privilege escalation Archives • Daily CyberSecurity

Arista Patches Critical Vulnerability in CloudVision ZTP With CVSS 10 Score CloudVision ZTP, CVE-2025-0505

Arista Patches Critical Vulnerability in CloudVision ZTP With CVSS 10 Score

Ddos May 10, 2025

Arista Networks has issued a critical security advisory for a newly discovered vulnerability – CVE-2025-0505—rated with a...

Arista Fixes Critical CloudVision Portal Vulnerability with CVSS 10 Score Arista CloudVision, CVE-2024-11186

Arista Fixes Critical CloudVision Portal Vulnerability with CVSS 10 Score

Ddos May 9, 2025

Arista Networks has released a critical security advisory detailing a severe vulnerability in its CloudVision Portal (CVP)...

Microsoft Patches Four Critical Azure and Power Apps Vulnerabilities, Including CVSS 10 Privilege Escalation

Ddos May 9, 2025

Microsoft has addressed a cluster of critical vulnerabilities affecting several of its core cloud services—including Azure Automation,...

Zero-Day CLFS Vulnerability (CVE-2025-29824) Exploited in Ransomware Attacks UNC5337 - CVE-2022-47945 Safe{Wallet} hack Fortinet vulnerability, CVE-2024-21762, FortiGate attack Balloonfly, Play ransomware

UNC5337 - CVE-2022-47945 Safe{Wallet} hack Fortinet vulnerability, CVE-2024-21762, FortiGate attack Balloonfly, Play ransomware

Zero-Day CLFS Vulnerability (CVE-2025-29824) Exploited in Ransomware Attacks

Ddos May 7, 2025

Symantec’s Threat Hunter Team has uncovered a sophisticated attack involving a zero-day privilege escalation vulnerability in Microsoft’s...

MediaTek May 2025 Security Bulletin: Chipset Vulnerabilities Disclosed MediaTek, modem vulnerabilities

MediaTek May 2025 Security Bulletin: Chipset Vulnerabilities Disclosed

Ddos May 5, 2025

The MediaTek Product Security Bulletin for May 2025 highlights multiple security vulnerabilities affecting a wide range of...

CVE-2025-2774: Webmin Vulnerability Allows Root-Level Privilege Escalation CVE-2024-12828 CVE-2025-2774 Webmin vulnerability

CVE-2025-2774: Webmin Vulnerability Allows Root-Level Privilege Escalation

Ddos May 4, 2025

Webmin, a popular web-based system administration tool used to manage Unix-like servers and various services with approximately...

Rancher Releases Patch for CVE-2024-22031 Privilege Escalation Vulnerability Rancher CVE-2024-22031 Privilege Escalation

Rancher Releases Patch for CVE-2024-22031 Privilege Escalation Vulnerability

Ddos April 30, 2025

The SUSE Rancher Security Team has issued a security advisory regarding a newly disclosed vulnerability affecting multiple...

CVE-2025-21756: How a Tiny Linux Kernel Bug Led to a Full Root Exploit, PoC Releases

Ddos April 29, 2025

In a recently analysis, security researcher Michael Hoefler has exposed the full depth of CVE-2025-21756, a Use-After-Free...

Microsoft’s Patch for Symlink Exploit Introduces New Windows Update DoS Flaw inetpub vulnerability, Windows Update

Microsoft’s Patch for Symlink Exploit Introduces New Windows Update DoS Flaw

Ddos April 25, 2025

Previously, in an effort to patch security vulnerability (CVE-2025–21204) within the Windows operating system, Microsoft began creating...

IBM HMC Vulnerable to Privilege Escalation Attacks IBM HMC Privilege Escalation

IBM HMC Vulnerable to Privilege Escalation Attacks

Ddos April 23, 2025

Two security vulnerabilities have been disclosed in the IBM Hardware Management Console (HMC) for Power Systems, both...

“ConfusedComposer”: GCP Composer Vulnerability Allows Privilege Escalation GCP Composer Privilege Escalation

“ConfusedComposer”: GCP Composer Vulnerability Allows Privilege Escalation

Ddos April 23, 2025

Tenable Research has identified a now-patched privilege-escalation vulnerability in Google Cloud Platform (GCP) dubbed “Confused Composer”. The...

CVE-2025-21204: SYSTEM-Level Privilege Escalation in Windows Update Stack Exposed, PoC Released

Ddos April 22, 2025

Security researcher Elli Shlomo published the technical details and a proof-of-concept exploit code for CVE-2025-21204, a severe...

FOG Ransomware Campaign Targets Multiple Sectors with Phishing and Payload Obfuscation

Ddos April 22, 2025

Trend Micro has identified a recent campaign involving FOG ransomware, demonstrating the adaptability of cybercriminals in their...

Critical CVE-2025-1976 Vulnerability in Brocade Fabric OS Actively Exploited Brocade Fabric OS, CVE-2025-1976

Critical CVE-2025-1976 Vulnerability in Brocade Fabric OS Actively Exploited

Ddos April 22, 2025

A critical security vulnerability has been identified in Brocade Fabric OS, posing a significant risk to affected...

CVE-2024-53141: Linux Kernel Flaw Enables Privilege Escalation, PoC Releases

Ddos April 18, 2025

Security researcher published the technical details and a proof-of-concept exploit for a vulnerability in Linux kernel—CVE-2024-53141, having...