Friday, November 15, 2024

Vulnerability

Mallox Ransomware Vulnerability Lets Victims Decrypt Files

Researchers from Avast have uncovered a vulnerability in the cryptographic schema of the Mallox ransomware, a particularly active variant between 2023 and early 2024....

Red Hat NetworkManager Flaw Allows Hackers to Gain Root Access

A recently discovered vulnerability in Red Hat's NetworkManager, CVE-2024-8260, has raised concerns in the cybersecurity community because it could allow unauthorized users to gain...

SolarWinds Web Help Desk Vulnerability Allows Remote Code Execution

A critical vulnerability in SolarWinds Web Help Desk has been identified. It could allow attackers to execute arbitrary code on affected systems.The vulnerability...

Cisco ATA 190 Telephone Adapter Vulnerabilities Let Attackers Execute Remote Code

Cisco has disclosed multiple vulnerabilities affecting its ATA 190 Series Analog Telephone Adapter firmware, posing significant user risks.These vulnerabilities could allow remote attackers...

VMware HCX Platform Vulnerable to SQL Injection Attacks

VMware released an advisory (VMSA-2024-0021) addressing a critical vulnerability in its HCX platform.The vulnerability, CVE-2024-38814, is an authenticated SQL injection flaw that poses...

Chrome Security Update, 17 Vulnerabilities Patched

Google has announced a significant security update for its Chrome browser, addressing 17 vulnerabilities in the latest build.The update, which affects the Stable...

CISA Releases ICS Advisories to Mitigate Cyber Attacks

The Cybersecurity and Infrastructure Security Agency (CISA) released two critical Industrial Control Systems (ICS) advisories on October 15, 2024.These advisories provide essential information...

Fortigate SSLVPN Vulnerability Exploited in the Wild

A critical vulnerability in Fortinet's FortiGate SSLVPN appliances, CVE-2024-23113, has been actively exploited in the wild.This format string flaw vulnerability has raised significant...