Linux kernel vulnerability (CVE-2024-57880)
CVE number = CVE-2024-57880 In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: sof_sdw: Add space for
Read MoreSecurity Vulnerabilities
The latest Security Vulnerabilities
Apple macOS libFontValidation Font Glyph YCoordinate Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the libFontValidation library
Read More
SonicWALL NSv Cryptographically Weak PRNG Authentication Bypass Vulnerability (CVE-2024-40762)
CVE number – CVE-2024-40762 This vulnerability allows remote attackers to bypass authentication on affected installations of SonicWALL NSv. Authentication is
Read More
Ivanti Connect Secure VPNÂ Zero-Day Exploitation (CVE-2025-0282)
Ivanti has reported two vulnerabilities, CVE-2025-0282 and CVE-2025-0283, affecting Ivanti Connect Secure (ICS) VPN appliances. Mandiant has observed active exploitation
Read More
Cisco ThousandEyes Agent Certificate Validation Vulnerability (CVE-2025-20126)
CVE number CVE-2025-20126 A vulnerability in certification validation routines of Cisco ThousandEyes Endpoint Agent for macOS and RoomOS could allow
Read MoreCisco Crosswork Network Controller Stored Cross-Site Scripting Vulnerabilities (CVE-2025-20123)
CVE number – CVE-2025-20123 Multiple vulnerabilities in the web-based management interface of Cisco Crosswork Network Controller could allow an authenticated,
Read MoreCisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities
CVE numbers – CVE-2025-20166, CVE-2025-20167, CVE-2025-20168 Multiple vulnerabilities in the web-based management interface of Cisco Common Services Platform Collector (CSPC)
Read More
Net-OAuth weak PRNG algorithm vulnerability (CVE-2025-22376)
In Net::OAuth::Client in the Net::OAuth package before 0.29 for Perl, the default nonce is a 32-bit integer generated from the
Read More
LDAPNightmare exploit crashes LSASS and forces a reboot of Windows domain controllers
On December 10th 2024, Yuki Chen (@guhe120) identified two LDAP vulnerabilities: a Remote Code Execution (RCE) flaw and a Denial
Read More
Palo Alto Firewall Denial of Service (DoS) in DNS Security Using a Specially Crafted Packet (CVE-2024-3393)
CVE number = CVE-2024-3393 A Denial of Service vulnerability in the DNS Security feature of Palo Alto Networks PAN-OS software
Read More