CVE-2024-12847: Proof-of-Concept Exploit Code Released

Overview CVE-2024-12847 is a critical security vulnerability affecting certain models of NETGEAR routers, notably the DGN1000 and DGN2200 v1. This vulnerability has been assigned a CVSS score of 9.8, reflecting its high severity and potential impact. It allows remote, unauthenticated attackers to execute arbitrary operating system commands with root privileges by sending specially crafted HTTP […]

Vim Vulnerability Let Attackers Execute Arbitrary Command Via Weaponized Files

itsecuritynews.info - 30/Mar 13:06

A high-severity security flaw has been discovered in Vim, one of the most widely used text editors among developers. This vulnerability allows...

Vim Modeline Bypass Vulnerability Let Attackers Execute Arbitrary OS Commands

itsecuritynews.info - 02/Apr 04:09

A newly discovered high-severity vulnerability in the popular Vim text editor exposes users to arbitrary command execution on the operating system....

Vim Modeline Bypass Vulnerability Let Attackers Execute Arbitrary OS Commands

itsecuritynews.info - 02/Apr 04:09

A newly discovered high-severity vulnerability in the popular Vim text editor exposes users to arbitrary command execution on the operating system....

Vim Modeline Vulnerability Opens Door to Arbitrary OS Command Execution

itsecuritynews.info - 01/Apr 11:34

Vim is a widely used, highly configurable text editor, but a recently disclosed flaw highlights the risks associated with its file-parsing features....

Vim Modeline Vulnerability Opens Door to Arbitrary OS Command Execution

itsecuritynews.info - 01/Apr 11:34

Vim is a widely used, highly configurable text editor, but a recently disclosed flaw highlights the risks associated with its file-parsing features....

Cisco Secure Firewall Vulnerability Exposes Systems to Remote Code Execution by Attackers

itsecuritynews.info - 26/Mar 05:11

Cisco has released critical security updates to address a maximum-severity vulnerability affecting its Secure Firewall Management Center (FMC)...

Patch now: TP-Link Archer NX routers vulnerable to firmware takeover

securityaffairs.co - 25/Mar 14:44

TP-Link patched a high severity flaw (CVE-2025-15517) in Archer NX routers that could let attackers bypass authentication and install malicious...

Cisco fixed critical and high-severity flaws

securityaffairs.co - 02/Apr 17:04

Cisco fixed critical flaws that could allow attackers to bypass authentication, run code, and gain access to sensitive data. Cisco released patches...

F5 NGINX Plus and Open Source Vulnerability Allow Attackers to Execute Code Using MP4 file

itsecuritynews.info - 25/Mar 14:09

A high-severity vulnerability has been disclosed affecting both NGINX Open Source and NGINX Plus. Tracked formally as CVE-2026-32647, this security...

Max severity Flowise RCE vulnerability now exploited in attacks

bleepingcomputer.com - 17:02

Hackers are exploiting a maximum-severity vulnerability, tracked as CVE-2025-59528, in the open-source platform Flowise for building custom LLM apps...

العناوين :

CVE-2024-12847: Proof-of-Concept Exploit Code Released

Articles similaires

Vim Vulnerability Let Attackers Execute Arbitrary Command Via Weaponized Files

Vim Modeline Bypass Vulnerability Let Attackers Execute Arbitrary OS Commands

Vim Modeline Bypass Vulnerability Let Attackers Execute Arbitrary OS Commands

Vim Modeline Vulnerability Opens Door to Arbitrary OS Command Execution

Vim Modeline Vulnerability Opens Door to Arbitrary OS Command Execution

Cisco Secure Firewall Vulnerability Exposes Systems to Remote Code Execution by Attackers

Patch now: TP-Link Archer NX routers vulnerable to firmware takeover

Cisco fixed critical and high-severity flaws

F5 NGINX Plus and Open Source Vulnerability Allow Attackers to Execute Code Using MP4 file

Max severity Flowise RCE vulnerability now exploited in attacks

أحدث الإصدارات