CVE/vulnerability
Open-Source Scanner Released to Detect CUPS Vulnerability
A new open-source scanner has been released to detect a critical vulnerability in the Common Unix Printing System (CUPS), explicitly targeting CVE-2024-47176.This vulnerability and...
CVE/vulnerability
Hackers Now Exploit Ivanti Endpoint Manager Vulnerability to Launch Cyber Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has announced the addition of a new vulnerability to its Known Exploited Vulnerabilities Catalog.This vulnerability, CVE-2024-29824,...
CVE/vulnerability
CISA Warns of Four Vulnerabilities that Exploited Actively in the Wild
The Cybersecurity and Infrastructure Security Agency (CISA) has warned about four critical vulnerabilities currently being exploited in the wild.These vulnerabilities affect various products,...
CVE/vulnerability
Open Source C3 Frameworks Used In Red Teaming Assessments Vulnerable To RCE Attacks
C2 frameworks, crucial for post-exploitation operations, offer open-source alternatives to Cobalt Strike. They streamline the management of compromised systems, enable efficient collaboration, and evade...
CVE/vulnerability
Researcher Details Cisco Smart Licensing that Lets Attacker Control Device
Cisco disclosed a critical vulnerability identified as CVE-2024-20439, affecting its Smart Licensing Utility.An independent researcher discovered this vulnerability through reverse engineering. It involves...
cyber security
FreeBSD RCE Vulnerability Let Attackers Execute Malicious Code
FreeBSD has disclosed a critical remote code execution (RCE) vulnerability affecting its bhyve hypervisor.This vulnerability, CVE-2024-41721, could allow attackers to execute malicious code...
CVE/vulnerability
CISA Releases Six Advisories for Industrial Control Systems
The Cybersecurity and Infrastructure Security Agency (CISA) has issued six advisories concerning vulnerabilities:Rockwell Automation's RSLogix 5 and RSLogix 500 software,IDEC PLCs,IDEC...
CVE/vulnerability
GitLab Urges Organization to Patch for Authentication Bypass Vulnerability
GitLab has issued an urgent call to action for organizations using its platform to patch a critical authentication bypass vulnerability.This security flaw, CVE-2024-45409,...