X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 26/12/2024 13:00

CVE-2024-52046 Impacts Apache Mina

CVE-2024-52046 is a critical security vulnerability found in the Apache MINA library. This vulnerability is located within the ObjectSerializationDecoder component, which uses Java’s native serialization mechanisms to decode incoming serialized data. The core issue is the absence of robust security checks and validation during the deserialization process, allowing attackers to craft malicious serialized data that […]

Articles similaires

Sorry! Image not available at this time

Gakido CRLF Injection Vulnerability Let Attackers Bypass Security Controls

itsecuritynews.info - 02/Feb 14:13

A critical vulnerability in Gakido, an HTTP client library by HappyHackingSpace, has been discovered that allows attackers to inject arbitrary HTTP...

Sorry! Image not available at this time

Critical Fortinet FortiClientEMS flaw allows remote code execution

itsecuritynews.info - 09/Feb 21:34

Fortinet warns of a critical FortiClientEMS vulnerability that lets remote attackers run malicious code without logging in. Fortinet issued an urgent...

Sorry! Image not available at this time

Critical Vulnerability in Next-Mdx-Remote Allows Arbitrary Code Execution in React Server-Side Rendering

itsecuritynews.info - 13/Feb 08:20

Security advisory HCSEC-2026-01 revealed a critical vulnerability in the next-mdx-remote library that allows attackers to execute arbitrary code on...

Sorry! Image not available at this time

Critical Fortinet FortiClientEMS flaw allows remote code execution

securityaffairs.co - 09/Feb 20:54

Fortinet warns of a critical FortiClientEMS vulnerability that lets remote attackers run malicious code without logging in. Fortinet issued an urgent...

Sorry! Image not available at this time

CVE-2025-22225 in VMware ESXi now used in active ransomware attacks

securityaffairs.co - 04/Feb 22:02

Ransomware groups now exploit VMware ESXi vulnerability CVE-2025-22225, patched by Broadcom in March 2025. The U.S. Cybersecurity and Infrastructure...

Sorry! Image not available at this time

Critical SQL Injection in FortiClientEMS: CVE-2026-21643

thecyberthrone.in - 12/Feb 01:03

CVE-2026-21643 is a critical SQL injection vulnerability affecting Fortinet FortiClientEMS version 7.4.4, enabling unauthenticated attackers to...

Sorry! Image not available at this time

Cisco Meeting Management Vulnerability Let Remote Attacker Upload Arbitrary Files

itsecuritynews.info - 05/Feb 10:36

A high-severity security advisory has been issued for a critical vulnerability in Meeting Management software. This vulnerability allows authenticated...

Sorry! Image not available at this time

Cisco Meeting Management Vulnerability Let Remote Attacker Upload Arbitrary Files

itsecuritynews.info - 05/Feb 10:36

A high-severity security advisory has been issued for a critical vulnerability in Meeting Management software. This vulnerability allows authenticated...

Sorry! Image not available at this time

Critical SandboxJS Vulnerability Allows Remote Host Takeover – PoC Released

itsecuritynews.info - 11/Feb 17:18

A severe sandbox escape vulnerability has been discovered in the JavaScript library, enabling attackers to execute arbitrary code on host systems. The...

Sorry! Image not available at this time

Google fixes first actively exploited Chrome zero-day of 2026

securityaffairs.co - 10:10

Google patched Chrome zero-day CVE-2026-2441, a high-severity CSS use-after-free flaw actively exploited in the wild. Google has released urgent...

Les derniers communiqués