X

Vous n'êtes pas connecté

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 08/12/2024 11:01

Django was affected by CVE-2024-53907 and CVE-2024-53908

  The Django team has released Django 5.1.4, Django 5.0.10, and Django 4.2.17 versions to address two security vulnerabilities. The first vulnerability tracked as CVE-2024-53907 with a CVSS score of 7.5 is a DoS vulnerability in the django.utils.html.strip_tags() method and striptags template filter. According to the advisory, “certain inputs containing large sequences of nested incomplete […]

Articles similaires

Sorry! Image not available at this time

U.S. CISA adds Ivanti Connect Secure, Policy Secure, and ZTA Gateways flaw to its Known Exploited Vulnerabilities catalog

securityaffairs.co - 09/Jan 11:53

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Ivanti Connect Secure, Policy Secure, and ZTA Gateways flaw to its Known Exploited...

Sorry! Image not available at this time

Nuclei flaw allows signature bypass and code execution

securityaffairs.co - 05/Jan 19:06

A vulnerability in Nuclei, an open-source vulnerability scanner, could allow attackers to bypass signature checks and execute malicious code. A...

Sorry! Image not available at this time

Exploring CVSS 4.0’s Impact on Vulnerability and Threat Management

itsecuritynews.info - 11/Jan 13:17

The Common Vulnerability Scoring System (CVSS) offers a standardized framework for characterizing and scoring vulnerabilities, helping the effort for...

Sorry! Image not available at this time

CVE-2024-43405 Vulnerability in Nuclei

thecyberthrone.in - 06/Jan 02:07

CVE-2024-43405 is a high severity vulnerability identified in Nuclei, a widely used open-source vulnerability scanner. This vulnerability, affecting...

Sorry! Image not available at this time

SonicWall warns of an exploitable SonicOS vulnerability

securityaffairs.co - 08/Jan 23:09

SonicWall warns customers to address an authentication bypass vulnerability in its firewall’s SonicOS that is “susceptible to actual...

Sorry! Image not available at this time

Threat actors attempt to exploit a flaw in Four-Faith routers

securityaffairs.co - 30/12/2024 09:04

VulnCheck researchers warn that threat actors are attempting to exploit a high-severity vulnerability impacting some Four-Faith routers. Cybersecurity...

Sorry! Image not available at this time

Critical Command Injection Vulnerability Found in Aviatrix Network Controller (CVE-2024-50603)

itsecuritynews.info - 10/Jan 18:32

  Jakub Korepta, Principal Security Consultant at Securing, has discovered a critical command injection vulnerability in the Aviatrix Network...

Sorry! Image not available at this time

CVE-2024-49415 : Samsung Android devices Impacted

thecyberthrone.in - 11/Jan 14:04

CVE-2024-49415 is a critical vulnerability found in Samsung devices running Android versions 12, 13, and 14. This vulnerability was discovered by...

Sorry! Image not available at this time

LDAPNightmare, a PoC exploit targets Windows LDAP flaw CVE-2024-49113

securityaffairs.co - 03/Jan 09:42

Experts warn of a new PoC exploit, LDAPNightmare, that targets a Windows LDAP flaw (CVE-2024-49113), causing crashes & reboots. The vulnerability...

Sorry! Image not available at this time

CVE-2024-12108: Progress WhatsUp Gold Vulnerability

thecyberthrone.in - 02/Jan 13:59

CVE-2024-12108 with a CVSS score of 9.6 is a critical security vulnerability affecting WhatsUp Gold, a network monitoring software developed by...

Les derniers communiqués

  • Aucun élément