OpenSSL patched high-severity flaw CVE-2024-12797

OpenSSL patched the vulnerability CVE-2024-12797, a high-severity flaw found by Apple that enables man-in-the-middle attacks. The OpenSSL Project addressed a high-severity vulnerability, tracked as CVE-2024-12797, in its secure communications library. The OpenSSL software library allows secure communications over computer networks against eavesdropping or need to identify the party at the other end. OpenSSL contains an open-source implementation […]

Critical OpenSSL Vulnerability Let Attackers Launch Man-in-the-Middle Attacks

itsecuritynews.info - 05:32

A high-severity security vulnerability (CVE-2024-12797) has been identified in OpenSSL, one of the most widely used cryptographic libraries. The flaw...

CVE-2024-12797 OpenSSL Vulnerability Patched

thecyberthrone.in - 04:38

CVE-2024-12797 is a critical security vulnerability discovered in OpenSSL, a widely used cryptographic library that provides secure communication over...

Critical OpenSSL Vulnerability Allow Hackers to Launch Man-in-the-Middle Attacks

itsecuritynews.info - 11/Feb 21:32

The OpenSSL Project announced a high-severity vulnerability (CVE-2024-12797) affecting versions 3.2, 3.3, and 3.4 of the widely used cryptographic...

CVE-2024-53704 impacts SonicWall

thecyberthrone.in - 01:02

CVE-2024-53704 is a high-severity security vulnerability identified in SonicWall products, specifically within the SSLVPN authentication mechanism....

U.S. CISA adds Linux kernel flaw to its Known Exploited Vulnerabilities catalog

securityaffairs.co - 05/Feb 21:00

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Linux kernel vulnerability to its Known Exploited Vulnerabilities catalog. The U.S....

TeamViewer fixed a vulnerability in Windows client and host applications

securityaffairs.co - 30/Jan 15:29

TeamViewer has patched a high-severity privilege escalation vulnerability affecting its Windows client and host applications. TeamViewer released...

Google fixed actively exploited kernel zero-day flaw

securityaffairs.co - 04/Feb 00:26

The February 2025 Android security updates addressed 48 vulnerabilities, including a kernel zero-day flaw exploited in the wild. The February 2025...

CVE-2024-55591 Exploit Code Released for FortiOS Flaw

thecyberthrone.in - 30/Jan 14:44

Cybersecurity company watchTowr Labs has released the proof-of-concept (PoC) exploit code for a severe zero-day vulnerability, CVE-2024-55591,...

Aquabot Exploits Mitel Flaw CVE-2024-41710

thecyberthrone.in - 30/Jan 10:01

The Aquabot botnet, a sophisticated variant of the Mirai botnet, has been actively exploiting CVE-2024-41710, a high-severity command injection...

Roundcube XSS Flaw Allows Attackers to Inject Malicious Files

itsecuritynews.info - 04/Feb 05:31

A critical Cross-Site Scripting (XSS) vulnerability has been discovered in the popular open-source webmail client, Roundcube, potentially exposing...

Rubriques :