Tag: cve
-
CVE-2024-42028 gefährdet selbst gehostete Server – Kritische Sicherheitslücke in Ubiquiti Unifi Network Server
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/sicherheitsluecke-unifi-network-application-a-7a7c66c7a2f604b2024e59a1efe28507/
-
DEF CON 32 Outlook Unleashing RCE Chaos CVE 2024 30103
by
in SecurityNewsAuthors/Presenters: Michael Gorelik, Arnold Osipov Our sincere appreciation to DEF CON, and the Presenters/Authors for publishing their erudite DEF CON 32 content. Originating from the conference’s events located at the Las Vegas Convention Center; and via the organizations YouTube channel. Permalink First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/11/def-con-32-outlook-unleashing-rce-chaos-cve-2024-30103/
-
New Remcos RAT Variant Targets Windows Users Via Phishing
The new Remcos RAT variant identified in a new phishing campaign exploits CVE-2017-0199 via malicious Excel files First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/remcos-rat-variant-targets-windows/
-
Veeam Backup Replication exploit reused in new Frag ransomware attack
by
in SecurityNewsA critical flaw, tracked as CVE-2024-40711, in Veeam Backup & Replication (VBR) was also recently exploited to deploy Frag ransomware. In mid-October, Sophos researchers warned that ransomware operators are exploiting the critical vulnerabilityCVE-2024-40711in Veeam Backup & Replication to create rogue accounts and deploy malware. In early September 2024, Veeamreleasedsecurity updates to address multiple vulnerabilities impacting…
-
Understand CVE vs CVSS for Improved Cybersecurity
by
in SecurityNewsCWEs and CVEs have similarities and differences. Understanding both can help you keep your organization secure. Staying ahead of vulnerabilities is critical for any cybersecurity pro tasked with protecting an organization’s assets and data in a constantly shifting threat landscape. The Common Vulnerabilities and Exposures (CVE) system and the Common Vulnerability Scoring System (CVSS) are……
-
Oracle WebLogic Server Remote Code Execution Vulnerability (CVE-2024-21216)
by
in SecurityNewsOverview Recently, NSFOCUS CERT detected that Oracle issued a security announcement and fixed the deserialization vulnerability in WebLogic Server (CVE-2024-21216). Since WebLogic does not strictly filter incoming data through the T3/IIOP protocol, when the T3/IIOP protocol is enabled, an unauthenticated remote attacker sends a special request to the server through the T3/IIOP protocol to execute…The…
-
Ivanti zero-day vulnerabilities exploited in chained attack
by
in SecurityNewsThe new exploit chains targeting Ivanti Cloud Service Application customers are connected to a previously disclosed critical path traversal flaw, CVE-… First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366613041/Ivanti-zero-day-vulnerabilities-exploited-in-chained-attack
-
Neue Zero-Day-Spoofing-Schwachstelle in Windows – Microsofts Patch für CVE-2024-21320 ist nutzlos
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/sicherheitsluecke-cve-2024-21320-patch-leaking-ntlm-anmeldedaten-a-3b0ef2b5c786558a92ef33c2da2f4997/
-
Palo Alto Networks Expedition Vulnerability Exploited in Attacks, CISA Warns
by
in SecurityNewsCISA has added a Palo Alto Networks Expedition flaw tracked as CVE-2024-5910 to its Known Exploited Vulnerabilities Catalog. The post Palo Alto Networks Expedition Vulnerability Exploited in Attacks, CISA Warns appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/palo-alto-networks-expedition-vulnerability-exploited-in-attacks-cisa-warns/
-
CISA Warns of Critical Palo Alto Networks Vulnerability Exploited in Attacks
by
in SecurityNews
Tags: access, attack, cisa, control, cve, cyber, cybersecurity, exploit, flaw, infrastructure, network, tool, vulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) warns organizations of a critical vulnerability in Palo Alto Networks’ Expedition tool, which could lead to severe security breaches. The vulnerability, CVE-2024-5910, is classified as a >>Missing Authentication
-
CISA Alerts to Active Exploitation of Critical Palo Alto Networks Vulnerability
by
in SecurityNews
Tags: authentication, cisa, cve, cybersecurity, exploit, flaw, infrastructure, kev, network, tool, vulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a now-patched critical security flaw impacting Palo Alto Networks Expedition to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.The vulnerability, tracked as CVE-2024-5910 (CVSS score: 9.3), concerns a case of missing authentication in the Expedition migration tool that First seen on…
-
U.S. CISA adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog
by
in SecurityNewsU.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Palo Alto Expedition, Android, CyberPanel and Nostromo nhttpd bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog: CVE-2024-43093 this week, Google warned that the vulnerability CVE-2024-43093 in the Android OS is […]…
-
CVE-2024-38213: From Crumbs to Full Compromise in a Stealthy Cyber Attack
by
in SecurityNewsThreat actors are becoming increasingly creative, using vulnerabilities to infiltrate organizations in ways that might not immediately raise alarms. Veriti’s research team recently discovered a targeted email campaign utilizing CVE-2024-38213, cleverly disguised to appear associated with the Gas Infrastructure Europe (GIE) Annual Conference in Munich. By taking advantage of this vulnerability, attackers managed to bypass……
-
Android flaw CVE-2024-43093 may be under limited, targeted exploitation
by
in SecurityNewsGoogle warned that a vulnerability, tracked as CVE-2024-43093, in the Android OS is actively exploited in the wild. Threat actors are actively exploit… First seen on securityaffairs.com Jump to article: securityaffairs.com/170581/uncategorized/cve-2024-43093-android-flaw-actively-exploited.html
-
Telekom Fortigate: Cybervorfall mit Fortinet FortiManager-Schwachstelle CVE-2024-47575
by
in SecurityNewsIch stelle mal eine Information in den Blog, die mir von einem Leser zugegangen ist (danke dafür). Kunden, die Fortinet-Produkte von der Telekom mit administrieren lassen, sind vermutlich von einer Schwachstelle im FortiManager tangiert. Die Telekom informiert Kunden über einen … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/11/07/telekom-fortigate-cybervorfall-mit-fortinet-fortimanager-schwachstelle/
-
Google patches actively exploited Android vulnerability (CVE-2024-43093)
by
in SecurityNewsGoogle has delivered fixes for two vulnerabilities endangering Android users that >>may be under limited, targeted exploitation
-
Cisco Releases Patch for Critical URWB Vulnerability in Industrial Wireless Systems
by
in SecurityNewsCisco has released security updates to address a maximum severity security flaw impacting Ultra-Reliable Wireless Backhaul (URWB) Access Points that could permit unauthenticated, remote attackers to run commands with elevated privileges.Tracked as CVE-2024-20418 (CVS score: 10.0), the vulnerability has been described as stemming from a lack of input validation to the web-based management First seen…
-
Critical bug in Cisco UWRB access points allows attackers to run commands as root
by
in SecurityNewsCisco fixed a critical flaw in URWB access points, allowing attackers to run root commands, compromising industrial wireless automation security. Cisco has addressed a critical vulnerability, tracked as CVE-2024-20418, that could be exploited by unauthenticated, remote attackers to run commands with root privileges on vulnerable Ultra-Reliable Wireless Backhaul (URWB) access points used for industrial wireless…
-
Cisco Flaw Let Attackers Run Command as Root User
by
in SecurityNewsA critical vulnerability has been discovered in Cisco Unified Industrial Wireless Software, which affects Cisco Ultra-Reliable Wireless Backhaul (URWB) Access Points. This flaw tracked as CVE-2024-20418 enables unauthenticated, remote attackers to perform command injection attacks and execute arbitrary commands as the root user on the underlying operating system of the affected devices. Vulnerability Details […]…
-
CVE-2024-38094 Exploited: Attackers Gain Domain Access via Microsoft SharePoint Server
by
in SecurityNewsA recent report from Rapid7’s Incident Response team reveals a serious compromise of a Microsoft SharePoint server that enabled an attacker to gain en… First seen on securityonline.info Jump to article: securityonline.info/cve-2024-38094-exploited-attackers-gain-domain-access-via-microsoft-sharepoint-server/
-
Microsoft SharePoint RCE bug exploited to breach corporate network
by
in SecurityNews
Tags: breach, corporate, cve, exploit, microsoft, network, rce, remote-code-execution, vulnerabilityA recently disclosed Microsoft SharePoint remote code execution (RCE) vulnerability tracked as CVE-2024-38094 is being exploited to gain initial acces… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/microsoft-sharepoint-rce-bug-exploited-to-breach-corporate-network/
-
Fortinet Warns of Critical Vulnerability in FortiManager Under Active Exploitation
by
in SecurityNewsFortinet has confirmed details of a critical security flaw impacting FortiManager that has come under active exploitation in the wild.Tracked as CVE-2… First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/fortinet-warns-of-critical.html
-
PTZOptics cameras zero-days actively exploited in the wild
by
in SecurityNewsHackers are exploiting two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957, in PTZOptics cameras. Threat actors are attempting to… First seen on securityaffairs.com Jump to article: securityaffairs.com/170456/hacking/ptzoptics-cameras-flaws-exploited.html
-
Cybersecurity Vulnerability News: October 2024 CVE Roundup
by
in SecurityNewsKeep Your Organization Safe with Up-to-Date CVE Information Cybersecurity vulnerability warnings from the National Institute of Standards and Techno… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/11/cybersecurity-vulnerability-news-october-2024-cve-roundup/
-
Atlassian Confluence Vulnerability CVE-2023-22527 Exploited for Cryptomining
by
in SecurityNewsIn a recently disclosed report by Trend Micro, attackers were observed exploiting a vulnerability in Atlassian’s Confluence servers (CVE-2023-22527) t… First seen on securityonline.info Jump to article: securityonline.info/atlassian-confluence-vulnerability-cve-2023-22527-exploited-for-cryptomining/
-
Google fixed a critical vulnerability in Chrome browser
by
in SecurityNewsGoogle addressed a critical vulnerability in its Chrome browser, tracked as CVE-2024-10487, which was reported by Apple. Google has patched a critical… First seen on securityaffairs.com Jump to article: securityaffairs.com/170395/security/google-fixed-critical-chrome-flaw.html
-
QNAP fixed NAS backup zero-day demonstrated at Pwn2Own Ireland 2024
by
in SecurityNewsQNAP fixed critical zero-day CVE-2024-50388 which was demonstrated against a TS-464 NAS device during the Pwn2Own Ireland 2024 competition. QNAP addre… First seen on securityaffairs.com Jump to article: securityaffairs.com/170386/uncategorized/qnap-fixed-zero-day-cve-2024-50388-pwn2own-ireland-2024.html
-
Fog and Akira ransomware attacks exploit SonicWall VPN flaw CVE-2024-40766
by
in SecurityNewsFog and Akira ransomware operators are exploiting SonicWall VPN flaw CVE-2024-40766 to breach enterprise networks. Fog and Akira ransomware operators … First seen on securityaffairs.com Jump to article: securityaffairs.com/170359/cyber-crime/fog-akira-ransomware-sonicwall-vpn-flaw.html
-
CVE-2024-43573 Microsoft Windows Security Vulnerability October 2024
by
in SecurityNewsA critical vulnerability (CVE-2024-43573) in Microsoft Windows MSHTML platform allows for spoofing attacks. Affected Platform The vulnerability iden… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/cve-2024-43573-microsoft-windows-security-vulnerability-october-2024/
-
Cisco warns actively exploited CVE can lead to DoS attacks against VPN services
First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/cisco-exploited-cve-vpn/731216/