CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
seclists.org
SEC Consult SA-20240624-0 :: Multiple Vulnerabilities allowing complete bypass in Faronics WINSelect (Standard + Enterprise)
Full Disclosure mailing list archives From: SEC Consult Vulnerability Lab via Fulldisclosure <fulldisclosure () seclists org> Date: Mon, 24 Jun 2024 08:33:23 +0000 SEC Consult Vulnerability Lab Securi ...
-
0patch.com
Micropatches For Microsoft Outlook Remote Code Execution Vulnerability (CVE-2024-21378)
In February 2024, Microsoft released a patch for CVE-2024-21378, a vulnerability in Microsoft Outlook that allowed an attacker to execute arbitrary code on user's computer when the user opened a malic ...
-
cert.pl
Vulnerability in CRUDDIY software
CVE ID CVE-2024-4748 Publication date 24 June 2024 Vendor CRUDDIY Product CRUDDIY Vulnerable versions All through 202312.1 Vulnerability type (CWE) Improper Neutralization of Special Elements used in ...
-
cert.pl
SQL Injection vulnerability in MegaBIP software
CVE ID CVE-2024-6160 Publication date 24 June 2024 Vendor Jan Syski Product MegaBIP Vulnerable versions All through 5.12.1 Vulnerability type (CWE) Improper Neutralization of Special Elements used in ...
-
New Jetpack Site
Vulnerabilità critica in PHP sfruttata in the wild
PROTO: N240619 CERT-Yoroi informa che è stata resa nota una vulnerabilità critica sul linguaggio di programmazione PHP che consente ad utenti malintenzionati di eseguire del codice da remoto arbitrari ...
-
Google Cloud
Cloaked and Covert: Uncovering UNC3886 Espionage Operations
Written by: Punsaen Boonyakarn, Shawn Chew, Logeswaran Nadarajan, Mathew Potaczek, Jakub Jozwiak, Alex Marvi Following the discovery of malware residing within ESXi hypervisors in September 2022, Mand ...
-
cert.pl
Vulnerability in 2ClickPortal software
CVE ID CVE-2024-5961 Publication date 14 June 2024 Vendor Trol InterMedia Sp. z o.o. Sp. k. Product 2ClickPortal Vulnerable versions From 7.2.31 through 7.6.4 Vulnerability type (CWE) Improper Neutral ...
-
Kaspersky
Cinterion EHS5 3G UMTS/HSPA Module Research
Modems play an important role in enabling connectivity for a wide range of devices. This includes not only traditional mobile devices and household appliances, but also telecommunication systems in ve ...
-
malware-traffic-analysis.net
2024-06-11 - Traffic example of a CVE-2024-4577 probe
NOTES: I saw a single hit from 221.122.67[.]75 for a CVE-2024-4577 probe on an Ubuntu Apache web server I am running. I sanitized the pcap of this example, changing the associated MAC addresses and al ...
-
cert.pl
Critical vulnerabilities in MegaBIP software
CVE ID CVE-2024-1576 Publication date 12 June 2024 Vendor Jan Syski Product MegaBIP Vulnerable versions All through 5.09 Vulnerability type (CWE) Improper Neutralization of Special Elements used in an ...