Tag: vulnerability

Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical NetApp SnapCenter vulnerability
FeaturedSecurity

Cybersecurity Threat Advisory: Critical NetApp SnapCenter vulnerability

NetApp SnapCenter disclosed a critical security vulnerability, identified as CVE-2025-26512. This flaw enables authenticated users to escalate their privileges and gain unauthorized administrative access upon successful exploitation. Continue reading this Cybersecurity Threat Advisory to learn more about this vulnerability and...

/ March 28, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: RCE vulnerability in Veeam Backup & Replication
FeaturedSecurity

Cybersecurity Threat Advisory: RCE vulnerability in Veeam Backup & Replication

A vulnerability, tracked as CVE-2025-23120, with a CVSS score of 9.9, has been discovered in Veeam Backup & Replication. This vulnerability can allow attackers to exploit the system and execute remote code on the Veeam Backup Server. Continue reading this...

/ March 26, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Apache Tomcat vulnerability
FeaturedSecurity

Cybersecurity Threat Advisory: Apache Tomcat vulnerability

A severe remote code execution (RCE) vulnerability in Apache Tomcat, identified as CVE-2025-24813, is actively exploited in the wild, allowing attackers to gain server control using a simple PUT request. Review the details in this Cybersecurity Threat Advisory to learn...

/ March 19, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Vulnerability in Ivanti secure access solutions
FeaturedSecurity

Cybersecurity Threat Advisory: Vulnerability in Ivanti secure access solutions

A critical security flaw in Ivanti, CVE-2025-0283, is affecting Ivanti Connect Secure, Policy Secure, and ZTA Gateways. This stack-based buffer overflow vulnerability allows a locally authenticated attacker to escalate their privileges. Continue reading this Cybersecurity Threat Advisory to mitigate your...

/ January 17, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: 7-Zip vulnerability
Security

Cybersecurity Threat Advisory: 7-Zip vulnerability

A security vulnerability in 7-Zip allows remote attackers to bypass defenses and execute malicious code via specially crafted archives. Read this Cybersecurity Threat Advisory to learn how to mitigate your risk from this new threat. What is the threat? The...

/ November 28, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical GitLab SAML vulnerability
FeaturedSecurity

Cybersecurity Threat Advisory: Critical GitLab SAML vulnerability

A vulnerability identified as CVE-2024-45409 has been found in GitLab’s Ruby-SAML library. This flaw stems from the improper validation of Security Assertion Markup Language (SAML) responses. Continue reading this Cybersecurity Threat Advisory to secure your environment. What is the threat?...

/ September 20, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Exploited Microsoft zero-day flaw
FeaturedSecurity

Cybersecurity Threat Advisory: Exploited Microsoft zero-day flaw

The hacker group Lazarus recently exploited a patched, zero-day flaw in Microsoft Windows. The vulnerability, tracked as CVE-2024-38193 with a CVSS score of 7.8, is a Bring Your Own Vulnerable Driver (BYOVD) vulnerability for Winsock. Continue reading this Cybersecurity Threat...

/ August 21, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical Exim Mail Server vulnerability
FeaturedSecurity

Cybersecurity Threat Advisory: Critical Exim Mail Server vulnerability

A critical vulnerability known as CVE-2024-39929 has been identified in Exim Mail Server, impacting versions 4.87 to 4.95.1. This vulnerability enables attackers to bypass security filters, posing a significant risk to email communications and the security of over 15 million...

/ July 17, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: RCE vulnerability in Ghostscript
FeaturedSecurity

Cybersecurity Threat Advisory: RCE vulnerability in Ghostscript

A Ghostscript remote code execution (RCE) vulnerability, tracked as CVE-2024-29510 (with a CVSS rating of 5.5), is currently being exploited. This exploit can allow attackers to bypass the -dSAFER sandbox and execute code remotely. Review this Cybersecurity Threat Advisory to...

/ July 9, 2024
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Foxit PDF Reader vulnerability
FeaturedSecurity

Cybersecurity Threat Advisory: Foxit PDF Reader vulnerability

A critical Foxit PDF Reader vulnerability are generating unusual pattern of behaviors. This exploit triggers security warnings designed to deceive users to execute harmful commands. Read this Cybersecurity Threat Advisory to learn recommendations to minimize your risks. What is the...

/ May 23, 2024
1 2 3 4