CISA says Treasury was the only US agency breached via BeyondTrust The US Cybersecurity and Infrastructure Security Agency (CISA) has shared on Monday that the Treasury Department was the only US federal agency affected by the recent cybersecurity incident involving … Read more Published Date: Jan 07, 2025 (7 hours, 30 minutes ago) Vulnerabilities has been mentioned…

SonicWall waarschuwt voor actief misbruikt lek in SSLVPN-functie firewalls SonicWall waarschuwt organisaties voor een actief aangevallen kwetsbaarheid in de SSLVPN-functionaliteit van de firewalls die het biedt. Een beveiligingsupdate om het probleem te verhelpen zou vandaag … Read more Published Date: Jan 07, 2025 (7 hours, 20 minutes ago) Vulnerabilities has been mentioned in this article. Go to…

Androidtelefoons met MediaTek-chip kwetsbaar voor aanval via malafide zendmast dinsdag 7 januari 2025, 12:23 door Redactie, 4 reactiesLaatst bijgewerkt: Vandaag, 14:27 Androidtelefoons bevatten meerdere kritieke kwetsbaarheden die remote code execution op de toestellen mogelijk … Read more Published Date: Jan 07, 2025 (8 hours, 22 minutes ago) Vulnerabilities has been mentioned in this article. Go to Source

Androidtelefoons kwetsbaar voor aanval via malafide zendmast dinsdag 7 januari 2025, 12:23 door Redactie, 4 reactiesLaatst bijgewerkt: Vandaag, 14:27 Androidtelefoons bevatten meerdere kritieke kwetsbaarheden die remote code execution op de toestellen mogelijk … Read more Published Date: Jan 07, 2025 (8 hours, 22 minutes ago) Vulnerabilities has been mentioned in this article. Go to Source

New EAGERBEE Variant Targets ISPs and Governments with Advanced Backdoor Capabilities Internet service providers (ISPs) and governmental entities in the Middle East have been targeted using an updated variant of the EAGERBEE malware framework. The new variant of EAGERBEE (aka Thumtais) … Read more Published Date: Jan 07, 2025 (9 hours, 59 minutes ago) Vulnerabilities has been…

CVE ID : CVE-2024-54030 Published : Jan. 7, 2025, 8:15 a.m. | 1 hour, 11 minutes ago Description : in OpenHarmony v4.1.2 and prior versions allow a local attacker cause DOS through use after free. Severity: 4.4 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more… Go to Source

CVE ID : CVE-2024-47398 Published : Jan. 7, 2025, 8:15 a.m. | 1 hour, 11 minutes ago Description : in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the device is unable to boot up through out-of-bounds write. Severity: 8.8 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline,…

CVE ID : CVE-2024-11626 Published : Jan. 7, 2025, 8:15 a.m. | 1 hour, 11 minutes ago Description : Improper Neutralization of Input During CMS Backend (adminstrative section) Web Page Generation (XSS or ‘Cross-site Scripting’) vulnerability in Progress Sitefinity.This issue affects Sitefinity: from 4.0 through 14.4.8142, from 15.0.8200 through 15.0.8229, from 15.1.8300 through 15.1.8327, 15.2.8400. Severity: 8.4…

CVE ID : CVE-2024-12202 Published : Jan. 7, 2025, 8:15 a.m. | 1 hour, 11 minutes ago Description : The Croma Music plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the ‘ironMusic_ajax’ function in all versions up to, and including, 3.6. This…

CVE ID : CVE-2024-12535 Published : Jan. 7, 2025, 6:15 a.m. | 3 hours, 11 minutes ago Description : The Host PHP Info plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check when including the ‘phpinfo’ function in all versions up to, and including, 1.0.4. This makes it possible for…