X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 26/12/2024 13:00

CVE-2024-52046 Impacts Apache Mina

CVE-2024-52046 is a critical security vulnerability found in the Apache MINA library. This vulnerability is located within the ObjectSerializationDecoder component, which uses Java’s native serialization mechanisms to decode incoming serialized data. The core issue is the absence of robust security checks and validation during the deserialization process, allowing attackers to craft malicious serialized data that […]

Articles similaires

Sorry! Image not available at this time

Critical Apache Struts 2 Flaw Could Let Attackers Steal Sensitive Data

itsecuritynews.info - 12/Jan 10:03

A newly disclosed vulnerability in Apache Struts 2’s XWork component could expose sensitive data and open the door to denial‑of‑service and...

Sorry! Image not available at this time

Critical Apache Struts 2 Flaw Could Let Attackers Steal Sensitive Data

itsecuritynews.info - 12/Jan 10:03

A newly disclosed vulnerability in Apache Struts 2’s XWork component could expose sensitive data and open the door to denial‑of‑service and...

Sorry! Image not available at this time

LangChain Security Issue Puts AI Application Data at Risk

itsecuritynews.info - 11/Jan 18:06

  A critical security vulnerability has been identified in LangChain’s core library that could allow attackers to extract sensitive system data...

Sorry! Image not available at this time

LangChain Security Issue Puts AI Application Data at Risk

itsecuritynews.info - 11/Jan 18:06

  A critical security vulnerability has been identified in LangChain’s core library that could allow attackers to extract sensitive system data...

Sorry! Image not available at this time

Critical MongoDB Flaw Allows Unauthenticated Memory Data Leaks

itsecuritynews.info - 11/Jan 13:04

  A critical security flaw in MongoDB could allow unauthenticated attackers to extract sensitive data directly from server memory, prompting urgent...

Sorry! Image not available at this time

Critical MongoDB Flaw Allows Unauthenticated Memory Data Leaks

itsecuritynews.info - 11/Jan 13:04

  A critical security flaw in MongoDB could allow unauthenticated attackers to extract sensitive data directly from server memory, prompting urgent...

Sorry! Image not available at this time

Cisco fixes AsyncOS vulnerability exploited in zero-day attacks (CVE-2025-20393)

itsecuritynews.info - 15:04

Cisco has finally shipped security updates for its Email Security Gateway and Secure Email and Web Manager devices, which fix CVE-2025-20393, a...

Sorry! Image not available at this time

Cisco fixes AsyncOS vulnerability exploited in zero-day attacks (CVE-2025-20393)

itsecuritynews.info - 15:04

Cisco has finally shipped security updates for its Email Security Gateway and Secure Email and Web Manager devices, which fix CVE-2025-20393, a...

Sorry! Image not available at this time

OWASP CRS Vulnerability Enables Charset Validation Bypass

itsecuritynews.info - 09/Jan 17:32

A newly disclosed vulnerability in the OWASP Core Rule Set (CRS) allows attackers to bypass charset validation in web application firewalls (WAFs),...

Sorry! Image not available at this time

Ni8mare flaw gives unauthenticated control of n8n instances

securityaffairs.co - 07/Jan 21:15

A critical n8n flaw (CVE-2026-21858, CVSS 10.0), dubbed Ni8mare, allows unauthenticated attackers to fully take over vulnerable instances. Researchers...

Les derniers communiqués