Search Results

CLI in NX-OS software contains a command injection vulnerability CVE-2024-20399 that is being exploited in the wild

Nine vulnerabilities have been patched, including two that could allow information disclosure and three that could lead to remote code execution

Two vulnerabilities could lead to sensitive information disclosure or DoS 

CVE-2024-26006 is a cross-site scripting vulnerability in SSL-VPN web UI

Scheduled updates for Microsoft products fix 139 vulnerabilities, including two zero-day vulnerabilities

A high severity vulnerability could allow an attacker to execute arbitary code via SQL Injection on an affected system

Cisco SSM On-Prem and Cisco Secure Email Gateway are affected by critical vulnerabilities

Vulnerabilities could allow an attacker to execute arbitrary commands, bypass authentication, and access sensitive resources

Updates address eight critical and five high severity vulnerabilities

A critical vulnerability could allow an attacker to bypass authorisation plugins

Advisory addresses three security vulnerabilities that could result in denial-of-service or authentication bypass

Critical vulnerability in Acronis Cyber Infrastructure (ACI) could be exploited to achieve remote code execution

An improper authentication vulnerability can lead to privilege escalation

Advisory addresses 15 security vulnerabilities that could lead to unauthorised access

Updates address three vulnerabilities that could lead to theft of emails and contacts

Successful exploitation could lead to full system compromise

Successful exploitation of the critical vulnerabilities could lead to ACE or privilege escalation

Scheduled updates for Microsoft products fix 90 vulnerabilities, including ten zero-day vulnerabilities

Security update includes two exploited high severity vulnerabilities in Google Chrome

Advisories address two vulnerabilities, one rated as critical and the other as high severity