SolarWinds fixed critical RCE CVE-2024-28991 in Access Rights Manager

SolarWinds addressed a critical remote code execution vulnerability, tracked as CVE-2024-28991, in Access Rights Manager. SolarWinds released security updates to address a critical-severity remote code execution vulnerability, tracked as CVE-2024-28991 (CVSS score of 9.0), in SolarWinds Access Rights Manager (ARM) The flaw is a deserialization of untrusted data remote code execution vulnerability that impacts ARM 2024.3 […]

Critical bug in Cisco UWRB access points allows attackers to run commands as root

itsecuritynews.info - 07:39

Cisco fixed a critical flaw in URWB access points, allowing attackers to run root commands, compromising industrial wireless automation security....

Microsoft SharePoint RCE bug exploited to breach corporate network

bleepingcomputer.com - 02/Nov 15:19

A recently disclosed Microsoft SharePoint remote code execution (RCE) vulnerability tracked as CVE-2024-38094 is being exploited to gain initial...

ServiceNow fixes CVE-2024-8923 and CVE-2024-8924

thecyberthrone.in - 31/Oct 17:07

ServiceNow has addressed two significant vulnerabilities, CVE-2024-8923 and CVE-2024-8924, which could enable unauthorized remote access, potentially...

Cisco Releases Patch for Critical URWB Vulnerability in Industrial Wireless Systems

itsecuritynews.info - 08:36

Cisco has released security updates to address a maximum severity security flaw impacting Ultra-Reliable Wireless Backhaul (URWB) Access Points that...

Apache Lucene fixes CVE-2024-43383

thecyberthrone.in - 02/Nov 04:02

Apache Lucene.NET, an open-source search library has been discovered having a security flaw that could allow attackers to remotely execute malicious...

Fog and Akira ransomware attacks exploit SonicWall VPN flaw CVE-2024-40766

securityaffairs.co - 29/Oct 11:51

Fog and Akira ransomware operators are exploiting SonicWall VPN flaw CVE-2024-40766 to breach enterprise networks. Fog and Akira ransomware operators...

Cisco Flaw Let Attackers Run Command as Root User

itsecuritynews.info - 06:07

A critical vulnerability has been discovered in Cisco Unified Industrial Wireless Software, which affects Cisco Ultra-Reliable Wireless Backhaul...

QNAP fixed NAS backup zero-day demonstrated at Pwn2Own Ireland 2024

securityaffairs.co - 30/Oct 08:12

QNAP fixed critical zero-day CVE-2024-50388 which was demonstrated against a TS-464 NAS device during the Pwn2Own Ireland 2024 competition. QNAP...

Critical vulnerability in Cisco industrial wireless access points fixed (CVE-2024-20418)

itsecuritynews.info - 09:36

Cisco has fixed a critical command injection vulnerability (CVE-2024-20418) affecting its Ultra-Reliable Wireless Backhaul (URWB) Access Points that...

Google fixed a critical vulnerability in Chrome browser

securityaffairs.co - 30/Oct 12:05

Google addressed a critical vulnerability in its Chrome browser, tracked as CVE-2024-10487, which was reported by Apple. Google has patched a critical...

Rubriques :