The DrayTek Gateway devices, more specifically the Vigor2960 and Vigor300B models, are susceptible to a critical command injection vulnerability. ...
Vous n'êtes pas connecté
- English
- Français
- عربي
- Español
- Deutsch
- Português
- русский язык
- Català
- Italiano
- Nederlands, Vlaams
- Norsk
- فارسی
- বাংলা
- اردو
- Azərbaycan dili
- Bahasa Indonesia
- Հայերեն
- Ελληνικά
- Bosanski jezik
- українська мова
- Íslenska
- Türkmen, Түркмен
- Türkçe
- Shqip
- Eesti keel
- magyar
- Қазақ тілі
- Kalaallisut ; kalaallit oqaasii
- Lietuvių kalba
- Latviešu valoda
- македонски јазик
- Монгол
- Bahasa Melayu ; بهاس ملايو
- ဗမာစာ
- Slovenščina
- тоҷикӣ ; toğikī ; تاجیکی
- ไทย
- O'zbek ; Ўзбек ; أۇزبېك
- Tiếng Việt
- ភាសាខ្មែរ
- རྫོང་ཁ
- Soomaaliga ; af Soomaali
Maroc - THECYBERTHRONE.IN - A La Une - 01/Jan 09:58
CVE-2024-12987 affecting DrayTek Routers
CVE-2024-12987 is a critical security vulnerability identified in the DrayTek Vigor2960 and Vigor300B routers, specifically affecting firmware version 1.5.1.4. This vulnerability resides within the Web Management Interface, in the file path /cgi-bin/mainfunction.cgi/apmcfgupload. Detailed Breakdown 1. Nature of the Vulnerability:This vulnerability involves an OS Command Injection flaw. It is triggered by manipulating the session argument passed […]
Articles similaires
DrayTek Devices Vulnerability Let Attackers Arbitrary Commands Remotely
itsecuritynews.info - 01/Jan 14:04
The DrayTek Gateway devices, more specifically the Vigor2960 and Vigor300B models, are susceptible to a critical command injection vulnerability. ...
Critical Security Issue Hits Four-Faith Routers
itsecuritynews.info - 01/Jan 11:06
< p style=”text-align: justify;”>According to VulnCheck, a critical vulnerability identified as CVE-2024-12856 has been discovered in...
Exploit Code released for Apache Traffic Control Flaw CVE-2024-45387
thecyberthrone.in - 30/12/2024 10:33
What is CVE-2024-45387? CVE-2024-45387 is a critical vulnerability identified in Apache Traffic Control, specifically affecting the Traffic Ops module...
Threat actors attempt to exploit a flaw in Four-Faith routers
securityaffairs.co - 30/12/2024 09:04
VulnCheck researchers warn that threat actors are attempting to exploit a high-severity vulnerability impacting some Four-Faith routers. Cybersecurity...
Hackers exploit Four-Faith router flaw to open reverse shells
bleepingcomputer.com - 30/12/2024 18:03
Threat actors are exploiting a post-authentication remote command injection vulnerability in Four-Faith routers tracked as CVE-2024-12856 to open...
15,000+ Four-Faith Routers Exposed to New Exploit Due to Default Credentials
itsecuritynews.info - 28/12/2024 07:04
A high-severity flaw impacting select Four-Faith routers has come under active exploitation in the wild, according to new findings from VulnCheck. The...
CVE-2024-43405 Vulnerability in Nuclei
thecyberthrone.in - 06/Jan 02:07
CVE-2024-43405 is a high severity vulnerability identified in Nuclei, a widely used open-source vulnerability scanner. This vulnerability, affecting...
CVE-2024-56512 impacts Apache NiFi
thecyberthrone.in - 30/12/2024 11:35
CVE-2024-56512 is a security vulnerability identified in Apache NiFi, specifically affecting versions 1.10.0 through 2.0.0. This vulnerability is due...
CISA KEV UPDATE Part I – January 2025
thecyberthrone.in - 01:06
The US CISA has added 3 vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog based on the evidence of active exploitation....
Les derniers communiqués
-
Aucun élément