Security Vulnerabilities

Cisco IOS XR Software Bootloader Unauthenticated Information Disclosure Vulnerability [Updated – CVE-2023-20064]

November 14, 2024 Luke Simmonds 1077 Views 0 Comments Cisco, CVE-2023-20064, Cyber Security, Information Disclosure Vulnerability 1 min read

CVE number = CVE-2023-20064 (Updated 13/11/2024) A vulnerability in the GRand Unified Bootloader (GRUB) for Cisco IOS XR Software could

News Security Vulnerabilities

Veeam Backup Enterprise Manager AuthorizeByVMwareSsoToken Improper Certificate Validation Authentication Bypass Vulnerability

November 13, 2024 Jason Davies 848 Views 0 Comments Authentication Bypass Vulnerability, CVE-2024-40715, Cyber Security, Veeam Backup 0 min read

CVE number = CVE-2024-40715 This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of Veeam Backup Enterprise Manager.

News Security Vulnerabilities

Panda Security Dome PSANHost Link Following Local Privilege Escalation Vulnerability [CVE-2024-8424]

November 12, 2024 Luke Simmonds 1475 Views 0 Comments CVE-2024-8424, Panda Security, Privilege Escalation Vulnerability 0 min read

CVE number = CVE-2024-8424 This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An

News Security Vulnerabilities

Cisco Nexus Dashboard Fabric Controller SQL Injection Vulnerability [CVE-2024-20536]

November 7, 2024 Jason Davies 899 Views 0 Comments Cisco, CVE-2024-20536, SQL Injection 0 min read

CVE number = CVE-2024-20536 A vulnerability in a REST API endpoint and web-based management interface of Cisco Nexus Dashboard Fabric Controller

News Security Vulnerabilities

Cisco Unified Industrial Wireless Software for Ultra-Reliable Wireless Backhaul Access Point Command Injection Vulnerability

November 7, 2024 Luke Simmonds 959 Views 0 Comments Cisco, Command Injection Vulnerability, CVE-2024-20418 1 min read

CVE number = CVE-2024-20418 A vulnerability in the web-based management interface of Cisco Unified Industrial Wireless Software for Cisco Ultra-Reliable

News Security Vulnerabilities

Apple SceneKit Improper Validation of Array Index Remote Code Execution Vulnerability [CVE-2024-44218]

November 1, 2024 Luke Simmonds 1346 Views 0 Comments Apple, Apple macOS, Apple SceneKit, CVE-2024-44218, Remote Code Execution Vulnerability 0 min read

CVE number = CVE-2024-44218 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction

News Security Vulnerabilities

Nikon NEF Codec Thumbnail Provider NRW File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability [CVE-2024-8025]

October 28, 2024 Duncan 1261 Views 0 Comments CVE-2024-8025, Cyber Security, Nikon, Remote Code Execution Vulnerability 0 min read

CVE number = CVE-2024-8025 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Nikon NEF Codec.

News Security Vulnerabilities

Cisco Secure Firewall Management Center Software Command Injection Vulnerability [CVE-2024-20424]

October 26, 2024 Jason Davies 1141 Views 0 Comments Cisco, Cisco Secure Firewall Management Center, Command Injection Vulnerability, CVE-2024-20424, Cyber Security 1 min read

CVE number = CVE-2024-20424 A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software, formerly

News Security Vulnerabilities

Cisco Firepower Threat Defense Software for Firepower 1000, 2100, 3100, and 4200 Series Static Credential Vulnerability [CVE-2024-20412]

October 26, 2024 Jason Davies 1153 Views 0 Comments Cisco, Cisco Firepower, CVE-2024-20412, Static Credential Vulnerability 1 min read

CVE number = CVE-2024-20412 A vulnerability in Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 1000, 2100, 3100, and

News Security Vulnerabilities

Trend Micro Deep Security Improper Access Control Local Privilege Escalation Vulnerability [CVE-2024-48903]

October 19, 2024 Luke Simmonds 1473 Views 0 Comments CVE-2024-48903, Privilege Escalation Vulnerability, Trend Micro 0 min read

CVE number = CVE-2024-48903 This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Deep Security.

Cisco IOS XR Software Bootloader Unauthenticated Information Disclosure Vulnerability [Updated – CVE-2023-20064]

Like this:

Veeam Backup Enterprise Manager AuthorizeByVMwareSsoToken Improper Certificate Validation Authentication Bypass Vulnerability

Like this:

Panda Security Dome PSANHost Link Following Local Privilege Escalation Vulnerability [CVE-2024-8424]

Like this:

Cisco Nexus Dashboard Fabric Controller SQL Injection Vulnerability [CVE-2024-20536]

Like this:

Cisco Unified Industrial Wireless Software for Ultra-Reliable Wireless Backhaul Access Point Command Injection Vulnerability

Like this:

Apple SceneKit Improper Validation of Array Index Remote Code Execution Vulnerability [CVE-2024-44218]

Like this:

Nikon NEF Codec Thumbnail Provider NRW File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability [CVE-2024-8025]

Like this:

Cisco Secure Firewall Management Center Software Command Injection Vulnerability [CVE-2024-20424]

Like this:

Cisco Firepower Threat Defense Software for Firepower 1000, 2100, 3100, and 4200 Series Static Credential Vulnerability [CVE-2024-20412]

Like this:

Trend Micro Deep Security Improper Access Control Local Privilege Escalation Vulnerability [CVE-2024-48903]

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this: