X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 01/01/2025 09:58

CVE-2024-12987 affecting DrayTek Routers

CVE-2024-12987 is a critical security vulnerability identified in the DrayTek Vigor2960 and Vigor300B routers, specifically affecting firmware version 1.5.1.4. This vulnerability resides within the Web Management Interface, in the file path /cgi-bin/mainfunction.cgi/apmcfgupload. Detailed Breakdown 1. Nature of the Vulnerability:This vulnerability involves an OS Command Injection flaw. It is triggered by manipulating the session argument passed […]

Articles similaires

Sorry! Image not available at this time

WPair – Scanner Tool to Detect WhisperPair Flaw in Google’s Fast Pair Protocol

itsecuritynews.info - 20/Jan 17:38

WPair is an Android application designed to identify and demonstrate the CVE-2025-36911 vulnerability affecting millions of Bluetooth audio devices...

Sorry! Image not available at this time

WPair – Scanner Tool to Detect WhisperPair Flaw in Google’s Fast Pair Protocol

itsecuritynews.info - 20/Jan 17:38

WPair is an Android application designed to identify and demonstrate the CVE-2025-36911 vulnerability affecting millions of Bluetooth audio devices...

Sorry! Image not available at this time

Critical TP-Link VIGI camera flaw allowed remote takeover of surveillance systems

securityaffairs.co - 20/Jan 15:20

TP-Link fixed a critical flaw that exposed over 32 VIGI C and VIGI InSight camera models to remote hacking, with over 2,500 internet-exposed devices...

Sorry! Image not available at this time

Cisco Unified Communications 0-day RCE Vulnerability Exploited in the Wild to Gain Root Access

itsecuritynews.info - 22/Jan 04:15

Cisco has disclosed a critical zero-day remote code execution (RCE) vulnerability, CVE-2026-20045, actively exploited in the wild. Affecting key...

Sorry! Image not available at this time

Cisco Unified Communications 0-day RCE Vulnerability Exploited in the Wild to Gain Root Access

itsecuritynews.info - 22/Jan 04:15

Cisco has disclosed a critical zero-day remote code execution (RCE) vulnerability, CVE-2026-20045, actively exploited in the wild. Affecting key...

Sorry! Image not available at this time

Zoom fixed critical Node Multimedia Routers flaw

securityaffairs.co - 21/Jan 18:33

Zoom addressed a critical security vulnerability, tracked as CVE-2026-22844, that could result in remote code execution. Cloud-based video...

Sorry! Image not available at this time

Apache bRPC Vulnerability Enables Remote Command Injection

itsecuritynews.info - 20/Jan 05:32

A critical remote command-injection vulnerability has been discovered in Apache bRPC’s built-in heap profiler service, affecting all versions before...

Sorry! Image not available at this time

Apache bRPC Vulnerability Enables Remote Command Injection

itsecuritynews.info - 20/Jan 05:32

A critical remote command-injection vulnerability has been discovered in Apache bRPC’s built-in heap profiler service, affecting all versions before...

Sorry! Image not available at this time

Palo Alto Networks addressed a GlobalProtect flaw, PoC exists

securityaffairs.co - 15/Jan 11:26

Palo Alto Networks addressed a flaw impacting GlobalProtect Gateway and Portal, for which a proof-of-concept (PoC) exploit exists. Palo Alto Networks...

Sorry! Image not available at this time

ServiceNow Patches Critical AI Platform Flaw Allowing Unauthenticated User Impersonation

itsecuritynews.info - 13/Jan 12:02

ServiceNow has disclosed details of a now-patched critical security flaw impacting its ServiceNow AI Platform that could enable an unauthenticated...

Les derniers communiqués