RCE

Cisco ISE and ISE-PIC Vulnerabilities: Critical RCE Flaws Require Immediate Patching

CVE News

Cisco ISE and ISE-PIC Vulnerabilities: Critical RCE Flaws Require Immediate Patching

Cisco has issued an urgent security advisory regarding two critical remote code execution (RCE) vulnerabilities affecting its...

CISA Warns of Actively Exploited Linux Kernel Vulnerability (CVE-2024-1086)

CVE News

CISA Warns of Actively Exploited Linux Kernel Vulnerability (CVE-2024-1086)

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about attackers exploiting a high-severity vulnerability...

BeyondTrust Remote Support Vulnerability (CVE-2025-5309): Pre-Auth RCE Analysis

CVE News

BeyondTrust Remote Support Vulnerability (CVE-2025-5309): Pre-Auth RCE Analysis

BeyondTrust has issued critical security updates to address a high-severity Server-Side Template Injection (SSTI) vulnerability in its...

Critical Linux udisks Vulnerability Allows Local Privilege Escalation to Root

CVE News

Critical Linux udisks Vulnerability Allows Local Privilege Escalation to Root

A newly discovered vulnerability in the Linux udisks service (CVE-2025-6019) enables local attackers to escalate privileges to...

Critical RCE Vulnerability in Veeam Backup & Replication (CVE-2025-23120): Analysis and Mitigation

CVE News

Critical RCE Vulnerability in Veeam Backup & Replication (CVE-2025-23120): Analysis and Mitigation

Veeam has released urgent security updates to address a critical remote code execution (RCE) vulnerability in its...

Sitecore XP Exploit Chain: Hardcoded Credentials Lead to Unauthenticated RCE

CVE News

Sitecore XP Exploit Chain: Hardcoded Credentials Lead to Unauthenticated RCE

A critical vulnerability chain in Sitecore Experience Platform (XP) allows attackers to gain full server control starting...

Microsoft Outlook Crashes: Temporary Fixes and Technical Workarounds

Blue-Team

Microsoft Outlook Crashes: Temporary Fixes and Technical Workarounds

Microsoft has confirmed an ongoing issue causing the classic Outlook email client to crash when opening or...

Trend Micro Patches Critical RCE and Authentication Bypass Vulnerabilities in Apex Central and Endpoint Encryption

CVE News

Trend Micro Patches Critical RCE and Authentication Bypass Vulnerabilities in Apex Central and Endpoint Encryption

Trend Micro has released urgent security updates addressing multiple critical-severity vulnerabilities in its Apex Central and Endpoint...

Microsoft June 2025 Patch Tuesday: Critical Zero-Day Fixes and 66 Flaws Addressed

CVE News

Microsoft June 2025 Patch Tuesday: Critical Zero-Day Fixes and 66 Flaws Addressed

Microsoft’s June 2025 Patch Tuesday has arrived, delivering security updates for 66 vulnerabilities, including one actively exploited...

New Mirai Botnet Variant Exploits TBK DVR Devices via CVE-2024-3721

CVE News

New Mirai Botnet Variant Exploits TBK DVR Devices via CVE-2024-3721

A new variant of the Mirai botnet is actively exploiting a command injection vulnerability (CVE-2024-3721) in TBK...

Destructive npm Packages Masquerading as Utilities Target Developer Environments

Red-Team

Destructive npm Packages Masquerading as Utilities Target Developer Environments

Two malicious npm packages, disguised as legitimate utilities, have been identified executing destructive actions against developer environments....

Cisco Patches Critical ISE and CCP Vulnerabilities with Public Exploits

CVE News

Cisco Patches Critical ISE and CCP Vulnerabilities with Public Exploits

Cisco has issued patches for three high-severity vulnerabilities affecting its Identity Services Engine (ISE) and Customer Collaboration...

Critical Authentication Bypass and RCE Vulnerabilities in HPE StoreOnce Software

CVE News

Critical Authentication Bypass and RCE Vulnerabilities in HPE StoreOnce Software

Hewlett Packard Enterprise (HPE) has issued an urgent security bulletin warning of eight vulnerabilities in its StoreOnce...

Qualcomm Patches Actively Exploited Adreno GPU Zero-Day Vulnerabilities

CVE News

Qualcomm Patches Actively Exploited Adreno GPU Zero-Day Vulnerabilities

Qualcomm has addressed three critical zero-day vulnerabilities in its Adreno Graphics Processing Unit (GPU) driver that were...

Public Exploit Details Emerge for Critical Cisco IOS XE Vulnerability (CVE-2025-20188)

CVE News

Public Exploit Details Emerge for Critical Cisco IOS XE Vulnerability (CVE-2025-20188)

Technical details surrounding CVE-2025-20188, a maximum-severity arbitrary file upload vulnerability affecting Cisco IOS XE Wireless LAN Controller...

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

APT-News

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

ConnectWise, a leading IT management software provider, confirmed a cyberattack targeting its ScreenConnect remote access tool in...

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

Red-Team

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

A newly discovered botnet named **PumaBot** is actively targeting Linux-based IoT devices by brute-forcing SSH credentials to...

ASUS Router Botnet “AyySSHush” Deploys Persistent SSH Backdoors: Technical Analysis

Threat Intelligence

ASUS Router Botnet “AyySSHush” Deploys Persistent SSH Backdoors: Technical Analysis

Over 9,000 ASUS routers have been compromised by the “AyySSHush” botnet, which installs persistent SSH backdoors to...

DragonForce Ransomware Exploits SimpleHelp RMM in MSP Supply Chain Attacks

APT-News

DragonForce Ransomware Exploits SimpleHelp RMM in MSP Supply Chain Attacks

The DragonForce ransomware group has compromised over 120 managed service providers (MSPs) by exploiting vulnerabilities in SimpleHelp’s...

Critical Unpatched Vulnerabilities in Versa Concerto Expose Systems to Auth Bypass and RCE

CVE News

Critical Unpatched Vulnerabilities in Versa Concerto Expose Systems to Auth Bypass and RCE

Multiple critical vulnerabilities in Versa Networks’ Concerto platform remain unpatched, exposing enterprise networks to authentication bypass and...

Posts pagination

Previous 1 2 3 4 5 6 7 … 12 Next

RCE

Cisco ISE and ISE-PIC Vulnerabilities: Critical RCE Flaws Require Immediate Patching

CISA Warns of Actively Exploited Linux Kernel Vulnerability (CVE-2024-1086)

BeyondTrust Remote Support Vulnerability (CVE-2025-5309): Pre-Auth RCE Analysis

Critical Linux udisks Vulnerability Allows Local Privilege Escalation to Root

Critical RCE Vulnerability in Veeam Backup & Replication (CVE-2025-23120): Analysis and Mitigation

Sitecore XP Exploit Chain: Hardcoded Credentials Lead to Unauthenticated RCE

Microsoft Outlook Crashes: Temporary Fixes and Technical Workarounds

Trend Micro Patches Critical RCE and Authentication Bypass Vulnerabilities in Apex Central and Endpoint Encryption

Microsoft June 2025 Patch Tuesday: Critical Zero-Day Fixes and 66 Flaws Addressed

New Mirai Botnet Variant Exploits TBK DVR Devices via CVE-2024-3721

Destructive npm Packages Masquerading as Utilities Target Developer Environments

Cisco Patches Critical ISE and CCP Vulnerabilities with Public Exploits

Critical Authentication Bypass and RCE Vulnerabilities in HPE StoreOnce Software

Qualcomm Patches Actively Exploited Adreno GPU Zero-Day Vulnerabilities

Public Exploit Details Emerge for Critical Cisco IOS XE Vulnerability (CVE-2025-20188)

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

PumaBot: A New Go-Based Botnet Targeting IoT Devices via SSH Brute-Forcing

ASUS Router Botnet “AyySSHush” Deploys Persistent SSH Backdoors: Technical Analysis

DragonForce Ransomware Exploits SimpleHelp RMM in MSP Supply Chain Attacks

Critical Unpatched Vulnerabilities in Versa Concerto Expose Systems to Auth Bypass and RCE

You may have missed

ClickFix Malware Campaigns Resurrect Decades-Old Finger Protocol for Command Retrieval

North Korean IT Worker Scheme: A Technical Analysis of Infiltration and Fraud

Digital Passport Integration in Mobile Wallets: A Security Analysis

U.S. Launches Scam Center Strike Force to Combat $10 Billion Crypto Fraud Networks