X

Vous n'êtes pas connecté

  - THECYBERTHRONE.IN - A La Une - 01/Jan 09:58

CVE-2024-12987 affecting DrayTek Routers

CVE-2024-12987 is a critical security vulnerability identified in the DrayTek Vigor2960 and Vigor300B routers, specifically affecting firmware version 1.5.1.4. This vulnerability resides within the Web Management Interface, in the file path /cgi-bin/mainfunction.cgi/apmcfgupload. Detailed Breakdown 1. Nature of the Vulnerability:This vulnerability involves an OS Command Injection flaw. It is triggered by manipulating the session argument passed […]

Articles similaires

Sorry! Image not available at this time

PoC Released for Linux Privilege Escalation Flaw in udisksd and libblockdev

itsecuritynews.info - 07/Jul 06:41

Security researchers disclosed a critical local privilege escalation (LPE) vulnerability affecting Fedora, SUSE, and other major Linux distributions....

Sorry! Image not available at this time

PoC Released for Linux Privilege Escalation Flaw in udisksd and libblockdev

itsecuritynews.info - 07/Jul 06:41

Security researchers disclosed a critical local privilege escalation (LPE) vulnerability affecting Fedora, SUSE, and other major Linux distributions....

Sorry! Image not available at this time

CVE-2025-25257 Critical FortiWeb SQL Injection Leading to RCE

thecyberthrone.in - 14/Jul 10:54

🔐 Vulnerability Summary 📌 Description This vulnerability allows unauthenticated remote attackers to perform SQL injection attacks on FortiWeb...

Sorry! Image not available at this time

CVE-2025-6558 – Chrome Zero-Day Sandbox Escape via GPU Rendering Flaw

thecyberthrone.in - 17/Jul 03:15

Threat Overview CVE-2025-6558 is a high-risk zero-day vulnerability (CVSS score: 8.8) impacting Google Chrome’s graphics rendering pipeline,...

Sorry! Image not available at this time

CVE-2025-6558 – Chrome Zero-Day Sandbox Escape via GPU Rendering Flaw

thecyberthrone.in - 17/Jul 03:15

Threat Overview CVE-2025-6558 is a high-risk zero-day vulnerability (CVSS score: 8.8) impacting Google Chrome’s graphics rendering pipeline,...

Sorry! Image not available at this time

Hackers scanning for TeleMessage Signal clone flaw exposing passwords

bleepingcomputer.com - 15:06

Researchers are seeing exploitation attempts for the CVE-2025-48927 vulnerability in the TeleMessage SGNL app, which allows retrieving usernames,...

Sorry! Image not available at this time

Hackers scanning for TeleMessage Signal clone flaw exposing passwords

bleepingcomputer.com - 15:06

Researchers are seeing exploitation attempts for the CVE-2025-48927 vulnerability in the TeleMessage SGNL app, which allows retrieving usernames,...

Sorry! Image not available at this time

CISA Issues Alert Over Actively Exploited Flaw in Zimbra Collaboration Suite

itsecuritynews.info - 08/Jul 07:05

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert regarding an actively exploited vulnerability in Synacor’s...

Sorry! Image not available at this time

CISA Alerts on Active Exploitation of PHPMailer Command Injection Flaw

itsecuritynews.info - 08/Jul 07:36

 The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert regarding the active exploitation of a long-standing...

Sorry! Image not available at this time

CISA Alerts on Active Exploitation of PHPMailer Command Injection Flaw

itsecuritynews.info - 08/Jul 07:36

 The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert regarding the active exploitation of a long-standing...