Aggregator
CVE-2024-54175 | IBM MQ 9.3/9.4 unusual condition (Nessus ID 232690)
CISA Warns of Juniper Junos OS Improper Isolation Vulnerability Exploited in Wild
CISA has issued a warning regarding a newly discovered vulnerability affecting Juniper Networks’ Junos OS. The vulnerability, identified as CVE-2025-21590, involves an improper isolation or compartmentalization issue within the operating system’s kernel. This flaw could allow a local attacker with high-level privileges to inject arbitrary code, potentially compromising the integrity of affected devices. The vulnerability […]
The post CISA Warns of Juniper Junos OS Improper Isolation Vulnerability Exploited in Wild appeared first on Cyber Security News.
CISA, FBI Warn of Medusa Ransomware Impacting Critical Infrastructure
Мир без границ между правдой и вымыслом: детекторы дипфейков провалили проверку
CVE-2023-28771 | Zyxel USG/USG FLEX/VPN/ATP Error Message os command injection
CVE-2024-1174 | HP ThinPro up to 8.0 SP7 memory corruption
CVE-2024-21584 | Pleasanter up to 1.3.49.0 URL cross site scripting
CVE-2023-42947 | Apple iOS/iPadOS App sandbox
CVE-2023-42947 | Apple macOS App sandbox
CVE-2023-42947 | Apple tvOS App sandbox
CVE-2023-42947 | Apple watchOS App sandbox
CVE-2024-30416 | Huawei HarmonyOS/EMUI Driver Module use after free
CVE-2023-52537 | Huawei HarmonyOS/EMUI HwIms Module denial of service
CVE-2023-52538 | Huawei HarmonyOS/EMUI HwIms Module denial of service
CVE-2023-21823 | Microsoft Windows up to Server 2022 Graphics integer overflow
CISA Warns of Apple WebKit Out-of-Bounds Write Vulnerability Exploited in Wild
The Cybersecurity and Infrastructure Security Agency (CISA) has warned about an actively exploited zero-day vulnerability in Apple’s WebKit browser engine, tracked as CVE-2025-24201. This vulnerability, an out-of-bounds write issue, could allow attackers to execute unauthorized code on vulnerable devices. The vulnerability lies within WebKit, a cross-platform web browser engine used by Safari and other applications […]
The post CISA Warns of Apple WebKit Out-of-Bounds Write Vulnerability Exploited in Wild appeared first on Cyber Security News.
North Korea-linked APT group ScarCruft spotted using new Android spyware KoSpy
GitLab patches critical authentication bypass vulnerabilities
86,000+ Healthcare Staff Records Exposed from Misconfigured AWS S3 Bucket
A significant data breach involving sensitive healthcare worker information has been discovered, exposing over 86,000 records belonging to ESHYFT, a New Jersey-based HealthTech company. Cybersecurity researcher Jeremiah Fowler identified an unprotected AWS S3 storage bucket containing approximately 108.8 GB of data that lacked password protection or encryption, leaving private healthcare worker information publicly accessible. The […]
The post 86,000+ Healthcare Staff Records Exposed from Misconfigured AWS S3 Bucket appeared first on Cyber Security News.