw Weaponized, PoC Exploit on GitHub

AMD Processors Vulnerable to Serious SPI Lock Bypass Flaw (CVE-2022-23829)

• Vulnerability

AMD Processors Vulnerable to Serious SPI Lock Bypass Flaw (CVE-2022-23829)

Ddos June 13, 2024 0

A high-severity vulnerability, identified as CVE-2022-23829 (CVSS 8.2), has been discovered in various AMD processors, potentially impacting...

Read More Read more about AMD Processors Vulnerable to Serious SPI Lock Bypass Flaw (CVE-2022-23829)

North Korean Hackers Exploit Old Office Flaw to Deploy Keylogger

• Cyber Security
• Vulnerability

North Korean Hackers Exploit Old Office Flaw to Deploy Keylogger

Ddos June 13, 2024 0

AhnLab Security Emergency response Center (ASEC) has disclosed a new cyberespionage campaign attributed to the North Korean...

Read More Read more about North Korean Hackers Exploit Old Office Flaw to Deploy Keylogger