CVE/vulnerability

We talk about the newest information and stories about Common Vulnerabilities and Exposures (CVE) and security holes in this section. This includes newly found security holes, security patches, warnings, and the best ways to fix them. Know about the newest dangers and how to keep your data and systems safe from possible security risks.

Halo ITSM Vulnerability Lets Attackers Inject Malicious SQL CodeHalo ITSM Vulnerability Lets Attackers Inject Malicious SQL Code

Halo ITSM Vulnerability Lets Attackers Inject Malicious SQL Code

A critical security flaw has been discovered in Halo ITSM, an IT support management software widely deployed across cloud and on-premise…

40 minutes ago
OpenVPN Flaw Allows Attackers Crash Servers and Run Remote CodeOpenVPN Flaw Allows Attackers Crash Servers and Run Remote Code

OpenVPN Flaw Allows Attackers Crash Servers and Run Remote Code

OpenVPN, a widely-used open-source virtual private network (VPN) software, has recently patched a security vulnerability that could allow attackers to…

3 hours ago
Apache Traffic Server Flaw Allows Request Smuggling AttacksApache Traffic Server Flaw Allows Request Smuggling Attacks

Apache Traffic Server Flaw Allows Request Smuggling Attacks

A critical vulnerability has been discovered in Apache Traffic Server (ATS), an open-source caching proxy server. Identified as CVE-2024-53868, this flaw…

3 hours ago
Cisco AnyConnect VPN Server Vulnerability Allows Attackers to Trigger DoSCisco AnyConnect VPN Server Vulnerability Allows Attackers to Trigger DoS

Cisco AnyConnect VPN Server Vulnerability Allows Attackers to Trigger DoS

Cisco has disclosed a significant vulnerability in its AnyConnect VPN Server for Meraki MX and Z Series devices, allowing authenticated attackers to…

19 hours ago
SonicWall Firewall Vulnerability Enables Unauthorized AccessSonicWall Firewall Vulnerability Enables Unauthorized Access

SonicWall Firewall Vulnerability Enables Unauthorized Access

Researchers from Bishop Fox have successfully exploited CVE-2024-53704, an authentication bypass vulnerability that affects SonicWall firewalls. This critical flaw allows remote…

20 hours ago
Google’s Quick Share for Windows Vulnerability Allows Remote Code ExecutionGoogle’s Quick Share for Windows Vulnerability Allows Remote Code Execution

Google’s Quick Share for Windows Vulnerability Allows Remote Code Execution

Cybersecurity researchers from SafeBreach Labs have revealed new vulnerabilities in Google’s Quick Share file-transfer utility for Windows, including a critical…

20 hours ago
Multiple Jenkins Plugin Vulnerabilities Expose Sensitive Information to AttackersMultiple Jenkins Plugin Vulnerabilities Expose Sensitive Information to Attackers

Multiple Jenkins Plugin Vulnerabilities Expose Sensitive Information to Attackers

Jenkins, the widely used open-source automation server, faces heightened security risks after researchers disclosed 11 critical vulnerabilities across its core software and…

21 hours ago
Cisco Smart Licensing Utility Flaws Allowed Attackers to Gain Admin AccessCisco Smart Licensing Utility Flaws Allowed Attackers to Gain Admin Access

Cisco Smart Licensing Utility Flaws Allowed Attackers to Gain Admin Access

Cisco has disclosed critical vulnerabilities in its Smart Licensing Utility software, identified as CVE-2024-20439 and CVE-2024-20440, which could allow unauthenticated,…

1 day ago
Verizon Call Filter App Vulnerability Exposed Call Log Data of CustomersVerizon Call Filter App Vulnerability Exposed Call Log Data of Customers

Verizon Call Filter App Vulnerability Exposed Call Log Data of Customers

A vulnerability in Verizon's Call Filter app for iOS has been discovered, allowing unauthorized access to customer call logs. This…

1 day ago
Google Cloud Platform Vulnerability Exposes Sensitive Data to AttackersGoogle Cloud Platform Vulnerability Exposes Sensitive Data to Attackers

Google Cloud Platform Vulnerability Exposes Sensitive Data to Attackers

A privilege escalation vulnerability in Google Cloud Platform (GCP), dubbed "ImageRunner," was recently discovered and fixed. The flaw, which Tenable…

2 days ago