CVE-2025-0108 impacts PaloAlto PAN-OS

CVE-2025-0108 is a high-severity vulnerability affecting Palo Alto Networks PAN-OS software. Description CVE-2025-0108 is an authentication bypass vulnerability in the PAN-OS management web interface. This flaw allows an unauthenticated attacker with network access to bypass the authentication required by the PAN-OS management web interface and invoke certain PHP scripts. While this does not enable remote […]

PAN-OS authentication bypass hole plugged, PoC is public (CVE-2025-0108)

itsecuritynews.info - 13/Feb 11:31

Palo Alto Networks has fixed a high-severity authentication bypass vulnerability (CVE-2025-0108) in the management web interface of its next-gen...

CVE-2024-53704 impacts SonicWall

thecyberthrone.in - 13/Feb 01:02

CVE-2024-53704 is a high-severity security vulnerability identified in SonicWall products, specifically within the SSLVPN authentication mechanism....

Hackers exploit authentication bypass in Palo Alto Networks PAN-OS

bleepingcomputer.com - 21:20

Hackers are launching attacks against Palo Alto Networks PAN-OS firewalls by exploiting a recently fixed vulnerability (CVE-2025-0108) that allows...

CVE-2024-24472 impacts Fortinet Producrs

thecyberthrone.in - 12/Feb 12:43

CVE-2024-24472 is a critical security vulnerability identified in Fortinet products, specifically FortiOS and FortiProxy. This vulnerability poses a...

PostgreSQL Terminal Tool Injection Vulnerability Allows Remote Code Execution

itsecuritynews.info - 08:32

Researchers have uncovered a high-severity SQL injection vulnerability, CVE-2025-1094, affecting PostgreSQL’s interactive terminal tool, psql. ...

CVE-2025-23419 impacts Nginx Server

thecyberthrone.in - 07/Feb 08:27

CVE-2025-23419 is a security vulnerability that arises when multiple server blocks in an Nginx configuration share the same IP address and port. An...

Fortinet FortiOS & FortiProxy Zero-Day Exploited to Hijack Firewall & Gain Super Admin Access

itsecuritynews.info - 11/Feb 20:32

Cybersecurity firm Fortinet has issued an urgent warning regarding a newly discovered zero-day authentication bypass vulnerability (CVE-2025-24472)...

Rapid7 Discovers High-Severity SQL Injection Vulnerability

australiancybersecuritymagazine.com.au - 01:10

Cybersecurity company Rapid7 has discovered a high-severity SQL injection vulnerability, CVE-2025-1094, affecting the PostgreSQL interactive tool...

Attackers exploit a new zero-day to hijack Fortinet firewalls

securityaffairs.co - 11/Feb 23:06

Fortinet warned of attacks using a now-patched zero-day vulnerability in FortiOS and FortiProxy to hijack Fortinet firewalls. Fortinet warned that...

CVE-2024-32838 impacts Apache Fineract with SQL injection

thecyberthrone.in - 13:41

CVE-2024-32838 is a critical security vulnerability affecting Apache Fineract, a popular open-source core banking platform. This vulnerability...

Rubriques :