Tag: cve
-
GitHub warns of SAML auth bypass flaw in Enterprise Server
GitHub has fixed a maximum severity (CVSS v4 score: 10.0) authentication bypass vulnerability tracked as CVE-2024-4986, which impacts GitHub Enterpris… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/github-warns-of-saml-auth-bypass-flaw-in-enterprise-server/
-
PoC exploit for Ivanti EPMM privilege escalation flaw released (CVE 2024-22026)
Technical details about and a proof-of-concept (PoC) exploit for CVE-2024-22026, a privilege escalation bug affecting Ivanti EPMM, has been released b… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/05/20/cve-2024-22026-poc/
-
CISA Warns of Attacks Exploiting NextGen Healthcare Mirth Connect Flaw
CISA has added CVE-2023-43208, an unauthenticated remote code execution vulnerability, to its KEV catalog. The post added CVE-2023-43208, an unauthen… First seen on securityweek.com Jump to article: www.securityweek.com/cisa-warns-of-attacks-exploiting-nextgen-healthcare-mirth-connect-flaw/
-
Chrome Zero-Day Alert, Update Your Browser to Patch New Vulnerability
Google on Thursday released security updates to address a zero-day flaw in Chrome that it said has been actively exploited in the wild.Tracked as CVE-… First seen on thehackernews.com Jump to article: thehackernews.com/2024/05/chrome-zero-day-alert-update-your.html
-
Critical Git Vulnerability Let Attackers Execute Remote Code : PoC Published
A critical remote code execution vulnerability has been discovered in the git clone which was assigned with CVE-2024-32002 and the severity has been g… First seen on gbhackers.com Jump to article: gbhackers.com/git-flaw-remote-code-execution/
-
CVE-2023-34992: Fortinet FortiSIEM Command Injection Deep-Dive
In early 2023, given some early success in auditing Fortinet appliances, I continued the effort and landed upon the Fortinet FortiSIEM. Several issues… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/05/cve-2023-34992-fortinet-fortisiem-command-injection-deep-dive/
-
Mitre breached by nation-state threat actor via Ivanti flaws
An unnamed nation-state threat actor breached Mitre through two Ivanti Connect Secure zero-day vulnerabilities, CVE-2023-46805 and CVE-2024-21887, dis… First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366581853/Mitre-breached-by-nation-state-threat-actor-via-Ivanti-flaws
-
Critical Flaw in AI Python Package Can Lead to System and Data Compromise
A critical vulnerability tracked as CVE-2024-34359 and dubbed Llama Drama can allow hackers to target AI product developers. The post al vulnerability… First seen on securityweek.com Jump to article: www.securityweek.com/critical-flaw-in-ai-python-package-can-lead-to-system-and-data-compromise/
-
NIST Confusion Continues as Cyber Pros Complain CVE Uploads Stalled
Several software security experts have told Infosecurity that no new vulnerabilities have been added to the US National Vulnerability Database (NVD) s… First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/nist-cve-stop-questioned/
-
Dangerous Google Chrome Zero-Day Allows Sandbox Escape
Exploit code is circulating for CVE-2024-4761, disclosed less than a week after a similar security vulnerability was disclosed as being used in the wi… First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/dangerous-google-chrome-zero-day-sandbox-escape
-
Microsoft Windows DWM Zero-Day Poised for Mass Exploit
CVE-2024-30051, under active exploit, is the most concerning out of this month’s Patch Tuesday offerings, and already being abused by several QakBot a… First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/microsoft-windows-dwm-zero-day-mass-exploit
-
May 2024 Patch Tuesday: Microsoft fixes exploited zero-days (CVE-2024-30051, CVE-2024-30040)
For May 2024 Patch Tuesday, Microsoft has released fixes for 59 CVE-numbered vulnerabilities, including two zero-days (CVE-2024-30051, CVE-2024-30040)… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/05/14/patch-tuesday-cve-2024-30051-cve-2024-30040/
-
Apple backports iOS zero-day patch, adds Bluetooth tracker alert
Apple has backported the patch for CVE-2024-23296 to the iOS 16 branch and has fixed a bug (CVE-2024-27852) in MarketplaceKit that may allow malicious… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/05/14/ios-bluetooth-tracker-alert/
-
Log4Shell shows no sign of fading, spotted in 30% of CVE exploits
Organizations continue to run insecure protocols across their wide access networks (WAN), making it easier for cybercriminals to move across networks,… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/05/14/log4j-wan-insecure-protocols/
-
Veeam Schwachstelle CVE-2024-29212 (Mai 2024)
Kleiner Nachtrag von dieser Woche. Veeam, der Anbieter von Backup-Lösungen hat die Woche (7. Mai 2024) eine Sicherheitswarnung veröffentlicht. In älte… First seen on borncity.com Jump to article: www.borncity.com/blog/2024/05/12/veeam-schwachstelle-cve-2024-29212-mai-2024/
-
Google fixes Chrome zero-day with in-the-wild exploit (CVE-2024-4671)
Google has fixed a Chrome zero-day vulnerability (CVE-2024-4671), an exploit for which exists in the wild. About CVE-2024-4671 CVE-2024-4671 is a use … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/05/10/cve-2024-4671/
-
Log4J shows no sign of fading, spotted in 30% of CVE exploits
Organizations continue to run insecure protocols across their wide access networks (WAN), making it easier for cybercriminals to move across networks,… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/05/14/log4j-wan-insecure-protocols/
-
Microsoft Edge Zero-Day Vulnerability Exploited in the Wild
A zero-day vulnerability in Microsoft Edge, which has been tagged as CVE-2024-4671, has been aggressively exploited by evil organizations, according t… First seen on gbhackers.com Jump to article: gbhackers.com/microsoft-edge-zero-day-2/
-
CISA Announces CVE Enrichment Project ‘Vulnrichment’
CISA’s Vulnrichment project is adding important information to CVE records to help improve vulnerability management processes. The post Vulnrichment … First seen on securityweek.com Jump to article: www.securityweek.com/cisa-announces-cve-enrichment-project-vulnrichment/
-
F5 fixes BIG-IP Next Central Manager flaws with public PoCs (CVE-2024-21793, CVE-2024-26026)
Eclypsium researchers have published details and PoC exploits for two remotely exploitable injection vulnerabilities (CVE-2024-21793, CVE-2024-26026) … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/05/09/cve-2024-21793-cve-2024-26026/
-
CISA starts CVE >>vulnrichment<< program
The US Cybersecurity and Infrastructure Agency (CISA) has announced the creation of >>Vulnrichment,
-
VPN-Leak: TunnelVision über Schwachstelle CVE-2024-3661
Sicherheitsforscher haben eine neue, als TunnelVision bezeichnete Angriffsmethode auf VPN-Verbindungen offen gelegt. Der Angriff ermöglicht es, einen … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/05/07/vpn-leak-tunnelvision-ber-schwachstelle-cve-2024-3661/
-
Most Tinyproxy Instances are potentially vulnerable to flaw CVE-2023-49606
A critical Remote Code Execution vulnerability in the Tinyproxy service potentially impacted 50,000 Internet-Exposing hosts. Researchers from Cisco Ta… First seen on securityaffairs.com Jump to article: securityaffairs.com/162866/hacking/tinyproxy-rce.html
-
Google Chrome Zero-day Exploited in the Wild, Patch Now
Google has urgently updated its Chrome browser across all platforms after a critical vulnerability, identified as CVE-2024-4671, was found being activ… First seen on gbhackers.com Jump to article: gbhackers.com/chrome-zero-day-exploited/
-
Attackers may be using TunnelVision to snoop on users’ VPN traffic (CVE-2024-3661)
Researchers have brought to light a new attack method dubbed TunnelVision and uniquely identified as CVE-2024-3661 that can be used to intercept and… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/05/08/tunnelvision-cve-2024-3661/
-
VPN-Leak: TunnelVision über Schwachstelle CVE-2024-3661
Sicherheitsforscher haben eine neue, als TunnelVision bezeichnete Angriffsmethode auf VPN-Verbindungen offen gelegt. Der Angriff ermöglicht es, einen … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/05/07/vpn-leak-tunnelvision-ber-schwachstelle-cve-2024-3661/
-
CrushFTP Vulnerability Exploited in Wild to Execute Remote Code
A critical vulnerability in CrushFTP, identified as CVE-2024-4040, has been actively exploited in the wild. It allows attackers to perform unauthentic… First seen on gbhackers.com Jump to article: gbhackers.com/crushftp-vulnerability-exploited/
-
Veeam RCE Flaws Let Hackers Gain Access To VSPC Servers
Veeam Service Provider console has been discovered with two critical vulnerabilities that were associated with Remote Code Execution. A CVE for these … First seen on gbhackers.com Jump to article: gbhackers.com/veeam-rce-flaws-vspc-servers/
-
Week in review: PoCs allow persistence on Palo Alto firewalls, Okta credential stuffing attacks
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Palo Alto firewalls: CVE-2024-3400 exploitation and … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/05/05/week-in-review-pocs-allow-persistence-on-palo-alto-firewalls-okta-credential-stuffing-attacks/
-
R Programming Bug Exposes Orgs to Vast Supply Chain Risk
The CVE-2024-27322 security vulnerability in R’s deserialization process gives attackers a way to execute arbitrary code in target environments via sp… First seen on darkreading.com Jump to article: www.darkreading.com/application-security/r-programming-language-exposes-orgs-to-supply-chain-risk