Security Vulnerabilities

The latest Security Vulnerabilities

NewsSecurity Vulnerabilities

D-Link DIR-823G auto reboot vulnerability (CVE-2024-13030)

A vulnerability was found in D-Link DIR-823G 1.0.2B05_20181207. It has been rated as critical and the CVE is CVE-2024-13030 This

Read More
NewsSecurity Vulnerabilities

Connection Hijacking Vulnerability in Huawei Home Routers (CVE-2023-52718)

CVE number = CVE-2023-52718 A connection hijacking vulnerability exists in some Huawei home routers. Successful exploitation of this vulnerability may

Read More
NewsSecurity Vulnerabilities

HarfBuzz Heap-based Buffer Overflow Vulnerability (CVE-2024-56732)

CVE number = CVE-2024-56732 HarfBuzz is a text shaping engine. Starting with version 8.5.0 through to version 10.0.1, there is

Read More
NewsSecurity Vulnerabilities

Onyxia remote code execution (RCE) vulnerability [CVE-2024-56333]

Onyxia is a web app that aims at being the glue between multiple open source backend technologies to provide a

Read More
NewsSecurity Vulnerabilities

Navidrome Plaintext Storage of JWT Secret in navidrome.db vulnerability [CVE-2024-56362]

CVE number – CVE-2024-56362 Navidrome is an open source web-based music collection server and streamer. Navidrome stores the JWT secret

Read More
NewsSecurity Vulnerabilities

APTRS (Automated Penetration Testing Reporting System) Server Side Template Injection Vulnerability [CVE-2024-56363]

APTRS (Automated Penetration Testing Reporting System) is a Python and Django-based automated reporting tool designed for penetration testers and security

Read More
NewsSecurity Vulnerabilities

Sophos issues hotfixes for three critical flaws in XG firewall

Sophos has issued hotfixes to resolve three security vulnerabilities in its Firewall products. These flaws, under certain conditions, could enable

Read More
NewsSecurity Vulnerabilities

Webmin CGI Command Injection Remote Code Execution Vulnerability [CVE-2024-12828]

CVE number = CVE-2024-12828 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Webmin. Authentication is

Read More
NewsSecurity Vulnerabilities

Linux Kernel ksmbd TCP Connection Memory Exhaustion Denial-of-Service Vulnerability [CVE-2024-50285]

CVE number = CVE-2024-50285 This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of the Linux

Read More
NewsSecurity Vulnerabilities

Ivanti Avalanche FileStoreConfig Unrestricted File Upload Remote Code Execution Vulnerability [CVE-2024-37373]

CVE number = CVE-2024-37373 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Avalanche. Authentication

Read More