Critical Remote Code Execution Vulnerability in Junos OS [CVE-2024-21591]
An out-of-bounds write vulnerability in J-Web of Juniper Networks Junos OS SRX Series and EX Series allows an unauthenticated, network-based attacker to
Read More
Security Vulnerabilities
Security Vulnerabilities
Exploitation of vulnerabilities affecting Ivanti Connect Secure and Ivanti Policy Secure
Ivanti has published an advisory detailing two vulnerabilities affecting Connect Secure and Policy Secure gateways. Ivanti is aware that both vulnerabilities are
Read More
High-Risk Vulnerability Impacting Cisco Unity Connection Software [CVE-2024-20272]
Cisco has issued software updates to rectify a critical security flaw affecting Unity Connection, potentially enabling a malicious actor to
Read More
oFono SMS Decoder Stack-based Buffer Overflow Remote Code Execution Vulnerability [CVE-2023-4235]
CVE number – CVE-2023-4235 This vulnerability allows remote attackers to execute arbitrary code on affected installations of oFono. Authentication is
Read More
Remote code execution vulnerability found in Apache Struts 2 [CVE-2023-50164]
Apache has issued a warning to its users regarding a critical remote code execution (RCE) vulnerability found in its widely-used
Read More
Critical flaw found in Backup Migration WordPress plugin [CVE-2023-6553]
Security experts are cautioning users of a widely-used WordPress plugin to promptly apply a patch or face the potential of
Read More
SolarWinds Orion Platform VimChartInfo SQL Injection Remote Code Execution Vulnerability [CVE-2023-40056]
This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Orion Platform. Authentication is required to
Read More
Apple macOS Hydra Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability [CVE-2023-42826]
CVE number – CVE-2023-42826 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction
Read More
ownCloud releases three major security advisories
The listed security advisories address three critical vulnerabilities with one being reported as exploited in the wild. Following public disclosure
Read More
SysAid Releases Security Advisory for Actively Exploited Zero Day Vulnerability (CVE-2023-47246)
CVE number – CVE-2023-47246 This path traversal vulnerability could allow an attacker to perform code execution within the SysAid on-prem
Read More