CrushFTP Remote Code Execution Exploit

This Metasploit exploit module leverages an improperly controlled modification of dynamically-determined object attributes vulnerability (CVE-2023-43177) to achieve unauthenticated remote code executi ...

Continue Reading

April 15, 2024

libvirt vulnerabilities

Releases Ubuntu 23.10 Ubuntu 22.04 LTS Ubuntu 20.04 LTS Packages libvirt - Libvirt virtualization toolkit Details Alexander Kuznetsov discovered that libvirt incorrectly handled certain API calls ...

Continue Reading

April 15, 2024

Argo CD’s API server does not enforce project sourceNamespaces

Impact I can convince the UI to let me do things with an invalid Application. 1. Admin gives me p, michael, applications, *, demo/*, allow, where demo can just deploy to the demo namespace 2. Admin gi ...

Continue Reading

April 15, 2024

Navigating the EU NIS2 Directive

How Qualys Cybersecurity Solutions Ensure Compliance The European Union’s revised Network and Information Security (NIS2) Directive is a comprehensive cybersecurity regulation aimed at bolstering th ...

Continue Reading

April 15, 2024

CrushFTP Remote Code Execution

...Read More ...

Continue Reading

April 15, 2024

Crickets from Chirp Systems in Smart Lock Key Leak

The U.S. government is warning that "smart locks" securing entry to an estimated 50,000 dwellings nationwide contain hard-coded credentials that can be used to remotely open any of t ...

Continue Reading

April 15, 2024

CVE-2024-3766

A vulnerability, which was classified as problematic, has been found in slowlyo OwlAdmin up to 3.5.7. Affected by this issue is some unknown functionality of the file /admin-api/upload_image of the co ...

Continue Reading

April 15, 2024

API Cyberattacks: A Growing Threat for Organizations in Latin America

Learn about the growing threat of API cyberattacks and their effect on industries across Latin...Read More ...

Continue Reading

April 14, 2024

1 8,313 8,314 8,315 8,316 8,317 9,321

Back to Main
Subscribe for the latest news: