Tag: cve

Definition Common Vulnerabilities and Exposures – Was ist CVE?

Dec 5, 2024 2:48 PM

Tags: cve, vulnerability

First seen on security-insider.de Jump to article: www.security-insider.de/was-ist-cve-a-a48a138de83a5452fc1e31a1c06177b5/
HCL DevOps Deploy / Launch Vulnerability Let Embed arbitrary HTML tags

Dec 5, 2024 1:48 PM

Tags: cve, cyber, risk, unauthorized, vulnerability

Recently identified by security researchers, a new vulnerability in HCL DevOps Deploy and HCL Launch has emerged, allowing users to embed arbitrary HTML tags within the Web UI. This vulnerability tracked as CVE-2024-42195, poses a potential risk of sensitive information disclosure to unauthorized individuals. Below, we provide a detailed analysis of the affected products and…
CISA Warns of Zyxel Firewalls, CyberPanel, North Grid, ProjectSend Flaws Exploited in Wild

Dec 5, 2024 12:48 PM

Tags: cisa, cve, cyber, cybersecurity, exploit, firewall, flaw, Hardware, infrastructure, mitigation, software, vulnerability, zyxel

The Cybersecurity and Infrastructure Security Agency (CISA) has issued warnings about several vulnerabilities being actively exploited in the wild. The vulnerabilities affect popular software and hardware products, including Zyxel firewalls, CyberPanel, North Grid, and ProjectSend. Organizations using these products are urged to apply mitigations immediately or discontinue usage if fixes are unavailable. CVE-2024-51378: CyberPanel Incorrect…
Kritische Veeam-Schwachstellen CVE-2024-42448, CVE-2024-42449

Dec 5, 2024 11:49 AM

Tags: cve, service, veeam, vulnerability

Ich stelle das Thema mal im Blog ein, falls Veeam-Nutzer es noch nicht mitbekommen haben. Im Veeam Service Provider Console 8.1.0.21377 (und früheren Versionen) gibt es kritische Schwachstellen (CVSS 3.1 Score 9.9), die sich remote ausnutzen und für Codeausführung oder … First seen on borncity.com Jump to article: www.borncity.com/blog/2024/12/05/kritische-veeam-schwachstellen-cve-2024-42448-cve-2024-42449/
Thinkware Cloud APK Vulnerability Allows Code Execution With Elevated Privileges

Dec 5, 2024 9:48 AM

Tags: access, cloud, cve, cyber, data, malicious, vulnerability

A critical vulnerability identified as CVE-202453614 has been discovered in the Thinkware Cloud APK version 4.3.46. This vulnerability arises from the use of a hardcoded decryption key within the application. It allows malicious actors to access sensitive data and execute arbitrary commands with elevated privileges, potentially compromising the security of users’ devices and data. The…
I-O DATA Routers Command Injection Vulnerabilities Actively Exploited in Attacks

Dec 5, 2024 8:49 AM

Tags: attack, cve, cyber, data, exploit, injection, risk, router, vulnerability

I-O DATA DEVICE, INC. has announced that several critical vulnerabilities in their UD-LT1 and UD-LT1/EX routers are being actively exploited. These vulnerabilities pose significant risks to users, necessitating urgent attention and action. Below is a detailed look at each vulnerability, its potential impact, and the solutions provided. CVE-2024-45841: Incorrect Permission Assignment for Critical Resource This…
ChatGPT Next Web Vulnerability Let Attackers Exploit Endpoint to Perform SSRF

Dec 5, 2024 7:48 AM

Tags: chatgpt, cve, cyber, cybersecurity, endpoint, exploit, vulnerability

Researchers released a detailed report on a significant security vulnerability named CVE-2023-49785, affecting the ChatGPT Next Web, popularly known as NextChat. This vulnerability has raised concerns within the cybersecurity community due to its potential for exploitation through Server-Side Request Forgery (SSRF). NextChat is a web interface designed for large language model (LLM) services. It provides…
CISA Warns of Active Exploitation of Flaws in Zyxel, ProjectSend, and CyberPanel

Dec 5, 2024 7:48 AM

Tags: cisa, cve, cybersecurity, exploit, flaw, infrastructure, kev, vulnerability, zyxel

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added multiple security flaws affecting products from Zyxel, North Grid Proself, ProjectSend, and CyberPanel to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild.The list of vulnerabilities is as follows -CVE-2024-51378 (CVSS score: 10.0) – An incorrect default permissions First seen on…
Veeam addressed critical Service Provider Console (VSPC) bug

Dec 4, 2024 5:50 PM

Tags: cve, exploit, flaw, remote-code-execution, service, update, veeam, vulnerability

Veeam addressed a critical vulnerability in Service Provider Console (VSPC) that could allow remote attackers to execute arbitrary code. Veeam released security updates for a critical vulnerability, tracked as CVE-2024-42448 (CVSS score of 9.9) impacting Service Provider Console. Successful exploitation of the flaw can potentially lead to remote code execution on vulnerable installs. Veeam Service…
Veeam issues patch for critical RCE bug

Dec 4, 2024 3:48 PM

Tags: advisory, backup, cisco, cve, cvss, data, exploit, flaw, germany, Internet, leak, microsoft, mitigation, ntlm, ransomware, rce, remote-code-execution, service, threat, unauthorized, update, veeam, vulnerability, windows

Veeam is warning its customers of two vulnerabilities, of which one is a critical RCE bug, affecting the Service Provider Console (VSPC), a web-based management platform for managed service providers (MSPs).On Tuesday, the data protection and backup solutions provider that powers IT systems availability for leading brands like Cisco, Lenovo, and NASA, issued an advisory…
PoC exploit for critical WhatsUp Gold RCE vulnerability released (CVE-2024-8785)

Dec 4, 2024 12:48 PM

Tags: cve, exploit, rce, remote-code-execution, vulnerability

Researchers have published a proof-of-concept (PoC) exploit for CVE-2024-8785, a critical remote code execution vulnerability affecting Progress WhatsUp Gold, a popular … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/04/poc-exploit-cve-2024-8785-whatsup-gold/
MobSF XSS Vulnerability Let Attackers Inject Malicious Scripts

Dec 4, 2024 8:48 AM

Tags: cve, cyber, flaw, framework, malicious, mobile, vulnerability, xss

A critical vulnerability has been identified in the Mobile Security Framework (MobSF) that allows attackers to inject malicious scripts into the system. This vulnerability, CVE-2024-53999 is a Stored Cross-Site Scripting (XSS) flaw found in the >>Diff or Compare
Veeam Issues Patch for Critical RCE Vulnerability in Service Provider Console

Dec 4, 2024 6:48 AM

Tags: cve, cvss, flaw, rce, remote-code-execution, service, update, veeam, vulnerability

Veeam has released security updates to address a critical flaw impacting Service Provider Console (VSPC) that could pave the way for remote code execution on susceptible instances.The vulnerability, tracked as CVE-2024-42448, carries a CVSS score of 9.9 out of a maximum of 10.0. The company noted that the bug was identified during internal testing.”From the…
Critical SailPoint IdentityIQ Vulnerability Exposes Files to Unauthorized Access

Dec 4, 2024 6:48 AM

Tags: access, cve, cvss, flaw, identity, software, unauthorized, vulnerability

A critical security vulnerability has been disclosed in SailPoint’s IdentityIQ identity and access management (IAM) software that allows unauthorized access to content stored within the application directory.The flaw, tracked as CVE-2024-10905, has a CVSS score of 10.0, indicating maximum severity. It affects IdentityIQ versions 8.2. 8.3, 8.4, and other previous versions.IdentityIQ “allows First seen on…
The ASA flaw CVE-2014-2120 is being actively exploited in the wild

Dec 4, 2024 12:48 AM

Tags: attack, cisco, cve, exploit, flaw, login, vulnerability

Cisco warns customers that a decade-old ASA vulnerability, tracked as CVE-2014-2120, is being actively exploited in the wild. Cisco warns that the decade-old ASA vulnerability CVE-2014-2120 is being actively exploited in attacks in the wild, and urges customers to review the updated advisory. The vulnerability resides in the WebVPN login page of Cisco Adaptive Security…
Veeam plugs serious holes in Service Provider Console (CVE-2024-42448, CVE-2024-42449)

Dec 3, 2024 6:48 PM

Tags: cve, service, veeam, vulnerability

Veeam has fixed two vulnerabilities in Veeam Service Provider Console (VSPC), one of which (CVE-2024-42448) may allow remote attackers to achieve code exection on the VSPC … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/03/vspc-vulnerabilities-cve-2024-42448-cve-2024-42449/
Cisco Warns of Exploitation of Decade-Old ASA WebVPN Vulnerability

Dec 3, 2024 3:48 PM

Tags: advisory, attack, cisco, cve, exploit, flaw, login, vulnerability

Cisco on Monday updated an advisory to warn customers of active exploitation of a decade-old security flaw impacting its Adaptive Security Appliance (ASA).The vulnerability, tracked as CVE-2014-2120 (CVSS score: 4.3), concerns a case of insufficient input validation in ASA’s WebVPN login page that could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS)…
SmokeLoader picks up ancient MS Office bugs to pack fresh credential stealer

Dec 3, 2024 2:48 PM

Tags: access, antivirus, attack, browser, credentials, cve, cvss, data, email, exploit, flaw, fortinet, framework, healthcare, login, malicious, malware, microsoft, office, phishing, remote-code-execution, risk, software, threat, vulnerability, windows

Threat actors are using a well-known modular malware loader, SmokeLoader, to exploit known Microsoft Office vulnerabilities and steal sensitive browser credentials.The loader which runs a framework to deploy multiple malware modules, was observed by Fortinet’s FortiGuard Labs in attacks targeting manufacturing, healthcare, and IT companies in Taiwan.”SmokeLoader, known for its ability to deliver other malicious…
Cisco Warns of Attacks Exploiting Decade-Old ASA Vulnerability

Dec 3, 2024 12:50 PM

Tags: advisory, attack, cisco, cve, exploit, vulnerability

Cisco has updated an advisory for CVE-2014-2120 to warn customers that the vulnerability has been exploited in the wild. The post Cisco Warns of Attacks Exploiting Decade-Old ASA Vulnerability appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/cisco-warns-of-attacks-exploiting-decade-old-asa-vulnerability/
TP-Link HomeShield Function Vulnerability Let Attackers Inject Malicious Commands

Dec 3, 2024 10:48 AM

Tags: cve, cyber, exploit, firmware, flaw, injection, malicious, unauthorized, vulnerability

A significant vulnerability has been identified in TP-Link’s HomeShield function, affecting a range of their devices, including the Archer, Deco, and Tapo series routers. This vulnerability, labeled CVE-2024-53375, allows attackers to exploit a flaw in the device firmware, leading to the potential injection of malicious commands by unauthorized users. This article explores the details of…
Want to be a cybersecurity pro? Use generative AI to get some simulated training

Dec 3, 2024 8:49 AM

Tags: access, ai, application-security, attack, authentication, awareness, backup, business, chatgpt, compliance, control, cve, cyber, cybercrime, cybersecurity, data, defense, detection, encryption, endpoint, firewall, group, guide, healthcare, HIPAA, infrastructure, intelligence, jobs, law, lockbit, mitigation, mitre, network, phishing, ransomware, risk, service, siem, skills, social-engineering, strategy, threat, tool, training, update, vulnerability

I often get approached by young, ambitious people looking to start a cybersecurity career. Some are studying cybersecurity in college, some are looking to jump from IT, and some believe that the field is synergistic with past experiences in law enforcement or the military.Regardless, all are looking for guidance as they struggle to find an…
BootKitty UEFI malware exploits LogoFAIL to infect Linux systems

Dec 2, 2024 7:48 PM

Tags: computer, cve, exploit, linux, malware, vulnerability

The recently uncovered ‘Bootkitty’ UEFI bootkit, the first malware of its kind targeting Linux systems, exploits CVE-2023-40238, aka ‘LogoFAIL,’ to infect computers running on a vulnerable UEFI firmware. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/bootkitty-uefi-malware-exploits-logofail-to-infect-linux-systems/
HPE IceWall Flaw Let Attackers cause Unauthorized Data Modification

Dec 2, 2024 2:28 PM

Tags: cve, cyber, data, flaw, threat, unauthorized, vulnerability

Hewlett Packard Enterprise (HPE) has issued an urgent security bulletin addressing a critical vulnerability in its IceWall product line. Identified as CVE-2024-11856, this flaw could allow attackers to remotely modify data without authorization. This flaw is capable of enabling unauthorized data modification from remote locations, posing a significant security threat to the affected systems. Vulnerability…
Apple Safari JavaScriptCore Remote Code Execution Flaw Exploited in the Wild

Dec 2, 2024 8:30 AM

Tags: apple, cve, cyber, exploit, flaw, macOS, remote-code-execution, software, threat, vulnerability

A critical vulnerability identified as CVE-2024-44308 has been actively exploited in the wild, affecting multiple versions of Apple Safari across iOS, visionOS, and macOS platforms. This flaw, located within WebKit’s DFG JIT compiler, poses a significant threat by allowing remote code execution (RCE). Affected Software and Versions Here’s a table summarizing the affected software and…
Inside the 2024 CWE Top 25: Trends, surprises, and persistent challenges

Dec 2, 2024 6:28 AM

Tags: cve, mitre, software

In this Help Net Security interview, Alec Summers, Project Leader for the CVE Program at MITRE, shares his insights on the 2024 CWE top 25 most dangerous software weaknesses. … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/02/alec-summers-mitre-cwe-top-25-2024/
Kommentar von Qualys zum Patch Tuesday

Dec 1, 2024 6:27 PM

Tags: cve, update, vulnerability, windows

Die Auswirkungen von CVE-2024-38080, einer Schwachstelle in Windows Hyper-V, sind enorm, da diese Schwachstelle Angreifern den höchsten Systemzugriff … First seen on infopoint-security.de Jump to article: www.infopoint-security.de/kommentar-von-qualys-zum-patch-tuesday/a37772/
Check Point zeigt Schwachstellen im Linux CUPS-System auf

Dec 1, 2024 3:26 PM

Tags: bug, cve, linux, remote-code-execution, vulnerability

Check Points Kunden sind durch CloudGuard geschützt, insbesondere gegen Remote Code Execution (RCE), die durch die Sicherheitslücke CVE-2024-47176 aus… First seen on infopoint-security.de Jump to article: www.infopoint-security.de/check-point-zeigt-schwachstellen-im-linux-cups-system-auf/a38580/
The discovery of Gatekeeper bypass CVE-2023-27943

Dec 1, 2024 3:19 AM

Tags: cve

First seen on blog.f-secure.com Jump to article: blog.f-secure.com/discovery-of-gatekeeper-bypass-cve-2023-27943/
[Updated] Log4Shell: Critical Severity Apache Log4j Remote Code Execution Being Actively Exploited (CVE-2021-44228 CVE-2021-45046)

Dec 1, 2024 2:19 AM

Tags: apache, cve, exploit, rce, remote-code-execution, update, vulnerability

Update December 17th, 2021: Log4j 2.15.0 Vulnerability Upgraded from Low to Critical Severity (CVSS 9.0) RCE possible in non-default configurations Th… First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2021/12/10/log4shell-critical-severity-apache-log4j-remote-code-execution-being-actively-exploited-cve-2021-44228/
Dirty Pipe Linux Kernel Local Privilege Escalation (LPE) Vulnerability (CVE-2022-0847)

Dec 1, 2024 2:19 AM

Tags: cve, linux, vulnerability

Summary CVE-2022-0847 was disclosed on March 7th and since has been named Dirty Pipe. This linuxkernel vulnerability is caused by improperly handling … First seen on research.kudelskisecurity.com Jump to article: research.kudelskisecurity.com/2022/04/04/dirty-pipe-linux-kernel-local-privilege-escalation-lpe-vulnerability-cve-2022-0847/