Veeam Fixes Vulnerabilities in (ONE) Product

Veeam has issued a critical security advisory detailing multiple vulnerabilities affecting Veeam ONE, that affect Veeam ONE 12.1.0.3208 and all earlier builds, expose systems to remote code execution (RCE), credential theft, and configuration tampering. Vulnerabilities list All Veeam ONE versions prior to v12.2 (build 12.2.0.4093) are affected. Veeam has released an updated version that addresses […]

Massive PSAUX ransomware attack targets 22,000 CyberPanel instances

bleepingcomputer.com - 29/Oct 19:15

Over 22,000 CyberPanel instances exposed online to a critical remote code execution (RCE) vulnerability were mass-targeted in a PSAUX ransomware...

Windows Themes zero-day bug exposes users to NTLM credential theft

itsecuritynews.info - 30/Oct 22:04

Plus a free micropatch until Redmond fixes the flaw There’s a Windows Themes spoofing zero-day bug on the loose that allows attackers to steal...

Gitlab fixes CVE-2024-8312 and CVE-2024-6826

thecyberthrone.in - 25/Oct 08:17

GitLab has released patches for two vulnerabilities affecting multiple versions of its Community Edition (CE) and Enterprise Edition (EE) software....

qBittorrent fixes flaw exposing users to MitM attacks for 14 years

bleepingcomputer.com - 31/Oct 15:11

qBittorrent has addressed a remote code execution flaw caused by the failure to validate SSL/TLS certificates in the application's DownloadManager, a...

Researchers Uncover Vulnerabilities in Open-Source AI and ML Models

itsecuritynews.info - 29/Oct 14:09

A little over three dozen security vulnerabilities have been disclosed in various open-source artificial intelligence (AI) and machine learning (ML)...

Millions of Synology NAS devices vulnerable to zero-click attacks (CVE-2024-10443)

itsecuritynews.info - 04/Nov 14:36

Synology has released fixes for an unauthenticated “zero-click” remote code execution flaw (CVE-2024-10443, aka RISK:STATION) affecting its...

Google fixes CVE-2024-10487 and CVE-2024-10488 in latest Chrome version

thecyberthrone.in - 30/Oct 08:20

Google has released updates to address two vulnerabilities in the Chrome browser that could potentially allow attackers to take control of...

Hackers Can Access Mazda Vehicle Controls Via System Vulnerabilities

itsecuritynews.info - 17:34

Hackers can exploit critical vulnerabilities in Mazda’s infotainment system, including one that enables code execution via USB, compromising… This...

Mozilla Foundation lays off 30% staff, drops advocacy division

itsecuritynews.info - 05/Nov 20:32

This is the second layoff at Mozilla this year, the first affecting dozens of staff on the side of the organization that builds the popular Firefox...

ServiceNow fixes CVE-2024-8923 and CVE-2024-8924

thecyberthrone.in - 31/Oct 17:07

ServiceNow has addressed two significant vulnerabilities, CVE-2024-8923 and CVE-2024-8924, which could enable unauthorized remote access, potentially...

Rubriques :