Apache fixes critical OFBiz remote code execution vulnerability

Apache Lucene fixes CVE-2024-43383

thecyberthrone.in - 02/Nov 04:02

Apache Lucene.NET, an open-source search library has been discovered having a security flaw that could allow attackers to remotely execute malicious...

Siemens fixes Critical Vulnerability CVE-2024-47901

thecyberthrone.in - 27/Oct 16:50

Siemens has released patches for multiple vulnerabilities in its InterMesh wireless alarm reporting system that could allow an unauthenticated, remote...

Cisco Flaw Let Attackers Run Command as Root User

itsecuritynews.info - 06:07

A critical vulnerability has been discovered in Cisco Unified Industrial Wireless Software, which affects Cisco Ultra-Reliable Wireless Backhaul...

ServiceNow fixes CVE-2024-8923 and CVE-2024-8924

thecyberthrone.in - 31/Oct 17:07

ServiceNow has addressed two significant vulnerabilities, CVE-2024-8923 and CVE-2024-8924, which could enable unauthorized remote access, potentially...

Gitlab fixes CVE-2024-8312 and CVE-2024-6826

thecyberthrone.in - 25/Oct 08:17

GitLab has released patches for two vulnerabilities affecting multiple versions of its Community Edition (CE) and Enterprise Edition (EE) software....

Critical bug in Cisco UWRB access points allows attackers to run commands as root

itsecuritynews.info - 07:39

Cisco fixed a critical flaw in URWB access points, allowing attackers to run root commands, compromising industrial wireless automation security....

QNAP fixes CVE-2024-50388 that’s exploited in Pwn2Own Ireland

thecyberthrone.in - 30/Oct 10:13

QNAP has addressed a critical zero-day vulnerability in its HBS 3 Hybrid Backup Sync software, following its successful exploitation at the recent...

Google fixes CVE-2024-10487 and CVE-2024-10488 in latest Chrome version

thecyberthrone.in - 30/Oct 08:20

Google has released updates to address two vulnerabilities in the Chrome browser that could potentially allow attackers to take control of...

Cisco Patches Critical Vulnerability in Industrial Networking Solution

itsecuritynews.info - 12:32

A critical vulnerability in Cisco Unified Industrial Wireless software could allow remote, unauthenticated attackers to inject commands with root...

Researchers Discover Command Injection Flaw in Wi-Fi Alliance’s Test Suite

itsecuritynews.info - 25/Oct 14:34

A security flaw impacting the Wi-Fi Test Suite could enable unauthenticated local attackers to execute arbitrary code with elevated privileges. The...

Rubriques :