X

Vous n'êtes pas connecté

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 11/Dec 13:20

Apache Superset 4.1.0 released with bug fixes

The Apache Software Foundation has announced the release of Apache Superset 4.1.0 with several bug fixes that could potentially allow attackers to bypass security controls, access sensitive data, and gain unauthorized privileges. The first vulnerability tracked as CVE-2024-53949 with a CVSS score of  7.6 affects Superset deployments where the FAB_ADD_SECURITY_API is enabled (disabled by default). […]

Articles similaires

Sorry! Image not available at this time

Apache Struts was affected by CVE-2024-53677

thecyberthrone.in - 13/Dec 03:59

Apache Struts framework has been detected with a critical vulnerability that could allow attackers to execute malicious code remotely, posing a...

Sorry! Image not available at this time

WordPress WPForms flaw CVE-2024-11205

thecyberthrone.in - 10/Dec 10:40

A critical vulnerability has been discovered in WordPress plugin WPForms. The flaw allows authenticated attackers with subscriber-level privileges or...

Sorry! Image not available at this time

Exploit Code Released for Microsoft CVE-2024-38193

thecyberthrone.in - 09/Dec 12:56

A critical use-after-free vulnerability, tracked as CVE-2024-38193 with a CVSS score of 7.8, has been discovered in the afd.sys Windows driver that...

Sorry! Image not available at this time

Apache Tomcat fixes CVE-2024-50379 and CVE-2024-54677

thecyberthrone.in - 18/Dec 15:46

The Apache Software Foundation has released patches to mitigate two newly discovered vulnerabilities in Apache Tomcat, an extensively used open-source...

Sorry! Image not available at this time

CISA adds CVE-2024-49138 to its KEV Catalog

thecyberthrone.in - 11/Dec 07:38

The US CISA adds Microsoft vulnerability to its Known Exploited Vulnerabilities Catalog based on the evidence of active exploitation. The...

Sorry! Image not available at this time

CISA KEV Catalog Update Part IV – December 2024

thecyberthrone.in - 17/Dec 01:45

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation....

Sorry! Image not available at this time

Ivanti fixed a maximum severity vulnerability in its CSA solution

securityaffairs.co - 11/Dec 14:47

Ivanti addressed a critical authentication bypass vulnerability impacting its Cloud Services Appliance (CSA) solution. Ivanti addressed a critical...

Sorry! Image not available at this time

Google fixes important vulnerabilities with the latest Google Chrome

thecyberthrone.in - 11/Dec 11:10

Google has released updates for its Chrome browser, addressing several security vulnerabilities, including two important vulnerabilities. The first...

Sorry! Image not available at this time

Threat actors are attempting to exploit Apache Struts vulnerability CVE-2024-53677

itsecuritynews.info - 18/Dec 21:32

Researchers warn that threat actors are attempting to exploit a recently disclosed Apache Struts vulnerability CVE-2024-53677. Researchers warn that...

Sorry! Image not available at this time

Ivanti fixed a maximum severity vulnerability in its CSA solution

itsecuritynews.info - 11/Dec 15:34

Ivanti addressed a critical authentication bypass vulnerability impacting its Cloud Services Appliance (CSA) solution. Ivanti addressed a critical...

Les derniers communiqués

  • Aucun élément