Tag: Critical vulnerabilities

Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: New critical vulnerability in Palo Alto Expedition

Cybersecurity Threat Advisory: New critical vulnerability in Palo Alto Expedition

A vulnerability identified as CVE-2024-5910, has been disclosed by Palo Alto. With a CVSS score of 9.3, this vulnerability can lead to authentication bypass, enabling attackers to manipulate network configurations and launch further attacks. Read this Cybersecurity Threat Advisory for...

/ October 11, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical SAP vulnerabilities

Cybersecurity Threat Advisory: Critical SAP vulnerabilities

SAP issued its August 2024 security patch update which included two critical flaws that enable attackers to bypass authentication and fully compromise affected systems. Review the details in this Cybersecurity Threat Advisory to learn how you can protect your SAP...

/ August 19, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical GitLab vulnerabilities

Cybersecurity Threat Advisory: Critical GitLab vulnerabilities

GitLab has released multiple security updates that address a total of 14 vulnerabilities. Attackers can exploit one of the vulnerabilities to run pipelines as any user. Read this Cybersecurity Threat Advisory in detail to learn more about how you can...

/ July 2, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: VMware privilege escalation vulnerabilities

Cybersecurity Threat Advisory: VMware privilege escalation vulnerabilities

VMware has released patches to address critical vulnerabilities impacting Cloud Foundation, vCenter Server, and vSphere ESXi, which could be exploited to achieve privilege escalation and remote code execution. The flaws, identified as CVE-2024-37079, CVE-2024-37080, and CVE-2024-37081, have high CVSS scores....

/ June 21, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical flaws discovered in Cacti framework

Cybersecurity Threat Advisory: Critical flaws discovered in Cacti framework

This Cybersecurity Threat Advisory breaks down multiple critical vulnerabilities in the Cacti framework, an open-source network monitoring and fault management tool. Successful exploitation of these vulnerabilities could allow attackers to execute arbitrary code and compromise network infrastructure. Continue reading this...

/ May 15, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: F5 BIG-IP Next Central Manager vulnerabilities

Cybersecurity Threat Advisory: F5 BIG-IP Next Central Manager vulnerabilities

Two high-severity vulnerabilities were discovered in the F5 BIG-IP Next Central Manager API allowing attackers to gain full administrative control and create hidden, persistent backdoors on managed devices. Barracuda MSP recommends reading this Cybersecurity Threat Advisory to learn which steps...

/ May 10, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: RCE vulnerabilities in HPE Aruba Networking devices

Cybersecurity Threat Advisory: RCE vulnerabilities in HPE Aruba Networking devices

HPE Aruba Networking has disclosed that critical remote code execution (RCE) vulnerabilities are impacting multiple versions of ArubaOS. Out of the ten vulnerabilities found, four pose critical risks of unauthenticated buffer overflows in various services. Read this Cybersecurity Threat Advisory...

/ May 8, 2024