CVE-2024-52046 Impacts Apache Mina

CVE-2024-52046 is a critical security vulnerability found in the Apache MINA library. This vulnerability is located within the ObjectSerializationDecoder component, which uses Java’s native serialization mechanisms to decode incoming serialized data. The core issue is the absence of robust security checks and validation during the deserialization process, allowing attackers to craft malicious serialized data that […]

Patch now: TP-Link Archer NX routers vulnerable to firmware takeover

securityaffairs.co - 25/Mar 14:44

TP-Link patched a high severity flaw (CVE-2025-15517) in Archer NX routers that could let attackers bypass authentication and install malicious...

Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites

securityaffairs.co - 12/Mar 13:25

An unauthenticated SQL injection flaw (CVE-2026-2413) in the Ally WordPress plugin, used on 400K+ sites, could allow attackers to steal sensitive...

Oracle Fixes High-Severity RCE Vulnerability Affecting Identity and Web Services Platforms

itsecuritynews.info - 21/Mar 09:36

Oracle recently issued an urgent security alert regarding a critical Remote Code Execution (RCE) flaw that impacts both Oracle Identity Manager and...

Oracle Fixes High-Severity RCE Vulnerability Affecting Identity and Web Services Platforms

itsecuritynews.info - 21/Mar 09:36

Oracle recently issued an urgent security alert regarding a critical Remote Code Execution (RCE) flaw that impacts both Oracle Identity Manager and...

Cisco Secure Firewall Vulnerability Exposes Systems to Remote Code Execution by Attackers

itsecuritynews.info - 05:11

Cisco has released critical security updates to address a maximum-severity vulnerability affecting its Secure Firewall Management Center (FMC)...

Citrix NetScaler critical flaw could leak data, update now

securityaffairs.co - 24/Mar 12:46

Citrix warns of a critical NetScaler flaw (CVE-2026-3055) that could leak sensitive data; users are urged to apply security updates immediately....

CISA Reveals New Details on RESURGE Malware Exploiting Ivanti Zero-Day Vulnerability

itsecuritynews.info - 14/Mar 15:34

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has published fresh technical insights into RESURGE, a malicious implant leveraged...

Claude Vulnerabilities Allow Data Exfiltration and User Redirection to Malicious Sites

itsecuritynews.info - 19/Mar 14:07

Three chained vulnerabilities in Claude.ai, Anthropic’s widely used AI assistant, that together allow attackers to silently exfiltrate sensitive...

Claude Vulnerabilities Allow Data Exfiltration and User Redirection to Malicious Sites

itsecuritynews.info - 19/Mar 14:07

Three chained vulnerabilities in Claude.ai, Anthropic’s widely used AI assistant, that together allow attackers to silently exfiltrate sensitive...

Cisco Firewall 0-day Vulnerability Exploited in the Wild to Deploy Interlock Ransomware

itsecuritynews.info - 18/Mar 18:09

An active campaign by the Interlock ransomware group is exploiting a critical zero-day vulnerability (CVE-2026-20131) in Cisco Secure Firewall...

Rubriques :

CVE-2024-52046 Impacts Apache Mina

Articles similaires

Patch now: TP-Link Archer NX routers vulnerable to firmware takeover

Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites

Oracle Fixes High-Severity RCE Vulnerability Affecting Identity and Web Services Platforms

Oracle Fixes High-Severity RCE Vulnerability Affecting Identity and Web Services Platforms

Cisco Secure Firewall Vulnerability Exposes Systems to Remote Code Execution by Attackers

Citrix NetScaler critical flaw could leak data, update now

CISA Reveals New Details on RESURGE Malware Exploiting Ivanti Zero-Day Vulnerability

Claude Vulnerabilities Allow Data Exfiltration and User Redirection to Malicious Sites

Claude Vulnerabilities Allow Data Exfiltration and User Redirection to Malicious Sites

Cisco Firewall 0-day Vulnerability Exploited in the Wild to Deploy Interlock Ransomware

Les derniers communiqués