Sophos fixes Triple Critical Vulnerabilities in its Firewall

Sophos released patches for three critical security vulnerabilities in their widely-used network security tool, Sophos Firewall that posed significant risks, including remote code execution and privilege escalation. CVE-2024-12727: Pre-Authentication SQL Injection This vulnerability with a CVSS score of 9.8 involves the email protection feature of Sophos Firewall. If a specific configuration of Secure PDF eXchange […]

Zoom fixed critical Node Multimedia Routers flaw

securityaffairs.co - 21/Jan 18:33

Zoom addressed a critical security vulnerability, tracked as CVE-2026-22844, that could result in remote code execution. Cloud-based video...

Fortinet fixed two critical flaws in FortiFone and FortiSIEM

securityaffairs.co - 14/Jan 15:07

Fortinet fixed six security flaws, including two critical bugs in FortiFone and FortiSIEM that attackers could exploit without authentication....

Actively exploited critical flaw in Modular DS WordPress plugin enables admin takeover

securityaffairs.co - 16/Jan 08:26

A critical Modular DS WordPress flaw (CVE-2026-23550) is actively exploited, enabling unauthenticated privilege escalation. Threat actors are actively...

U.S. CISA adds a flaw in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog

securityaffairs.co - 24/Jan 10:23

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw impacting Broadcom VMware vCenter to its Known Exploited Vulnerabilities...

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

securityaffairs.co - 24/Jan 00:27

Critical telnetd flaw CVE-2026-24061 (CVSS 9.8) affects all GNU InetUtils versions 1.9.3–2.7 and went unnoticed for nearly 11 years. A critical...

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

itsecuritynews.info - 24/Jan 01:31

Critical telnetd flaw CVE-2026-24061 (CVSS 9.8) affects all GNU InetUtils versions 1.9.3–2.7 and went unnoticed for nearly 11 years. A critical...

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

itsecuritynews.info - 24/Jan 01:31

Critical telnetd flaw CVE-2026-24061 (CVSS 9.8) affects all GNU InetUtils versions 1.9.3–2.7 and went unnoticed for nearly 11 years. A critical...

U.S. CISA adds a flaw in Cisco Unified Communications products to its Known Exploited Vulnerabilities catalog

securityaffairs.co - 22/Jan 07:54

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw impacting Cisco Unified Communications products to its Known Exploited...

Cisco Finaly Patches Critical AsyncOS Zero-Day: CVE-2025-20393

thecyberthrone.in - 16/Jan 11:47

Cisco has released patches for a maximum-severity AsyncOS vulnerability (CVE-2025-20393) that was actively exploited by a China-linked APT group since...

Cisco Finaly Patches Critical AsyncOS Zero-Day: CVE-2025-20393

thecyberthrone.in - 16/Jan 11:47

Cisco has released patches for a maximum-severity AsyncOS vulnerability (CVE-2025-20393) that was actively exploited by a China-linked APT group since...

العناوين :

Sophos fixes Triple Critical Vulnerabilities in its Firewall

Articles similaires

Zoom fixed critical Node Multimedia Routers flaw

Fortinet fixed two critical flaws in FortiFone and FortiSIEM

Actively exploited critical flaw in Modular DS WordPress plugin enables admin takeover

U.S. CISA adds a flaw in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

U.S. CISA adds a flaw in Cisco Unified Communications products to its Known Exploited Vulnerabilities catalog

Cisco Finaly Patches Critical AsyncOS Zero-Day: CVE-2025-20393

Cisco Finaly Patches Critical AsyncOS Zero-Day: CVE-2025-20393

أحدث الإصدارات