Tag: vulnerability
-
macOS HM Surf flaw in TCC allows bypass Safari privacy settings
Microsoft disclosed a flaw in the macOS Apple’s Transparency, Consent, and Control (TCC) framework that could allow it to bypass privacy settings and access user data. Microsoft discovered a vulnerability, tracked as CVE-2024-44133 and code-named ‘HM Surf’, in Apple’s Transparency, Consent, and Control (TCC) framework in macOS. Apple’s Transparency, Consent, and Control framework in macOS…
-
SolarWinds Web Help Desk Vulnerability Allows Remote Code Execution
A critical vulnerability in SolarWinds Web Help Desk has been identified. It could allow attackers to execute arbitrary code on affected systems. The vulnerability tracked as CVE-2024-28988 was discovered by the Trend Micro Zero Day Initiative (ZDI) team during their investigation into a previous security flaw. CVE-2024-28988: Java Deserialization Flaw The vulnerability stems from a…
-
The State of SaaS Security 2024 Report – Studie zur Sicherheit von SaaS zeigt Schwachstellen auf
First seen on security-insider.de Jump to article: www.security-insider.de/herausforderungen-loesungen-saas-sicherheit-2024-a-18e5af3e9443d64b5ef45ccd975a2aac/
-
macOS-Schwachstelle umgeht Datenschutzkontrollen im Safari-Browser
Die macOS-Schwachstelle “HM Surf” erschüttert das Vertrauen in die grundlegenden Sicherheitsmechanismen von Apple. First seen on tarnkappe.info Jump to article: tarnkappe.info/artikel/it-sicherheit/macos-schwachstelle-umgeht-datenschutzkontrollen-im-safari-browser-302991.html
-
Critical Vulnerability in Kubernetes Image Builder Exposes Nodes to Root Access
A new security risk has emerged in the Kubernetes Image Builder, posing a critical threat to organizations that utilize this tool for managing their containerized environments. The Kubernetes Image Builder vulnerability tracked as CVE-2024-9486, has been assigned a CVSS score of 9.8, indicating its severity. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/kubernetes-image-builder-vulnerability/
-
Microsoft Reveals macOS Vulnerability that Bypasses Privacy Controls in Safari Browser
Microsoft has disclosed details about a now-patched security flaw in Apple’s Transparency, Consent, and Control (TCC) framework in macOS that has likely come under exploitation to get around a user’s privacy preferences and access data.The shortcoming, codenamed HM Surf by the tech giant, is tracked as CVE-2024-44133. It was addressed by Apple as part of…
-
CVE-2024-9381 Ivanti CSA Security Vulnerability October 2024
A critical vulnerability (CVE-2024-9381) in Ivanti’s Cloud Services Appliance allows attackers to bypass security measures and execute arbitrary code. Affected Platform CVE-2024-9381 impacts Ivanti’s Cloud Services Appliance (CSA), a critical component used in secure remote access for enterprise environments, affecting CSA versions prior to the latest patch. Ivanti CSA provides a secure bridge for cloud……
-
VMware fixes high-severity SQL injection flaw CVE-2024-38814 in HCX
VMware fixes a high-severity SQL injection flaw in HCX allowing non-admin users to remotely execute code on the HCX manager. VMWare warns to address a remote code execution vulnerability, tracked as CVE-2024-38814 (CVSS score of 8.8), in its HCX application mobility platform. The vulnerability is an authenticated SQL injection vulnerability in HCX, it was privately…
-
Critical Kubernetes Image Builder Vulnerability Exposes Nodes to Root Access Risk
A critical security flaw has been disclosed in the Kubernetes Image Builder that, if successfully exploited, could be abused to gain root access under certain circumstances.The vulnerability, tracked as CVE-2024-9486 (CVSS score: 9.8), has been addressed in version 0.1.38. The project maintainers acknowledged Nicolai Rybnikar for discovering and reporting the vulnerability.”A security issue First seen…
-
Critical Veeam Vulnerability CVE-2024-40711 Exploited by Ransomware Groups
Veeam has addressed a severe vulnerability in its widely utilized Backup & Replication tool, CVE-2024-40711. This critical flaw has a staggering Common Vulnerability Scoring System (CVSS) score of 9.8. Ransomware gangs have already begun exploiting this Veeam vulnerability, particularly deploying Akira and Fog ransomware in targeted attacks. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/critical-veeam-vulnerability-2/
-
SolarWinds, Firefox, Windows Face Active Exploitation: CISA Issues Urgent Warning
The Cybersecurity and Infrastructure Security Agency (CISA) has recently added three vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, emphasizing the pressing need for organizations to address these risks promptly. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/cisa-adds-3-known-exploited-vulnerabilities/
-
64 betroffene Chipsätze in Millionen von Geräte Day-Schwachstelle in Qualcomm-Prozessoren
First seen on security-insider.de Jump to article: www.security-insider.de/qualcomm-bestaetigt-behebt-zero-day-schwachstelle-mobilen-prozessoren-a-256ed4b1e8ca9ecfe268378879f3e0e8/
-
Essential Tools for Building Successful Security Analytics
By collecting, analyzing, and leveraging data from security events, security analytics empowers teams to proactively detect anomalies and pinpoint vulnerabilities to mitigate targeted attacks, insider threats, and advanced persistent threats (APTs). First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/blogs/essential-tools-for-building-successful-security-analytics-p-3737
-
70% of exploited flaws disclosed in 2023 were zero-days
Mandiant security analysts warn of a worrying new trend of threat actors demonstrating a better capability to discover and exploit zero-day vulnerabilities in software. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-70-percent-of-exploited-flaws-disclosed-in-2023-were-zero-days/
-
CISA Warns of Active Exploitation in SolarWinds Help Desk Software Vulnerability
Tags: cisa, credentials, cve, cybersecurity, exploit, flaw, infrastructure, kev, software, vulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a critical security flaw impacting SolarWinds Web Help Desk (WHD) software to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.Tracked as CVE-2024-28987 (CVSS score: 9.1), the vulnerability relates to a case of hard-coded credentials that could be abused to gain First…
-
Splunk Enterprise Multiple Vulnerabilities for RCE
Summary Splunk has disclosed several high-severity vulnerabilities in Splunk Enterprise and Splunk Cloud Platform, which allowattackers to execute remote code on vulnerable systems. The vulnerabilities, First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2024/10/16/splunk-enterprise-multiple-vulnerabilities-for-rce/
-
Oracle October 2024 Critical Patch Update Addresses 198 CVEs
Oracle addresses 198 CVEs in its fourth quarterly update of 2024 with 334 patches, including 35 critical updates. Background On October 15, Oracle released its Critical Patch Update (CPU) for October 2024, the fourth and final quarterly update of the year. This CPU contains fixes for 198 CVEs in 334 security updates across 28 Oracle…
-
Air-Gapped Systems Breached: A Deep Dive into the Attack and Prevention
Once considered impregnable bastions of security, air-gapped systems have been shown to be vulnerable to sophisticated attacks. These systems, physically isolated from networks, were believed to be immune to remote hacking. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/air-gapped-systems-breached-a-deep-dive-into-the-attack-and-prevention/
-
Vulnerable Log4j Instances Continue to Be Used
Tags: vulnerabilityFirst seen on scworld.com Jump to article: www.scworld.com/brief/vulnerable-log4j-instances-continue-to-be-used
-
Forscher finden teils kritische Schwachstellen in Passwort-Managern
Bei einer Open-Source-Codeanalyse hat das BSI die Passwort-Manager Vaultwarden und KeePass auf Sicherheitseigenschaften untersucht mit ungleichen Ergebnissen. First seen on heise.de Jump to article: www.heise.de/news/Passwort-Manager-BSI-berichtet-ueber-kritische-Schwachstellen-in-Vaultwarden-9982427.html
-
Critical CVE in 4 Fortinet products actively exploited
CISA added the format string vulnerability to its known exploited vulnerabilities catalog last week, months after it was first disclosed by the company. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/critical-cve-fortinet-exploited/729736/
-
Shielded on All Sides: Combining Manual PII Removal and Vulnerability Monitoring to Enhance Executive Protection
Nisos Shielded on All Sides: Combining Manual PII Removal and Vulnerability Monitoring to Enhance Executive Protection The availability of sensitive personal data through breaches and its continual sale online exposes individuals”, and by extension employers”, to a range of threats… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/shielded-on-all-sides-combining-manual-pii-removal-and-vulnerability-monitoring-to-enhance-executive-protection/
-
Biden-â Harris administration releases roadmap to enhance internet routing
The Biden-Harris Administration has taken another step toward improving the nation’s cybersecurity. In September, the White House Office of the National Cyber Director (ONCD) announced it was putting policies in place to address a key security vulnerability associated with the… First seen on securityintelligence.com Jump to article: securityintelligence.com/news/biden-harris-administration-releases-roadmap-enhance-internet-routing/
-
Vulnerability Recap 10/15/24 Patch Tuesday Posts 117 Vulnerabilities
We take a look at the past week’s exploited vulnerabilities, including previous Ivanti and Veeam flaws, and also cover critical Patch Tuesday fixes. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/vulnerability-recap-october-15-2024/
-
Splunk Enterprise Update Patches Remote Code Execution Vulnerabilities
Splunk has released patches for multiple vulnerabilities in Splunk Enterprise, including two high-severity remote code execution flaws. The post Splunk Enterprise Update Patches Remote Code Execution Vulnerabilities appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/splunk-enterprise-update-patches-remote-code-execution-vulnerabilities/
-
Zero-day flaw behind Rackspace breach still a mystery
More than two weeks after threat actors exploited a zero-day vulnerability in a third-party utility to breach Rackspace, the details about the flaw and the utility remain unknown. First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366613555/Zero-day-flaw-behind-Rackspace-breach-still-a-mystery