Cyber Newsroom Feed

The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.

CVE News RSS Feed
  • huntress.com
Guide: How to Know if your ScreenConnect Server is Hacked | Huntress

You’ve probably seen it by now, but there was a major ConnectWise ScreenConnect vulnerability (CVE-2024-1708 and CVE-2024-1709) – which we’re calling “SlashAndGrab” – that’s been shared across the cyb ... Read more

Published Date: Feb 23, 2024 (1 year, 5 months ago)
CVE-2024-1709 CVE-2024-1708
  • huntress.com
Understanding the ConnectWise ScreenConnect CVE-2024-1709 & CVE-2024-1708 | Huntress

On February 19, 2024, ConnectWise published a security advisory for ScreenConnect version 23.9.8, referencing two vulnerabilities and software weaknesses. The same day, Huntress researchers worked to ... Read more

Published Date: Feb 21, 2024 (1 year, 5 months ago)
  • huntress.com
Understanding the ConnectWise ScreenConnect CVE-2024-1709 & CVE-2024-1708 | Huntress

On February 19, 2024, ConnectWise published a security advisory for ScreenConnect version 23.9.8, referencing two vulnerabilities and software weaknesses. The same day, Huntress researchers worked to ... Read more

Published Date: Feb 21, 2024 (1 year, 5 months ago)
CVE-2024-1709 CVE-2024-1708
  • huntress.com
Detection Guidance for ConnectWise CWE-288 | Huntress

UPDATE: Read our full analysis of CVE-2024-1709 & CVE-2024-1708 and detection guidance here. On February 19, 2024, ConnectWise released an advisory related to the disclosure of two vulnerabilities aff ... Read more

Published Date: Feb 20, 2024 (1 year, 5 months ago)
CVE-2024-1709 CVE-2024-1708
  • 0patch.com
Micropacthes For "OverLog", Remote Denial of Service Vulnerability in Windows Event Log Service (CVE-2022-37981)

We recently delivered patches for the "LogCrusher" vulnerability that allows an attacker to remotely crash Windows Event Log service on some older Windows systems that we have security-adopted. Varoni ... Read more

Published Date: Feb 19, 2024 (1 year, 5 months ago)
CVE-2022-37981
  • huntress.com
Vulnerability Reproduced: Immediately Patch ScreenConnect 23.9.8 | Huntress

UPDATE: Read our full analysis of CVE-2024-1709 & CVE-2024-1708 and detection guidance here. UPDATE: We have proactively deployed a temporary hotfix to over 1000 vulnerable systems managed by Huntress ... Read more

Published Date: Feb 19, 2024 (1 year, 5 months ago)
CVE-2024-1709 CVE-2024-1708
  • cert.pl
Vulnerabilities in Comarch ERP XL software

CVE ID CVE-2023-4537 Publication date 15 February 2024 Vendor Comarch SA Product Comarch ERP XL Vulnerable versions From 2020.2.2 through 2023.2 Vulnerability type (CWE) Missing Encryption of Sensitiv ... Read more

Published Date: Feb 15, 2024 (1 year, 6 months ago)
CVE-2023-4539 CVE-2023-4538 CVE-2023-4537
  • cert.pl
Vulnerability in iZZi connect application

CVE ID CVE-2024-0390 Publication date 15 February 2024 Vendor INPRAX sp. z o.o. Product iZZi connect Vulnerable versions All below 2024010401 Vulnerability type (CWE) Use of Hard-coded Credentials (CW ... Read more

Published Date: Feb 15, 2024 (1 year, 6 months ago)
CVE-2024-0390
  • Zero Day Initiative
The February 2024 Security Update Review

None ... Read more

Published Date: Feb 12, 2024 (1 year, 6 months ago)
  • 0patch.com
Micropatches For Another Remote Windows Event Log Denial Of Service ("LogCrusher", no CVE)

While recently patching the (still 0day) "EventLogCrasher" vulnerability, we came across another similar vulnerability published in January 2023 by Dolev Taler, a security researcher at Varonis.Dolev' ... Read more

Published Date: Feb 09, 2024 (1 year, 6 months ago)
CVE-2022-37981

Filters

Showing 10 of 7348 Results