ServiceNow has addressed two significant vulnerabilities, CVE-2024-8923 and CVE-2024-8924, which could enable unauthorized remote access, potentially...
Vous n'êtes pas connecté
- English
- Français
- عربي
- Español
- Deutsch
- Português
- русский язык
- Català
- Italiano
- Nederlands, Vlaams
- Norsk
- فارسی
- বাংলা
- اردو
- Azərbaycan dili
- Bahasa Indonesia
- Հայերեն
- Ελληνικά
- Bosanski jezik
- українська мова
- Íslenska
- Türkmen, Түркмен
- Türkçe
- Shqip
- Eesti keel
- magyar
- Қазақ тілі
- Kalaallisut ; kalaallit oqaasii
- Lietuvių kalba
- Latviešu valoda
- македонски јазик
- Монгол
- Bahasa Melayu ; بهاس ملايو
- ဗမာစာ
- Slovenščina
- тоҷикӣ ; toğikī ; تاجیکی
- ไทย
- O'zbek ; Ўзбек ; أۇزبېك
- Tiếng Việt
- ភាសាខ្មែរ
- རྫོང་ཁ
- Soomaaliga ; af Soomaali
Maroc - THECYBERTHRONE.IN - A La Une - 06/Sep 03:52
GeoServer Vulnerability CVE-2024-36401 exploited in attack campaigns
Researchers at FortiGuard Labs have uncovered multiple campaigns targeting a critical vulnerability in GeoServer, allows unauthenticated attackers to execute arbitrary code on affected systems, leading to serious consequences such as malware deployment, data theft, or unauthorized system control. The vulnerability tracked as CVE-2024-36401 with a CVSS score of 9.8 stems from unsafely handling user input […]
Articles similaires
The CyberThrone most exploited vulnerabilities review – October 26, 2024
thecyberthrone.in - 28/Oct 11:53
Welcome to TheCyberThrone most exploited vulnerabilities review. This review is for the weeks ending Saturday, October 26, 2024. Fortinet...
Apache Lucene fixes CVE-2024-43383
thecyberthrone.in - 02/Nov 04:02
Apache Lucene.NET, an open-source search library has been discovered having a security flaw that could allow attackers to remotely execute malicious...
Researchers Discover Command Injection Flaw in Wi-Fi Alliance’s Test Suite
itsecuritynews.info - 25/Oct 14:34
A security flaw impacting the Wi-Fi Test Suite could enable unauthenticated local attackers to execute arbitrary code with elevated privileges. The...
Researchers Discover Command Injection Flaw in Wi-Fi Alliance’s Test Suite
itsecuritynews.info - 25/Oct 14:34
A security flaw impacting the Wi-Fi Test Suite could enable unauthenticated local attackers to execute arbitrary code with elevated privileges. The...
Spring Security fixes Critical Vulnerability CVE-2024-38821
thecyberthrone.in - 29/Oct 08:30
Spring Security has disclosed a critical vulnerability impacting WebFlux applications, enables an authorization bypass under specific conditions. If...
Gitlab fixes CVE-2024-8312 and CVE-2024-6826
thecyberthrone.in - 25/Oct 08:17
GitLab has released patches for two vulnerabilities affecting multiple versions of its Community Edition (CE) and Enterprise Edition (EE) software....
QNAP fixes CVE-2024-50388 that’s exploited in Pwn2Own Ireland
thecyberthrone.in - 30/Oct 10:13
QNAP has addressed a critical zero-day vulnerability in its HBS 3 Hybrid Backup Sync software, following its successful exploitation at the recent...
Progress fixes Critical vulnerability in Whatsup Gold
thecyberthrone.in - 28/Oct 14:31
Progress Software has disclosed a critical vulnerability in its popular network monitoring solution, WhatsUp Gold, that exposes organizations to...
U.S. CISA adds Fortinet FortiManager flaw to its Known Exploited Vulnerabilities catalog
securityaffairs.co - 24/Oct 05:19
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Fortinet FortiManager flaw to its Known Exploited Vulnerabilities catalog. The U.S....
Les derniers communiqués
-
Aucun élément