Common Vulnerability Scoring System (CVSS) (Page 14)

Two critical HTTP request smuggling vulnerabilities in Node.js: Patch immediately

On: October 19, 2021

Two security vulnerabilities in Node.js that allowed smuggling HTTP requests into JavaScript have been fixed by the project’s maintainers. As some users will recall, Node.js is a server-side implementation thatRead More →

13 important vulnerabilities affecting SAP environmental compliance. Update immediately

On: October 13, 2021

In: Vulnerabilities

In its latest security update, SAP announced the patching of a total of 13 security flaws, all considered critical and of high severity. The most serious of these failures wereRead More →

18 critical vulnerabilities discovered in Foxit PDF Reader and Foxit PDF Editor. Update your software quickly

On: October 12, 2021

In: Vulnerabilities

Cybersecurity specialists reported the finding of multiple vulnerabilities in Foxit PDF Reader and Foxit PDF Editor, two popular tools for viewing and editing PDF files. According to the report, theRead More →

6 critical vulnerabilities in openOffice make phishing attacks easier. Patch immediately

On: October 11, 2021

In: Vulnerabilities

Cybersecurity specialists report the finding of 6 critical vulnerabilities in OpenOffice, a discontinued open-source office suite developed by Apache Software Foundation. According to the report, successful exploitation of these flawsRead More →

Three critical vulnerabilities in industrial automation products Honeywell Experion PKS and ACE Controllers allow hackers to shut down your manufacturing

On: October 6, 2021

In: Vulnerabilities

Cybersecurity specialists report the detection of 3 vulnerabilities in various products of the technology firm Honeywell. According to the report, successful exploitation of these flaws would allow the deployment ofRead More →

Three critical vulnerabilities in AXIS CCTV cameras allow hackers to spy on you. Patch immediately

On: October 6, 2021

In: Vulnerabilities

A security firm reported the discovery of three vulnerabilities in the software of CCTV devices of technology firm Axis Communications, which has already acknowledged the flaws and issued the correspondingRead More →

CVE-2021-1810: Vulnerability in macOS allows bypassing Gatekeeper feature. Proof of concept available

On: October 4, 2021

In: Vulnerabilities

Security researcher Rasmus Sten published a proof of concept (PoC) code to exploit a critical vulnerability in macOS Gatekeeper updated a few months ago by Apple. Tracked as CVE-2021-1810, theRead More →

Critical privilege escalation vulnerability in ASUS laptops with ROG Armoury Crate app installed

On: September 29, 2021

In: Vulnerabilities

A security report published by an Italian researcher notes that the abuse of a severe vulnerability in the ROG Armory Crate hardware management application for ASUS computers would allow usersRead More →

CVE-2021-37973: Zero-day vulnerability affecting Chrome browser allows hackers to spy on you

On: September 29, 2021

In: Vulnerabilities

Cybersecurity specialists report the detection of a critical zero-day vulnerability in Google Chrome that could put at risk the data of all browser users. While most researchers who have analyzedRead More →

CVE-2020-17148: Critical remote execution vulnerability in Visual Studio Code’s Remote Development extension

On: September 27, 2021

In: Vulnerabilities

Cybersecurity specialists report the detection of a remote code execution (RCE) vulnerability in Visual Studio Code Remote Development, a platform that allows users to adopt a container, virtual machine orRead More →

Common Vulnerability Scoring System (CVSS) (Page 14)

Two critical HTTP request smuggling vulnerabilities in Node.js: Patch immediately

13 important vulnerabilities affecting SAP environmental compliance. Update immediately

18 critical vulnerabilities discovered in Foxit PDF Reader and Foxit PDF Editor. Update your software quickly

6 critical vulnerabilities in openOffice make phishing attacks easier. Patch immediately

Three critical vulnerabilities in industrial automation products Honeywell Experion PKS and ACE Controllers allow hackers to shut down your manufacturing

Three critical vulnerabilities in AXIS CCTV cameras allow hackers to spy on you. Patch immediately

CVE-2021-1810: Vulnerability in macOS allows bypassing Gatekeeper feature. Proof of concept available

Critical privilege escalation vulnerability in ASUS laptops with ROG Armoury Crate app installed

CVE-2021-37973: Zero-day vulnerability affecting Chrome browser allows hackers to spy on you

CVE-2020-17148: Critical remote execution vulnerability in Visual Studio Code’s Remote Development extension

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Massive NVIDIA GPU Exploit Found. How Hackers Can Take Down 35% of AI Systems in Cloud!

Blast-RADIUS Attack Exploting Critical RADIUS Flaw Could Compromise Your Network

14 Million Servers Vulnerable to Critical OpenSSH Bug: Become Remote Admin with CVE-2024-6387

How Safe is Your TinyProxy? Step-by-Step Guide to Exploiting Tinyproxy’s Zero Day Vulnerability

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

Five Techniques for Bypassing Microsoft SmartScreen and Smart App Control (SAC) to Run Malware in Windows

How Millions of Phishing Emails were Sent from Trusted Domains: EchoSpoofing Explained

How to implement Principle of Least Privilege(Cloud Security) in AWS, Azure, and GCP cloud

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]