Advisories Archives - Page 40 of 1696

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Progress Software WhatsUp Gold. Authentication is not required to exploit this vulnerability....

December 6, 2024

Advisories

ZDI-24-1644: (Pwn2Own) iXsystems TrueNAS fetch_plugin_packagesites tar Cleartext Transmission of Sensitive Information Vulnerability

This vulnerability allows network-adjacent attackers to tamper with firmware update files on affected installations of iXsystems TrueNAS devices. Authentication is not required to exploit this...

December 6, 2024

Canadian man loses a cryptocurrency fortune to scammers – here’s how you can stop it happening to you

Medusind Breach Exposes Sensitive Patient Data

Fake PoC Exploit Targets Security Researchers with Infostealer

Smashing Security podcast #399: Honey in hot water, and reset your devices

Space Bears ransomware: what you need to know

Zero-Day Vulnerability in Ivanti VPN

Fancy Product Designer Plugin Flaws Expose WordPress Sites

Japan Faces Prolonged Cyber-Attacks Linked to China’s MirrorFace

PowerSchool Reportedly Pays Ransom to Prevent Student Data Leak

Category: Advisories

GLSA 202412-05: Chromium, Google Chrome, Microsoft Edge. Opera: Multiple Vulnerabilities

GLSA 202412-04: Mozilla Firefox: Multiple Vulnerabilities

GLSA 202412-11: OATH Toolkit: Privilege Escalation

GLSA 202412-10: Dnsmasq: Multiple Vulnerabilities

GLSA 202412-09: Salt: Multiple Vulnerabilities

GLSA 202412-08: icinga2: Multiple Vulnerabilities

GLSA 202412-07: OpenJDK: Multiple Vulnerabilities

pytest-8.3.4-1.fc41

ZDI-24-1645: Progress Software WhatsUp Gold WriteDataFile Directory Traversal Remote Code Execution Vulnerability

ZDI-24-1644: (Pwn2Own) iXsystems TrueNAS fetch_plugin_packagesites tar Cleartext Transmission of Sensitive Information Vulnerability