Yokogawa CENTUM

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 7.7 ATTENTION: Exploitable remotely/Low attack complexity Vendor: Yokogawa Equipment: CENTUM Vulnerability: Uncontrolled Search Path Element 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute arbitrary programs. 3. TECHNICAL…

Mystery Palo Alto Networks hijack-my-firewall zero-day now officially under exploit

itsecuritynews.info - 15/Nov 21:34

Yank access to management interface, stat A critical zero-day vulnerability in Palo Alto Networks’ firewall management interface that can allow an...

Zoho Patched CVE-2024-49574 Manage Engine Bug

thecyberthrone.in - 18/Nov 14:21

Zoho has released a security update addressing a critical SQL injection vulnerability in its ADAudit Plus software that allowed an attacker with...

Ivanti Addressed Multiple Vulnerabilities as part of November 2024 advisories

thecyberthrone.in - 13/Nov 13:27

Ivanti has released trove of security updates as part of November 2024 security advisory Ivanti Endpoint Manager The most critical...

CISA adds Palo Alto flaws to KEV Catalog

thecyberthrone.in - 15/Nov 07:35

The US CISA has issued an urgent alert and added two new vulnerabilities related to Palo Alto Networks to its Known Exploited Vulnerabilities Catalog...

Critical TP-Link DHCP Vulnerability Let Attackers Execute Arbitrary Code Remotely

itsecuritynews.info - 15/Nov 16:11

A critical security flaw has been uncovered in certain TP-Link routers, potentially allowing malicious actors to remotely compromise affected devices....

Synology fixed critical flaw impacting millions of DiskStation and BeePhotos NAS devices

securityaffairs.co - 06/Nov 09:09

Synology addressed a critical vulnerability in DiskStation and BeePhotos NAS devices that could lead to remote code execution. Taiwanese vendor...

Fortinet fixes FortiClient VPN Flaw CVE-2024-47574

thecyberthrone.in - 15/Nov 08:42

Fortinet’s has patched vulnerability in FortiClient VPN application potentially allows privilege escalation, execute code and possibly take over...

WordPress WPMLS Theme has a Critical Bug CVE-2024-10470

thecyberthrone.in - 14/Nov 02:21

A security researcher, Friderika Baranyai, has discovered a critical path traversal bug in the WPLMS WordPress theme that leaves websites , allows...

Google fixes CVE-2024-43093 in Android OS

thecyberthrone.in - 05/Nov 16:55

Google has come with a warning about a vulnerability in the Android OS that is actively exploited in the wild. The vulnerability tracked as...

POC Exploit Released for Fortinet Bug CVE-2024-47575

thecyberthrone.in - 18/Nov 15:51

Security researcher Sina Kheirkhah from watchTowr recently published technical details and a PoC exploit for a critical zero-day vulnerability in...

Rubriques :