A severe command injection vulnerability (CVE-2024-56334) has been identified in the widely used Node.js system information package,...
privilege escalation
Sophos has announced the resolution of three critical security vulnerabilities affecting its Sophos Firewall product, a widely...
An independent researcher has uncovered a critical vulnerability in the ksthunk.sys driver, a component of the Windows...
In October 2024, Huntress analysts uncovered a previously unreported ransomware strain, dubbed SafePay, deployed across two distinct...
A high-severity vulnerability has been discovered in the Common Log File System (CLFS) driver in Windows 11,...
Security researchers have disclosed the technical details and proof-of-concept (PoC) exploit codes for three vulnerabilities (CVE-2023-4206, CVE-2023-4207,...
Cybersecurity researchers have uncovered a privilege escalation vulnerability in the Cloud Functions service on the Google Cloud...
OpenVPN, a leading provider of virtual private network (VPN) solutions, has refuted claims of zero-day vulnerabilities in...
GTFONow Automatic privilege escalation on Unix systems by exploiting misconfigured setuid/setgid binaries, capabilities, and sudo permissions. Designed...
Teleport, a renowned platform offering centralized authentication and auditing for servers and cloud applications, has recently found...
On the 12th of December 2023, SAP Security Patch Day published 15 new Security Notes alongside updates...
In the shadowy realm of cybersecurity, a new predator emerges from within, turning the very defenses meant...
In the interconnected world of software and cybersecurity, even the most seemingly innocuous applications can harbor dangerous...
DavRelayUp A quick and dirty port of KrbRelayUp with modifications to allow for NTLM relay from webdav to LDAP...
PrivKit PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on...