X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - ITSECURITYNEWS.INFO - A La Une - Hier 13:18

Grandstream VoIP Phones Vulnerability Grants Attackers Root Privileges

A critical unauthenticated stack-based buffer overflow vulnerability, tracked as CVE-2026-2329, affecting Grandstream GXP1600 series VoIP phones. The vulnerability, rated as critical with a CVSS score of 9.8, allows remote attackers to gain root privileges on the affected devices without authentication. At its core, this is a classic memory…

Articles similaires

Sorry! Image not available at this time

Grandstream VoIP Phones Vulnerability Grants Attackers Root Privileges

itsecuritynews.info - 13:18

A critical unauthenticated stack-based buffer overflow vulnerability, tracked as CVE-2026-2329, affecting Grandstream GXP1600 series VoIP phones....

Sorry! Image not available at this time

Flaw in Grandstream VoIP phones allows stealthy eavesdropping

bleepingcomputer.com - 19/Feb 17:16

A critical vulnerability in Grandstream GXP1600 series VoIP phones allows a remote, unauthenticated attacker to gain root privileges and silently...

Sorry! Image not available at this time

Flaw in Grandstream VoIP phones allows stealthy eavesdropping

bleepingcomputer.com - 19/Feb 17:16

A critical vulnerability in Grandstream GXP1600 series VoIP phones allows a remote, unauthenticated attacker to gain root privileges and silently...

Sorry! Image not available at this time

Critical Authentication Bypass in better-auth API Keys Plugin Allows Unauthenticated Account Takeover

itsecuritynews.info - 19/Feb 11:09

A critical authentication bypass vulnerability in the better-auth API keys plugin allows unauthenticated attackers to mint privileged API keys for...

Sorry! Image not available at this time

Critical Authentication Bypass in better-auth API Keys Plugin Allows Unauthenticated Account Takeover

itsecuritynews.info - 19/Feb 11:09

A critical authentication bypass vulnerability in the better-auth API keys plugin allows unauthenticated attackers to mint privileged API keys for...

Sorry! Image not available at this time

Critical Fortinet FortiClientEMS flaw allows remote code execution

itsecuritynews.info - 09/Feb 21:34

Fortinet warns of a critical FortiClientEMS vulnerability that lets remote attackers run malicious code without logging in. Fortinet issued an urgent...

Sorry! Image not available at this time

BeyondTrust Remote Access Products 0-Day Vulnerability Allows Remote Code Execution

itsecuritynews.info - 07/Feb 11:18

BeyondTrust has disclosed a critical pre-authentication remote code execution vulnerability affecting its Remote Support (RS) and Privileged Remote...

Sorry! Image not available at this time

Attackers exploit BeyondTrust CVE-2026-1731 within hours of PoC release

securityaffairs.co - 13/Feb 15:19

Attackers quickly targeted BeyondTrust flaw CVE-2026-1731 after a PoC was released, enabling unauthenticated remote code execution. Threat actors...

Sorry! Image not available at this time

Critical SandboxJS Vulnerability Allows Remote Host Takeover – PoC Released

itsecuritynews.info - 11/Feb 17:18

A severe sandbox escape vulnerability has been discovered in the JavaScript library, enabling attackers to execute arbitrary code on host systems. The...

Sorry! Image not available at this time

Critical Fortinet FortiClientEMS flaw allows remote code execution

securityaffairs.co - 09/Feb 20:54

Fortinet warns of a critical FortiClientEMS vulnerability that lets remote attackers run malicious code without logging in. Fortinet issued an urgent...

Les derniers communiqués