Monday, October 7, 2024

Vulnerability

Critical Vulnerabilities in JPEG 2000 Library Let Attackers Execute Remote Code

Exploiting memory corruption vulnerabilities in server-side software often requires knowledge of the binary and environment, which limits the attack surface, especially for unknown binaries...

Hackers Exploiting Progress WhatsUp RCE Vulnerability In The Wild

RCE attacks on WhatsUp Gold exploited the Active Monitor PowerShell Script to execute malicious code, as the vulnerabilities CVE-2024-6670 and CVE-2024-6671, patched on August...

Siemens Industrial Edge Management Vulnerable to Authorization Bypass Attacks

Siemens ProductCERT has disclosed a critical vulnerability in its Industrial Edge Management systems.The vulnerability, identified as CVE-2024-45032, poses a significant risk by allowing...

Adobe Security Update, Multiple Vulnerabilities Patched

Adobe has issued a crucial security update for its Acrobat and Reader software on Windows and macOS platforms.This update, identified as APSB24-70, addresses...

CISA Issues Warning About Three Actively Exploited Vulnerabilities in the Wild

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about three critical vulnerabilities currently being exploited in the wild.These vulnerabilities affect...

IBM webMethods Integration Server Vulnerabilities Exposes Systems to Arbitrary Command Execution

Critical vulnerabilities have been identified, potentially exposing systems to arbitrary command execution.These vulnerabilities, cataloged under the Common Vulnerabilities and Exposures (CVE) system, highlight...

SonicWall Access Control Vulnerability Exploited in the Wild

SonicWall has issued an urgent advisory regarding a critical vulnerability in its SonicOS management access and SSLVPN.The flaw, identified as CVE-2024-40766, is actively...

Apache OFBiz for Linux & Windows Vulnerability Allows Unauthenticated Remote Code Execution

A series of vulnerabilities affecting Apache OFBiz has come to light, raising significant cybersecurity concerns.These vulnerabilities, identified as Common Vulnerabilities and Exposures (CVEs),...