X

Vous n'êtes pas connecté

Maroc Maroc - SECURITYAFFAIRS.CO - A La Une - 03/Jan 09:42

LDAPNightmare, a PoC exploit targets Windows LDAP flaw CVE-2024-49113

Experts warn of a new PoC exploit, LDAPNightmare, that targets a Windows LDAP flaw (CVE-2024-49113), causing crashes & reboots. The vulnerability CVE-2024-49113 (CVSS score of 7.5), named LDAPNightmare, is a Windows Lightweight Directory Access Protocol (LDAP) Denial of Service flaw that was discovered by the researcher Yuki Chen. An attacker can exploit the now-patched vulnerability to […]

Articles similaires

Sorry! Image not available at this time

CVE-2025-24071 POC Exploit released for Microsoft Flaw

thecyberthrone.in - 21/Mar 03:32

The CVE-2025-24071 vulnerability is a high security flaw identified in Windows File Explorer that allows attackers to steal NTLM hashed credentials...

Sorry! Image not available at this time

ChatGPT SSRF bug quickly becomes a favorite attack vector

securityaffairs.co - 18/Mar 15:17

Threat actors exploit a server-side request forgery (SSRF) flaw, tracked as CVE-2024-27564, in ChatGPT, to target US financial and government...

Sorry! Image not available at this time

CVE-2025-21377 NTLM Flaw Detailed out

thecyberthrone.in - 26/Mar 14:02

CVE-2025-21377 is a security vulnerability in Microsoft Windows that stems from weaknesses in the implementation of the NTLM (NT LAN Manager)...

Sorry! Image not available at this time

Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility

itsecuritynews.info - 21/Mar 06:06

Two now-patched security flaws impacting Cisco Smart Licensing Utility are seeing active exploitation attempts, according to SANS Internet Storm...

Sorry! Image not available at this time

Hacker Claims Sale of 6 Million Records Stolen from Oracle Cloud Servers

itsecuritynews.info - 23/Mar 08:34

A threat actor named “rose87168” claimed to have stolen six million records from Oracle Cloud servers. The stolen data reportedly includes Java...

Sorry! Image not available at this time

Hacker Claims Sale of 6 Million Records Stolen from Oracle Cloud Servers

itsecuritynews.info - 23/Mar 08:34

A threat actor named “rose87168” claimed to have stolen six million records from Oracle Cloud servers. The stolen data reportedly includes Java...

Sorry! Image not available at this time

Cisco Smart Licensing Utility flaws actively exploited in the wild

securityaffairs.co - 21/Mar 09:26

Experts warn of the active exploitation of two recently patched security vulnerabilities affecting Cisco Smart Licensing Utility. Cisco disclosed two...

Sorry! Image not available at this time

Authentication bypass CVE-2025-22230 impacts VMware Windows Tools

securityaffairs.co - 26/Mar 07:07

Broadcom addressed a high-severity authentication bypass vulnerability, tracked as CVE-2025-22230, in VMware Tools for Windows. Broadcom released...

Sorry! Image not available at this time

Veeam fixed critical Backup & Replication flaw CVE-2025-23120

securityaffairs.co - 20/Mar 19:26

Veeam released security patches for a critical Backup & Replication vulnerability that could let attackers remotely execute code. Veeam addressed...

Sorry! Image not available at this time

Attackers can bypass middleware auth checks by exploiting critical Next.js flaw

securityaffairs.co - 24/Mar 11:22

A critical flaw in the Next.js React framework could be exploited to bypass authorization checks under certain conditions. Maintainers of Next.js...