Security Vulnerabilities

The latest Security Vulnerabilities

NewsSecurity Vulnerabilities

ASUS RT-AX92U lighttpd mod_webdav.so SQL Injection Information Disclosure Vulnerability [CVE-2023-35720]

Luke Simmonds 3545 Views 0 Comments 0 min read

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected ASUS RT-AX92U routers. Authentication is not required to exploit

Read More
NewsSecurity Vulnerabilities

3CX Uncontrolled Search Path Local Privilege Escalation Vulnerability [CVE-2023-27362]

Luke Simmonds 2859 Views 0 Comments 0 min read

CVE number = CVE-2023-27362 This vulnerability allows local attackers to escalate privileges on affected installations of 3CX. An attacker must

Read More
NewsSecurity Vulnerabilities

McAfee Safe Connect VPN Uncontrolled Search Path Element Local Privilege Escalation Vulnerability [CVE-2023-40352]

Duncan 2522 Views 0 Comments 0 min read

CVE number = CVE-2023-40352 Affected product = McAfee Safe Connect VPN This vulnerability allows local attackers to escalate privileges on

Read More
NewsSecurity Vulnerabilities

Schneider Electric IGSS UpdateService Exposed Dangerous Method Local Privilege Escalation Vulnerability [CVE-2023-3001]

Kerry Dean 2914 Views 0 Comments 0 min read

CVE Number = CVE-2023-3001 This vulnerability allows local attackers to escalate privileges on affected installations of Schneider Electric IGSS. An

Read More
NewsSecurity Vulnerabilities

Microsoft Edge MSDCPDF Javascript addIcon type confusion vulnerability [CVE-2023-36887]

Luke Simmonds 3267 Views 0 Comments 0 min read

CVE number = CVE-2023-36887 A memory corruption vulnerability exists in the Javascript implementation of the Acrobat-based PDF engine in Microsoft

Read More
NewsSecurity Vulnerabilities

Cisco BroadWorks Privilege Escalation Vulnerability [CVE-2023-20216]

Duncan 2562 Views 0 Comments 2 min read

CVE number = CVE-2023-20216 A vulnerability in the privilege management functionality of all Cisco BroadWorks server types could allow an

Read More
NewsSecurity Vulnerabilities

Oracle Java SE and GraalVM Enterprise Edition vulnerability [CVE-2023-21968]

Duncan 3491 Views 0 Comments 1 min read

CVE number – CVE-2023-21968 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component:

Read More
NewsSecurity Vulnerabilities

Junos OS J-Web Multiple Vulnerabilities in PHP software

Duncan 3729 Views 0 Comments 4 min read

The PHP software included with Junos OS J-Web has been updated from 7.4.30 to 8.2.0 to resolve multiple vulnerabilities. These

Read More
NewsSecurity Vulnerabilities

Cisco SD-WAN vManage Unauthenticated REST API Access Vulnerability [CVE-2023-20214]

Duncan 3179 Views 0 Comments 1 min read

CVE number – CVE-2023-20214 A vulnerability in the request authentication validation for the REST API of Cisco SD-WAN vManage software

Read More
NewsSecurity Vulnerabilities

Microsoft Windows Server iSCSI Target WMI Provider code execution [CVE-2023-29367]

Duncan 2337 Views 0 Comments 0 min read

CVE number = CVE-2023-29367 Microsoft Windows Server could allow a remote attacker to execute arbitrary code on the system, caused

Read More