SonicWall warns customers of a critical zero-day vulnerability in SMA 1000 Series appliances, likely exploited in the wild. SonicWall is waring...
Vous n'êtes pas connecté
- English
- Français
- عربي
- Español
- Deutsch
- Português
- русский язык
- Català
- Italiano
- Nederlands, Vlaams
- Norsk
- فارسی
- বাংলা
- اردو
- Azərbaycan dili
- Bahasa Indonesia
- Հայերեն
- Ελληνικά
- Bosanski jezik
- українська мова
- Íslenska
- Türkmen, Түркмен
- Türkçe
- Shqip
- Eesti keel
- magyar
- Қазақ тілі
- Kalaallisut ; kalaallit oqaasii
- Lietuvių kalba
- Latviešu valoda
- македонски јазик
- Монгол
- Bahasa Melayu ; بهاس ملايو
- ဗမာစာ
- Slovenščina
- тоҷикӣ ; toğikī ; تاجیکی
- ไทย
- O'zbek ; Ўзбек ; أۇزبېك
- Tiếng Việt
- ភាសាខ្មែរ
- རྫོང་ཁ
- Soomaaliga ; af Soomaali
Maroc - THECYBERTHRONE.IN - A La Une - 24/Jan 01:34
CVE-2025-23006 impacts SonicWall SMA 1000 Series
CVE-2025-23006 is a critical pre-authentication deserialization of untrusted data vulnerability identified in SonicWall’s Secure Mobile Access (SMA) 1000 series appliances. This vulnerability poses significant risks, enabling remote, unauthenticated attackers to execute arbitrary operating system commands under specific conditions. The affected components are the Appliance Management Console (AMC) and the Central Management Console (CMC), which are […]
Articles similaires
SonicWall warns of SMA1000 RCE flaw exploited in zero-day attacks
bleepingcomputer.com - 23/Jan 15:45
SonicWall is warning about a pre-authentication deserialization vulnerability in SonicWall SMA1000 Appliance Management Console (AMC) and Central...
U.S. CISA adds SonicWall SMA1000 flaw to its Known Exploited Vulnerabilities catalog
securityaffairs.co - 24/Jan 20:01
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds SonicWall SMA1000 vulnerability to its Known Exploited Vulnerabilities catalog. The...
CISA Warns of SonicWall 0-day RCE Vulnerability Exploited in Wild
itsecuritynews.info - 26/Jan 04:06
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding a critical vulnerability, CVE-2025-23006, affecting...
CVE-2025-0411 impacts 7-Zip with Code Execution
thecyberthrone.in - 21/Jan 13:27
Background of CVE-2025-0411 CVE-2025-0411 is a security flaw identified in 7-Zip, a widely-used open-source file archiver. This vulnerability allows...
Vulnerability Summary for the Week of January 20, 2025
itsecuritynews.info - 27/Jan 18:36
High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info aEnrich Technology–a+HRD The a+HRD from aEnrich...
VMware fixes CVE-2025-22217 in Avi Load Balancer
thecyberthrone.in - 29/Jan 00:56
Background CVE-2025-22217 is a critical vulnerability identified in VMware’s Avi Load Balancer, which is an unauthenticated blind SQL injection...
Kubernetes Cluster RCE Vulnerability Let Attacker Takeover All Windows Nodes
itsecuritynews.info - 26/Jan 04:06
A critical vulnerability in Kubernetes, designated as CVE-2024-9042, has been discovered, enabling attackers to execute remote code with SYSTEM...
TheCyberThrone Security BiWeekly Review – January 25, 2025
thecyberthrone.in - 26/Jan 03:18
Welcome to TheCyberThrone. Cybersecurity week in review will be posted covering the important security happenings. This review is for the bi-weekly...
Attackers actively exploit a critical zero-day in Zyxel CPE Series devices
securityaffairs.co - 29/Jan 10:17
Experts warn that threat actors are actively exploiting critical zero-day vulnerability, tracked as CVE-2024-40891, in Zyxel CPE Series devices....
Les derniers communiqués
-
Aucun élément