X

Vous n'êtes pas connecté

العناوين :

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 11/01/2025 06:37

CVE-2024-12847: Proof-of-Concept Exploit Code Released

Overview CVE-2024-12847 is a critical security vulnerability affecting certain models of NETGEAR routers, notably the DGN1000 and DGN2200 v1. This vulnerability has been assigned a CVSS score of 9.8, reflecting its high severity and potential impact. It allows remote, unauthenticated attackers to execute arbitrary operating system commands with root privileges by sending specially crafted HTTP […]

Articles similaires

Sorry! Image not available at this time

Critical SQL Injection in FortiClientEMS: CVE-2026-21643

thecyberthrone.in - 12/Feb 01:03

CVE-2026-21643 is a critical SQL injection vulnerability affecting Fortinet FortiClientEMS version 7.4.4, enabling unauthenticated attackers to...

Sorry! Image not available at this time

Hackers Actively Exploit React Native Metro Server to Target Software Developers

itsecuritynews.info - 04/Feb 05:38

Threat actors are exploiting a critical remote code execution vulnerability in React Native’s Metro development server to deploy sophisticated...

Sorry! Image not available at this time

BeyondTrust fixes critical pre-auth bug allowing remote code execution

securityaffairs.co - 09/Feb 19:52

BeyondTrust patched a critical pre-auth flaw in Remote Support and PRA that could let attackers execute code remotely. BeyondTrust released security...

Sorry! Image not available at this time

Attackers exploit BeyondTrust CVE-2026-1731 within hours of PoC release

securityaffairs.co - 13/Feb 15:19

Attackers quickly targeted BeyondTrust flaw CVE-2026-1731 after a PoC was released, enabling unauthenticated remote code execution. Threat actors...

Sorry! Image not available at this time

Critical SandboxJS Vulnerability Allows Remote Host Takeover – PoC Released

itsecuritynews.info - 11/Feb 17:18

A severe sandbox escape vulnerability has been discovered in the JavaScript library, enabling attackers to execute arbitrary code on host systems. The...

Sorry! Image not available at this time

Google Patches First Chrome Zero-Day of 2026

thecyberthrone.in - 02:19

CVE-2026-2441 is a high-severity use-after-free vulnerability in Google Chrome’s CSS processing component. It affects versions prior to...

Sorry! Image not available at this time

Ingress-NGINX Flaw Enables Arbitrary Code Execution Attacks

itsecuritynews.info - 04/Feb 07:02

A high-severity vulnerability has been discovered in the Kubernetes ingress-nginx controller, allowing attackers to execute arbitrary code and...

Sorry! Image not available at this time

CVE-2025-22225 in VMware ESXi now used in active ransomware attacks

securityaffairs.co - 04/Feb 22:02

Ransomware groups now exploit VMware ESXi vulnerability CVE-2025-22225, patched by Broadcom in March 2025. The U.S. Cybersecurity and Infrastructure...

Sorry! Image not available at this time

CISA Warns of Microsoft Configuration Manager SQL Injection Vulnerability Exploited in Attacks

itsecuritynews.info - 14/Feb 04:20

CISA has issued an urgent alert about a critical SQL injection vulnerability in Microsoft Configuration Manager (SCCM). Tracked as CVE-2024-43468,...

Sorry! Image not available at this time

CISA Warns of Microsoft Configuration Manager SQL Injection Vulnerability Exploited in Attacks

itsecuritynews.info - 14/Feb 04:20

CISA has issued an urgent alert about a critical SQL injection vulnerability in Microsoft Configuration Manager (SCCM). Tracked as CVE-2024-43468,...

أحدث الإصدارات