Friday, March 29, 2024
Outlook 0-day RCE Flaw

New Outlook 0-day RCE Flaw Exploited in the Wild

0
Outlook has been discovered to have an interesting vulnerability while handling specific hyperlinks, which was found to be exploited by threat actors in the...

Microsoft Patch Tuesday 2024: 73 Security Flaws, Including Two 0-Days Patched

0
As part of its February 2024 Patch Tuesday updates, Microsoft has published patches to address 73 security flaws, including two zero-day vulnerabilities that have...

13 Security Flaws in Adobe Acrobat & Reader Allows Remote Code Execution

0
A critical security update for both Windows and macOS is available for Adobe Acrobat and Reader. Per Adobe, this update fixes serious vulnerabilities that could...

Chinese Hackers Exploiting VMware 0-Day Flaw Since 2021

0
Mandiant and VMware recently uncovered a sophisticated cyber espionage campaign. The attackers, a Chinese group identified as UNC3886, leveraged a known vulnerability in VMware...

Critical Cisco Expressway Flaw Let Remote Execute Arbitrary Code

0
Cisco released patches to address multiple vulnerabilities in the Cisco Expressway Series that might allow an attacker to do arbitrary operations on a vulnerable...

Active Scan Alert: Over 28,000 Ivanti Instances Exposed to Internet

0
Ivanti has disclosed two new zero-day vulnerabilities assigned with CVE-2024-21888 and CVE-2024-21893 in the products Ivanti Connect Secure and Ivanti Policy Secure.CVE-2024-21887: command injection...

TeamCity Authentication Bypass Flaw Let Attackers Gain Admin Control

0
A critical security vulnerability was detected in TeamCity On-Premises, tagged as CVE-2024-23917, with a CVSS score of 9.8. An unauthenticated attacker with HTTP(S) access to...

Multiple Container Flaws Allow Attackers to Access the Host OS

0
Four new vulnerabilities have been identified in containers that could allow a threat actor to escape the container and gain access to the host...

Ivanti discloses 2 New zero-days, one already under exploitation

0
Two new zero-day vulnerabilities have been discovered in Ivanti Connect Secure and Ivanti Policy Secure products that are assigned with CVE-2024-21888 and CVE-2024-21893. Additionally,...

45K+ Exposed Jenkins Instances Vulnerable to RCE Attacks

0
It was previously reported that Jenkins was discovered with a new critical vulnerability, which was associated with unauthenticated arbitrary file reads that can be...

Managed WAF protection

Website

Recent Articles