Vulnerability Archives • Page 49 of 192 • Cybersecurity News

China-Nexus Group Velvet Ant Exploits Cisco Zero-Day (CVE-2024-20399) CVE-2020-3259

China-Nexus Group Velvet Ant Exploits Cisco Zero-Day (CVE-2024-20399)

do son August 25, 2024

At the beginning of 2024, the Chinese group Velvet Ant exploited a patched zero-day vulnerability (CVE-2024-20399, CVSS...

CVE-2024-43399: Critical Zip Slip Vulnerability Discovered in Mobile Security Framework (MobSF)

do son August 25, 2024

A serious security flaw has been uncovered in Mobile Security Framework (MobSF), a widely-used open-source tool for...

CVE-2024-39717: Versa Networks Director GUI Flaw Under Active Attack, CISA Issues Urgent Patching Directive Versa Director GUI - CVE-2024-39717

CVE-2024-39717: Versa Networks Director GUI Flaw Under Active Attack, CISA Issues Urgent Patching Directive

do son August 23, 2024

In a recent cybersecurity alert, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has highlighted the active...

ALBeast Vulnerability Exposes Thousands of AWS Applications to Critical AuthN/AuthZ Bypass

do son August 23, 2024

A new configuration-based vulnerability, dubbed ALBeast, has been uncovered by Miggo Research, affecting a staggering number of...

Urgent Edge Security Update: Microsoft Patches Zero-day & RCE Vulnerabilities CVE-2023-36735

Urgent Edge Security Update: Microsoft Patches Zero-day & RCE Vulnerabilities

do son August 23, 2024

Microsoft has released an urgent security update for its Edge browser, patching a critical vulnerability that is...

Exploit for CVE-2024-38054 Released: Elevation of Privilege Flaw in Windows Kernel Streaming WOW Thunk CVE-2024-38054 exploit

Exploit for CVE-2024-38054 Released: Elevation of Privilege Flaw in Windows Kernel Streaming WOW Thunk

do son August 22, 2024

Security researcher ‘Frost’ has released proof-of-concept exploit code for the CVE-2024-38054 vulnerability, escalating concerns over a recently...

CVE-2024-6670 & CVE-2024-6671 Progress WhatsUp Gold

Critical Vulnerabilities Uncovered in Progress WhatsUp Gold (CVE-2024-6670 & CVE-2024-6671)

do son August 22, 2024

The Progress WhatsUp Gold team has recently disclosed multiple critical vulnerabilities affecting all versions of the software...

SonicWall Issues Urgent Patch for Critical Firewall Vulnerability (CVE-2024-40766) SonicWall Firewall CVE-2024-40766

SonicWall Issues Urgent Patch for Critical Firewall Vulnerability (CVE-2024-40766)

do son August 22, 2024

SonicWall, a prominent network security provider, has released a security advisory warning users of a critical vulnerability...

CVE-2024-38206: SSRF Vulnerability in Microsoft Copilot Studio Exposes Internal Infrastructure

do son August 22, 2024

Tenable Research has discovered a critical server-side request forgery (SSRF) vulnerability in Microsoft’s Copilot Studio, potentially allowing...

Escalating Cyber Threats: Q2 2024 Vulnerability Report WIREFIRE web shell

Escalating Cyber Threats: Q2 2024 Vulnerability Report

do son August 22, 2024

The cybersecurity landscape in Q2 2024 was marked by a notable increase in new vulnerabilities and exploitation...

CVE-2024-28000 in LiteSpeed Cache Plugin Actively Exploited: Over 30,000 Attacks Blocked in 24 Hours CVE-2024-28000 exploit

CVE-2024-28000 in LiteSpeed Cache Plugin Actively Exploited: Over 30,000 Attacks Blocked in 24 Hours

do son August 22, 2024

A critical security vulnerability in the widely used LiteSpeed Cache plugin for WordPress has come under active...

PoC Exploit Released for RCE 0-day CVE-2024-41992 in Arcadyan FMIMG51AX000J Model CVE-2024-41992 exploit

PoC Exploit Released for RCE 0-day CVE-2024-41992 in Arcadyan FMIMG51AX000J Model

do son August 21, 2024

A critical vulnerability, identified as CVE-2024-41992, has been discovered in the Arcadyan FMIMG51AX000J model, and potentially other...

SolarWinds Web Help Desk Hit by Critical Vulnerability (CVE-2024-28987) CVE-2024-28987 - SolarWinds Web Help Desk

SolarWinds Web Help Desk Hit by Critical Vulnerability (CVE-2024-28987)

do son August 21, 2024

SolarWinds has issued an urgent security advisory for its Web Help Desk (WHD) software, warning of a...

CVE-2024-43403: Kanister Vulnerability Opens Door to Cluster-Level Privilege Escalation Kanister - CVE-2024-43403

CVE-2024-43403: Kanister Vulnerability Opens Door to Cluster-Level Privilege Escalation

do son August 21, 2024

A critical vulnerability in the popular data protection workflow management tool, Kanister, has been discovered, potentially allowing...

Urgent Chrome Update: Active Zero-Day Exploit Detected (CVE-2024-7971) CVE-2024-10487 and CVE-2024-10488

Urgent Chrome Update: Active Zero-Day Exploit Detected (CVE-2024-7971)

do son August 21, 2024

Google has released an urgent Chrome update (version 128.0.6613.84/85) in response to an actively exploited zero-day vulnerability...