X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 01/Jan 09:58

CVE-2024-12987 affecting DrayTek Routers

CVE-2024-12987 is a critical security vulnerability identified in the DrayTek Vigor2960 and Vigor300B routers, specifically affecting firmware version 1.5.1.4. This vulnerability resides within the Web Management Interface, in the file path /cgi-bin/mainfunction.cgi/apmcfgupload. Detailed Breakdown 1. Nature of the Vulnerability:This vulnerability involves an OS Command Injection flaw. It is triggered by manipulating the session argument passed […]

Articles similaires

Sorry! Image not available at this time

Critical ASP.NET flaw hits QNAP NetBak PC Agent

securityaffairs.co - 28/Oct 12:23

QNAP warns of critical ASP.NET flaw (CVE-2025-55315) in NetBak PC Agent, letting attackers hijack credentials or bypass security via HTTP smuggling....

Sorry! Image not available at this time

AMD Zen 5 Processors RDSEED Vulnerability Breaks Integrity With Randomness

itsecuritynews.info - 04/Nov 06:34

AMD has disclosed a critical vulnerability affecting its Zen 5 processor lineup that compromises the reliability of random number generation, a...

Sorry! Image not available at this time

AMD Zen 5 Processors RDSEED Vulnerability Breaks Integrity With Randomness

itsecuritynews.info - 04/Nov 06:34

AMD has disclosed a critical vulnerability affecting its Zen 5 processor lineup that compromises the reliability of random number generation, a...

Sorry! Image not available at this time

Microsoft Issues Alert on ASP.NET Flaw Allowing HTTP Request Smuggling Attacks

itsecuritynews.info - 29/Oct 05:34

Microsoft has released a critical security update addressing a severe vulnerability in ASP.NET Core that could enable attackers to execute HTTP...

Sorry! Image not available at this time

PoC code drops for remotely exploitable BIND 9 DNS flaw (CVE-2025-40778)

itsecuritynews.info - 28/Oct 17:34

A high-severity vulnerability (CVE-2025-40778) affecting BIND 9 DNS resolvers could be leveraged by remote, unauthenticated attackers to manipulate...

Sorry! Image not available at this time

PoC code drops for remotely exploitable BIND 9 DNS flaw (CVE-2025-40778)

itsecuritynews.info - 28/Oct 17:34

A high-severity vulnerability (CVE-2025-40778) affecting BIND 9 DNS resolvers could be leveraged by remote, unauthenticated attackers to manipulate...

Sorry! Image not available at this time

China-linked hackers exploit patched ToolShell flaw to breach Middle East telecom

securityaffairs.co - 24/Oct 08:37

China-based threat actors exploited ToolShell SharePoint flaw CVE-2025-53770 soon after its July patch. China-linked threat actors exploited...

Sorry! Image not available at this time

CVE-2025-59287: Microsoft fixes critical WSUS flaw under active attack

securityaffairs.co - 25/Oct 10:49

Microsoft released urgent updates to address the critical WSUS RCE vulnerability CVE-2025-59287, which is under active attack.. Microsoft released an...

Sorry! Image not available at this time

Hackers Exploiting Windows Server Update Services Flaw to Steal Sensitive Data from Organizations

itsecuritynews.info - 01/Nov 01:33

Windows Server Update Services (WSUS) vulnerability is actively exploited in the wild. Criminals are using this vulnerability to steal sensitive data...

Sorry! Image not available at this time

Hackers Exploiting Windows Server Update Services Flaw to Steal Sensitive Data from Organizations

itsecuritynews.info - 01/Nov 01:33

Windows Server Update Services (WSUS) vulnerability is actively exploited in the wild. Criminals are using this vulnerability to steal sensitive data...

Les derniers communiqués