vulnerability

Exploit code for critical GitLab auth bypass flaw released (CVE-2024-45409)

authentication, Don't miss, exploit, GitLab, Hot stuff, News, PoC, ProjectDiscovery, security update, Synactiv, vulnerability /

Exploit code for critical GitLab auth bypass flaw released (CVE-2024-45409) 2024-10-09 at 15:49 By Zeljka Zorz If you run a self-managed GitLab installation with configured SAML-based authentication and you haven’t upgraded it since mid-September, do it now, because security researchers have published an analysis of CVE-2024-45409 and an exploit script that may help attackers gain […]

Exploit code for critical GitLab auth bypass flaw released (CVE-2024-45409) Read More »

Security Updates for Adobe FrameMaker: Addressing Critical Vulnerabilities

Abode, Adobe Commerce, Adobe FrameMaker, vulnerability /

Security Updates for Adobe FrameMaker: Addressing Critical Vulnerabilities 2024-10-09 at 14:02 By dakshsharma16 Overview Adobe has released new updates across several of its products, including Adobe FrameMaker, Adobe Substance 3D Printer, Adobe Commerce and Magento Open Source, Adobe Dimension, Adobe Animate, Adobe Lightroom, Adobe InCopy, Adobe InDesign, and Adobe Substance 3D Stager. The primary reason

Security Updates for Adobe FrameMaker: Addressing Critical Vulnerabilities Read More »

Microsoft patches two zero-days exploited in the wild (CVE-2024-43573, CVE-2024-43572)

0-day, CVE, Don't miss, Hot stuff, Microsoft, NetSPI, News, Patch Tuesday, security update, Tenable, Trend Micro, vulnerability, Windows /

Microsoft patches two zero-days exploited in the wild (CVE-2024-43573, CVE-2024-43572) 2024-10-08 at 22:49 By Zeljka Zorz For October 2024 Patch Tuesday, Microsoft has released fixes for 117 security vulnerabilities, including two under active exploitation: CVE-2024-43573, a spoofing bug affecting the Windows MSHTML Platform, and CVE-2024-43572, a remote code execution flaw in the Microsoft Management Console

Microsoft patches two zero-days exploited in the wild (CVE-2024-43573, CVE-2024-43572) Read More »

Qualcomm zero-day under targeted exploitation (CVE-2024-43047)

chip, CVE, Don't miss, Google, Hot stuff, News, Qualcomm, vulnerability /

Qualcomm zero-day under targeted exploitation (CVE-2024-43047) 2024-10-08 at 15:31 By Zeljka Zorz An actively exploited zero-day vulnerability (CVE-2024-43047) affecting dozens of Qualcomm’s chipsets has been patched by the American semiconductor giant. About CVE-2024-43047 On Monday, Qualcomm has confirmed patches for 20 vulnerabilities affecting both proprietary and open source software running on its various chipsets. Among

Qualcomm zero-day under targeted exploitation (CVE-2024-43047) Read More »

Cyble Honeypot Sensors Detect D-Link, Cisco, QNAP and Linux Attacks

Cisco, Linux, Malware, vulnerability /

Cyble Honeypot Sensors Detect D-Link, Cisco, QNAP and Linux Attacks 2024-10-08 at 13:49 By dakshsharma16 Key Takeaways Overview Cyble’s Vulnerability Intelligence unit last week detected numerous exploit attempts, malware intrusions, phishing campaigns, and brute-force attacks via its network of Honeypot sensors. In the week of Sept. 25-Oct. 1, Cyble researchers identified several recent active exploits, including new attacks against a number of

Cyble Honeypot Sensors Detect D-Link, Cisco, QNAP and Linux Attacks Read More »

CISA Flags Multiple Critical Vulnerabilities Exposed Across Major Platforms

CVE-2024-45519, DrayTek, Ivanti, SAP, vulnerability, Zimbra Collaboration /

CISA Flags Multiple Critical Vulnerabilities Exposed Across Major Platforms 2024-10-08 at 09:17 By dakshsharma16 The Cybersecurity and Infrastructure Security Agency (CISA) has added multiple vulnerabilities to its known Exploited Vulnerabilities (KEV) catalog. A total of six vulnerabilities have been identified across various products, including Zimbra Collaboration, Ivanti, D-Link, DrayTek, GPAC, and SAP. Notably, these vulnerabilities

CISA Flags Multiple Critical Vulnerabilities Exposed Across Major Platforms Read More »

Linux systems targeted with stealthy “Perfctl” cryptomining malware

Aqua Security, cryptojacking, Don't miss, Hot stuff, Linux, Malware, misconfiguration, News, rootkits, vulnerability /

Linux systems targeted with stealthy “Perfctl” cryptomining malware 2024-10-07 at 15:46 By Zeljka Zorz Thousands of Linux systems are likely infected with the highly elusive and persistent “perfctl” (or “perfcc“) cryptomining malware and many others still could be at risk of getting compromised, Aqua Security researchers revealed last week. “In all the attacks observed, the

Linux systems targeted with stealthy “Perfctl” cryptomining malware Read More »

Weekly IT Vulnerability Report: Cyble Urges Fixes for NVIDIA, Adobe, CUPS

CUPS, dark web, NVIDIA Corporation, vulnerability /

Weekly IT Vulnerability Report: Cyble Urges Fixes for NVIDIA, Adobe, CUPS 2024-10-04 at 18:01 By dakshsharma16 Key Takeaways Overview Cyble Research & Intelligence Labs (CRIL) investigated 19 vulnerabilities from Sept. 25 to Oct. 1 and flagged eight of them in four products for security teams to prioritize. CRIL researchers also observed 10 exploits discussed on

Weekly IT Vulnerability Report: Cyble Urges Fixes for NVIDIA, Adobe, CUPS Read More »

Four Critical Vulnerabilities Added to CISA’s Exploited Vulnerabilities Catalog

CISA, vulnerability /

Four Critical Vulnerabilities Added to CISA’s Exploited Vulnerabilities Catalog 2024-10-04 at 16:18 By dakshsharma16 Overview The Cybersecurity and Infrastructure Security Agency (CISA) has recently added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, signaling ongoing active exploitation. These vulnerabilities present significant risks for organizations that rely on the affected technologies. CISA’s update highlights several

Four Critical Vulnerabilities Added to CISA’s Exploited Vulnerabilities Catalog Read More »

Critical Ivanti Endpoint Manager flaw exploited (CVE-2024-29824)

CISA, Don't miss, endpoint management, enterprise, Hot stuff, Ivanti, News, vulnerability /

Critical Ivanti Endpoint Manager flaw exploited (CVE-2024-29824) 2024-10-03 at 18:31 By Zeljka Zorz CVE-2024-29824, an unauthenticated SQL Injection vulnerability in Ivanti Endpoint Manager (EPM) appliances, is being exploited by attackers, the Cybersecurity and Infrastructure Security Agency has confirmed by adding the bug to its Known Exploited Vulnerabilities catalog. Ivanti did the same by updating the

Critical Ivanti Endpoint Manager flaw exploited (CVE-2024-29824) Read More »

CUPS vulnerabilities could be abused for DDoS attacks

Akamai, DDoS, Don't miss, enterprise, Hot stuff, Linux, News, vulnerability /

CUPS vulnerabilities could be abused for DDoS attacks 2024-10-03 at 16:18 By Zeljka Zorz While the Common UNIX Printing System (CUPS) vulnerabilities recently disclosed by researcher Simone “evilsocket” Margaritelli are not easily exploited for remote command execution on vulnerable systems, they could offer more opportunity to attackers who engage in DDoS attacks, Akamai threat researchers

CUPS vulnerabilities could be abused for DDoS attacks Read More »

Zimbra Remote Code Execution Vulnerability Under Active Attack

vulnerability /

Zimbra Remote Code Execution Vulnerability Under Active Attack 2024-10-03 at 11:31 By Paul Shread Key Takeaways Overview A critical vulnerability (CVE-2024-45519) in Zimbra’s postjournal service that allows unauthenticated remote command execution is under active attack. The vulnerability allows unsanitized user input to be passed to popen, enabling attackers to inject arbitrary commands. Patched versions add input sanitization and

Zimbra Remote Code Execution Vulnerability Under Active Attack Read More »

Critical Zimbra RCE vulnerability under mass exploitation (CVE-2024-45519)

CVE, Don't miss, exploit, Hot stuff, News, PoC, ProjectDiscovery, Proofpoint, Synacor, vulnerability /

Critical Zimbra RCE vulnerability under mass exploitation (CVE-2024-45519) 2024-10-02 at 14:16 By Zeljka Zorz Attackers are actively exploiting CVE-2024-45519, a critical Zimbra vulnerability that allows them to execute arbitrary commands on vulnerable installations. Proofpoint’s threat researchers say that the attacks started on September 28 – several weeks after Zimbra developers released patches for CVE-2024-45519 and

Critical Zimbra RCE vulnerability under mass exploitation (CVE-2024-45519) Read More »

Weekly IT Vulnerability Report: Cyble Urges Fixes for Ivanti, GitLab and Microchip

GitLab, Ivanti, Microchip, vulnerability /

Weekly IT Vulnerability Report: Cyble Urges Fixes for Ivanti, GitLab and Microchip 2024-10-01 at 09:31 By dakshsharma16 Key Takeaways Overview Cyble Research and Intelligence Labs (CRIL) researchers this week investigated 15 vulnerabilities of particular significance for IT teams, and identified three that merit high-priority patching. Cyble’s Sept. 18-24 Weekly Vulnerability Insights Report for subscribers also

Weekly IT Vulnerability Report: Cyble Urges Fixes for Ivanti, GitLab and Microchip Read More »

Cyble Honeypot Sensors Detect WordPress Plugin Attack, New Banking Trojan

Banking Trojan, Honeypot, vulnerability, WordPress /

Cyble Honeypot Sensors Detect WordPress Plugin Attack, New Banking Trojan 2024-10-01 at 08:46 By dakshsharma16 Key Takeaways Overview Cyble’s Threat Hunting service this week discovered multiple instances of exploit attempts, malware intrusions, financial fraud, and brute-force attacks via its network of Honeypot sensors. In the week of Sept. 18-24, Cyble researchers identified five recent active exploits, including new

Cyble Honeypot Sensors Detect WordPress Plugin Attack, New Banking Trojan Read More »

CUPS vulnerabilities affecting Linux, Unix systems can lead to RCE

CVE, Don't miss, Hot stuff, Linux, News, PoC, Rapid7, Red Hat, Tenable, vulnerability /

CUPS vulnerabilities affecting Linux, Unix systems can lead to RCE 2024-09-27 at 13:31 By Zeljka Zorz After much hyping and following prematurely leaked information by a third party, security researcher Simone Margaritelli has released details about four zero-day vulnerabilities in the Common UNIX Printing System (CUPS) that can be abused by remote, unauthenticated attackers to

CUPS vulnerabilities affecting Linux, Unix systems can lead to RCE Read More »

Remote Code Execution, DoS Vulnerabilities Patched in OpenPLC

ICS, ICS/OT, OpenPLC, PLC, vulnerability /

Remote Code Execution, DoS Vulnerabilities Patched in OpenPLC 2024-09-26 at 18:16 By Eduard Kovacs Critical and high-severity vulnerabilities that can be exploited for DoS attacks and remote code execution have been patched in OpenPLC. The post Remote Code Execution, DoS Vulnerabilities Patched in OpenPLC appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Remote Code Execution, DoS Vulnerabilities Patched in OpenPLC Read More »

Cisco Patches High-Severity Vulnerabilities in IOS Software

Cisco, Vulnerabilities, vulnerability /

Cisco Patches High-Severity Vulnerabilities in IOS Software 2024-09-26 at 16:16 By Ionut Arghire Cisco has released patches for seven high-severity vulnerabilities affecting products running IOS and IOS XE software. The post Cisco Patches High-Severity Vulnerabilities in IOS Software appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Cisco Patches High-Severity Vulnerabilities in IOS Software Read More »

The number of Android memory safety vulnerabilities has tumbled, and here’s why

Android, code, cybersecurity, Don't miss, Hot stuff, News, programming, software development, vulnerability /

The number of Android memory safety vulnerabilities has tumbled, and here’s why 2024-09-26 at 15:32 By Zeljka Zorz Google’s decision to write new code into Android’s codebase in Rust, a memory-safe programming language, has resulted in a significant drop in memory safety vulnerabilities, despite old code (written in C/C++) not having been rewritten. The number

The number of Android memory safety vulnerabilities has tumbled, and here’s why Read More »

Urgent Security Advisory: CVE-2024-7593 Exposes Ivanti VTM to Attacks

CVE-2024-7593, Ivanti, vulnerability /

Urgent Security Advisory: CVE-2024-7593 Exposes Ivanti VTM to Attacks 2024-09-25 at 20:16 By dakshsharma16 Overview The Cybersecurity Infrastructure and Security Agency (CISA) and Ivanti have shared an update advisory highlighting a critical authentication bypass vulnerability, CVE-2024-7593, in Ivanti’s Virtual Traffic Manager (VTM). This vulnerability has garnered attention due to its inclusion in the CISA’s Known

Urgent Security Advisory: CVE-2024-7593 Exposes Ivanti VTM to Attacks Read More »

Scroll to Top