SonicWall warns customers of a critical zero-day vulnerability in SMA 1000 Series appliances, likely exploited in the wild. SonicWall is waring...
Vous n'êtes pas connecté
- English
- Français
- عربي
- Español
- Deutsch
- Português
- русский язык
- Català
- Italiano
- Nederlands, Vlaams
- Norsk
- فارسی
- বাংলা
- اردو
- Azərbaycan dili
- Bahasa Indonesia
- Հայերեն
- Ελληνικά
- Bosanski jezik
- українська мова
- Íslenska
- Türkmen, Түркмен
- Türkçe
- Shqip
- Eesti keel
- magyar
- Қазақ тілі
- Kalaallisut ; kalaallit oqaasii
- Lietuvių kalba
- Latviešu valoda
- македонски јазик
- Монгол
- Bahasa Melayu ; بهاس ملايو
- ဗမာစာ
- Slovenščina
- тоҷикӣ ; toğikī ; تاجیکی
- ไทย
- O'zbek ; Ўзбек ; أۇزبېك
- Tiếng Việt
- ភាសាខ្មែរ
- རྫོང་ཁ
- Soomaaliga ; af Soomaali
Maroc - THECYBERTHRONE.IN - A La Une - 24/Jan 01:34
CVE-2025-23006 impacts SonicWall SMA 1000 Series
CVE-2025-23006 is a critical pre-authentication deserialization of untrusted data vulnerability identified in SonicWall’s Secure Mobile Access (SMA) 1000 series appliances. This vulnerability poses significant risks, enabling remote, unauthenticated attackers to execute arbitrary operating system commands under specific conditions. The affected components are the Appliance Management Console (AMC) and the Central Management Console (CMC), which are […]
Articles similaires
SonicWall warns of SMA1000 RCE flaw exploited in zero-day attacks
bleepingcomputer.com - 23/Jan 15:45
SonicWall is warning about a pre-authentication deserialization vulnerability in SonicWall SMA1000 Appliance Management Console (AMC) and Central...
U.S. CISA adds SonicWall SMA1000 flaw to its Known Exploited Vulnerabilities catalog
securityaffairs.co - 24/Jan 20:01
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds SonicWall SMA1000 vulnerability to its Known Exploited Vulnerabilities catalog. The...
CISA Warns of SonicWall 0-day RCE Vulnerability Exploited in Wild
itsecuritynews.info - 04:06
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding a critical vulnerability, CVE-2025-23006, affecting...
CVE-2025-0411 impacts 7-Zip with Code Execution
thecyberthrone.in - 21/Jan 13:27
Background of CVE-2025-0411 CVE-2025-0411 is a security flaw identified in 7-Zip, a widely-used open-source file archiver. This vulnerability allows...
Threat actors exploit Aviatrix Controller flaw to deploy backdoors and cryptocurrency miners
securityaffairs.co - 14/Jan 10:23
A critical vulnerability in Aviatrix Controller is actively exploited to deploy backdoors and cryptocurrency miners in the wild. A security researcher...
CVE-2024-50603 impacts Aviatrix with Cryptomining
thecyberthrone.in - 16/Jan 04:04
CVE-2024-50603 is a critical security vulnerability identified in the Aviatrix Controller, a cloud networking platform used to manage and secure cloud...
CVE-2024-5594 impacts OpenVPN
thecyberthrone.in - 12/Jan 02:21
CVE-2024-5594 is a critical vulnerability identified in OpenVPN versions prior to 2.6.11. This vulnerability stems from improper sanitization of...
Kubernetes Cluster RCE Vulnerability Let Attacker Takeover All Windows Nodes
itsecuritynews.info - 04:06
A critical vulnerability in Kubernetes, designated as CVE-2024-9042, has been discovered, enabling attackers to execute remote code with SYSTEM...
CVE-2025-0107 PoC Exploit Code Released for PaloAlto Flaw
thecyberthrone.in - 19/Jan 00:56
Background: CVE-2025-0107 is a critical OS command injection vulnerability discovered in Palo Alto Networks’ Expedition Tool, version 1.2.101...
Les derniers communiqués
-
Aucun élément