CVE-2023-34990: Critical Path Traversal Flaw Found in Fortinet FortiWLM
On 12 May 2023, Horizon3 researcher Zach Hanley found an unauthenticated limited file read vulnerability in FortiWLM that he promptly…
0 Comments
December 20, 2024
Microsoft Patches 71 Flaws, 1 Zero Day in December 2024 Patch Tuesday
2024 is finally coming to a close, and what better way to wrap it up than with a Microsoft Patch…
Comments Off on Microsoft Patches 71 Flaws, 1 Zero Day in December 2024 Patch Tuesday
December 11, 2024
CVE-2014-2120: Ten-year-old Cisco ASA Flaw Exploited In The Wild
First discovered in 2014 by researcher Jonathan Claudius, CVE-2014-2120 is a vulnerability caused by insufficient input validation in the WebVPN…
Comments Off on CVE-2014-2120: Ten-year-old Cisco ASA Flaw Exploited In The Wild
December 5, 2024
When CVE Met CVE: RomCom Hackers Exploit Firefox and Windows Zero-Days
The Russian cybercrime group RomCom has been linked to a series of cyberattacks launched across the world. The notorious hackers…
Comments Off on When CVE Met CVE: RomCom Hackers Exploit Firefox and Windows Zero-Days
November 28, 2024
Microsoft’s November 2024 Patch Tuesday Resolves 88 Flaws, Including 4 Zero Days
This month, Microsoft released security updates addressing 88 vulnerabilities, four of which were zero-days and four critical. Two of the…
Comments Off on Microsoft’s November 2024 Patch Tuesday Resolves 88 Flaws, Including 4 Zero Days
November 13, 2024
Cisco ASA and FTD Are Being Actively Exploited, Urgent Patch Released for CVE-2024-20481
Cisco is warning users of a new flaw in the Remote Access VPN (RAVPN) service of its Adaptive Security Appliance…
Comments Off on Cisco ASA and FTD Are Being Actively Exploited, Urgent Patch Released for CVE-2024-20481
October 25, 2024
CVE-2024-38812: VMWare Patches Critical RCE Flaw In vCenter Server
Broadcom has released security updates addressing CVE-2024-38812, a heap-overflow vulnerability in VMWare vCenter Server. With a CVSS score of 9.8,…
Comments Off on CVE-2024-38812: VMWare Patches Critical RCE Flaw In vCenter Server
October 23, 2024
CVE-2024-9487: GitHub Patches Major Security Flaw in Enterprise Server. Patch Now!
A new critical vulnerability has been found in the GitHub Enterprise Server! CVE-2024-9487, with a staggering CVSS score of 9.5,…
Comments Off on CVE-2024-9487: GitHub Patches Major Security Flaw in Enterprise Server. Patch Now!
October 17, 2024
Endpoint Management / Endpoint Security / Endpoint Security and Management / Patch Management / Security Research and Intelligence / Vulnerability Management
Critical Vulnerabilities in Windows, CERT-In Warns Users
Microsoft Windows, the world's most widely used desktop OS, is at risk! The Indian Computer Emergency Response Team (CERT-In) has…
Comments Off on Critical Vulnerabilities in Windows, CERT-In Warns Users
October 11, 2024
Endpoint Management / Endpoint Security / Endpoint Security and Management / Featured Articles / Patch Management / Security Research and Intelligence / Vulnerability Management
Microsoft Fixes 118 Flaws, 5 Zero Days in October 2024 Patch Tuesday
This month, Microsoft released security updates addressing 118 vulnerabilities, of which 5 were publicly disclosed zero days, and 3 were…
Comments Off on Microsoft Fixes 118 Flaws, 5 Zero Days in October 2024 Patch Tuesday
October 9, 2024