Kubernetes Cluster RCE Vulnerability Let Attacker Takeover All Windows Nodes

A critical vulnerability in Kubernetes, designated as CVE-2024-9042, has been discovered, enabling attackers to execute remote code with SYSTEM privileges on all Windows nodes within a Kubernetes cluster. This vulnerability, identified by Akamai security researcher Tomer Peled, specifically affects the…

CVE-2024-9042 impacts Kubernetes Windows Worker Nodes

thecyberthrone.in - 17/Jan 10:00

CVE-2024-9042 is a medium-severity security vulnerability discovered in Kubernetes Windows worker nodes. This vulnerability affects the Kubelet...

IT Security News Hourly Summary 2025-01-26 06h : 5 posts

itsecuritynews.info - 05:05

5 posts were published in the last hour 4:6 : CISA Warns of SonicWall 0-day RCE Vulnerability Exploited in Wild 4:6 : Kubernetes Cluster RCE...

CVE-2024-53691: PoC Exploit Code Release for QNAP Flaw

thecyberthrone.in - 20/Jan 01:12

CVE-2024-53691 is a severe remote code execution (RCE) vulnerability discovered in QNAP NAS devices. Recently, security researcher c411e released a...

CVE-2025-23006 impacts SonicWall SMA 1000 Series

thecyberthrone.in - 24/Jan 01:34

CVE-2025-23006 is a critical pre-authentication deserialization of untrusted data vulnerability identified in SonicWall’s Secure Mobile Access...

CVE-2024-12398 impacts Zyxel Devices

thecyberthrone.in - 14/Jan 13:14

CVE-2024-12398 is a critical vulnerability discovered in the web management interface of certain Zyxel devices. This vulnerability allows an...

CVE-2024-54498: Exploit Code Released for macOS Flaw

thecyberthrone.in - 13/Jan 08:56

Overview CVE-2024-54498 is a critical vulnerability affecting macOS systems, specifically those running versions prior to 2.6.11. This vulnerability,...

PoC Exploit Released for TP-Link Code Execution Vulnerability(CVE-2024-54887)

itsecuritynews.info - 21/Jan 17:36

A security researcher, exploring reverse engineering and exploit development, has successfully identified a critical vulnerability in the TP-Link...

CVE-2025-0411 impacts 7-Zip with Code Execution

thecyberthrone.in - 21/Jan 13:27

Background of CVE-2025-0411 CVE-2025-0411 is a security flaw identified in 7-Zip, a widely-used open-source file archiver. This vulnerability allows...

Threat actors exploit Aviatrix Controller flaw to deploy backdoors and cryptocurrency miners

securityaffairs.co - 14/Jan 10:23

A critical vulnerability in Aviatrix Controller is actively exploited to deploy backdoors and cryptocurrency miners in the wild. A security researcher...

New UEFI Secure Boot bypass vulnerability discovered (CVE-2024-7344)

itsecuritynews.info - 16/Jan 10:34

ESET researchers have identified a vulnerability (CVE-2024-7344) impacting most UEFI-based systems, which allows attackers to bypass UEFI Secure Boot....

Rubriques :