Fortinet fixes FortiClient VPN Flaw CVE-2024-47574

Fortinet’s has patched vulnerability in FortiClient VPN application potentially allows privilege escalation, execute code and possibly take over the box, and delete log files. The vulnerability is tracked as CVE-2024-47574, witj a CVSS score of 7.8, which affects FortiClientWindows version 7.4.0, 7.2.4 through 7.2.0, 7.0.12 through 7.0.0, and 6.4.10 through 6.4.0. The exploitation of the […]

The CyberThrone most exploited vulnerabilities review – November 16, 2024

thecyberthrone.in - 02:44

Welcome to TheCyberThrone most exploited vulnerabilities review. This review is for the weeks ending Saturday, November 16, 2024. FortiNet...

D-Link NAS Devices affected by a Critical flaw CVE-2024-10914

thecyberthrone.in - 09/Nov 03:50

D-Link NAS devices have been affected by a critical vulnerability, impacts several D-Link NAS models, including DNS-320, DNS-320LW, DNS-325, and...

WordPress WPMLS Theme has a Critical Bug CVE-2024-10470

thecyberthrone.in - 14/Nov 02:21

A security researcher, Friderika Baranyai, has discovered a critical path traversal bug in the WPLMS WordPress theme that leaves websites , allows...

Ivanti Addressed Multiple Vulnerabilities as part of November 2024 advisories

thecyberthrone.in - 13/Nov 13:27

Ivanti has released trove of security updates as part of November 2024 security advisory Ivanti Endpoint Manager The most critical...

Hackers target critical flaw CVE-2024-10914 in EOL D-Link NAS Devices

securityaffairs.co - 14/Nov 23:34

The exploitation of the recently disclosed ‘won’t fix’ issue CVE-2024-10914 in legacy D-Link NAS devices began days after its disclosure. ...

Cisco Flaw Let Attackers Run Command as Root User

itsecuritynews.info - 07/Nov 06:07

A critical vulnerability has been discovered in Cisco Unified Industrial Wireless Software, which affects Cisco Ultra-Reliable Wireless Backhaul...

CISA adds Palo Alto flaws to KEV Catalog

thecyberthrone.in - 15/Nov 07:35

The US CISA has issued an urgent alert and added two new vulnerabilities related to Palo Alto Networks to its Known Exploited Vulnerabilities Catalog...

Warning: DEEPDATA Malware Exploiting Unpatched Fortinet Flaw to Steal VPN Credentials

itsecuritynews.info - 16/Nov 07:34

A threat actor known as BrazenBamboo has exploited an unresolved security flaw in Fortinet’s FortiClient for Windows to extract VPN credentials as...

QNAP addresses CVE-2024-50389 in QuRouter

thecyberthrone.in - 04/Nov 14:22

QNAP has addressed a critical zero-day vulnerability in its QuRouter network security appliance, exploited by security researchers during the recent...

Russian Hackers Exploit New NTLM Flaw to Deploy RAT Malware via Phishing Emails

itsecuritynews.info - 14/Nov 07:09

A newly patched security flaw impacting Windows NT LAN Manager (NTLM) was exploited as a zero-day by a suspected Russia-linked actor as part of cyber...

Rubriques :