Aggregator

A vulnerability was found in Ivanti Cloud Services Application up to 5.0.2 and classified as very critical. Affected by this issue is some unknown functionality of the component Admin Web Console. The manipulation leads to authentication bypass using alternate channel. This vulnerability is handled as CVE-2024-11639. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Ivanti Connect Secure up to 22.7R2.3 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to argument injection. This vulnerability is known as CVE-2024-11633. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Ivanti Cloud Services Application up to 5.0.2. Affected is an unknown function of the component Admin Web Console. The manipulation leads to command injection. This vulnerability is traded as CVE-2024-11772. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Silicon Labs Z-Wave Series 700 and Z-Wave Series 800 7.21.1. This issue affects some unknown processing of the component Packets Handler. The manipulation leads to permission issues. The identification of this vulnerability is CVE-2024-50924. The attack needs to be approached within the local network. There is no exploit available.

A vulnerability classified as problematic was found in Silicon Labs Z-Wave Series 700 and Z-Wave Series 800 7.21.1. This vulnerability affects unknown code. The manipulation leads to denial of service. This vulnerability was named CVE-2024-50929. Access to the local network is required for this attack to succeed. There is no exploit available.

A vulnerability classified as critical has been found in Silicon Labs Z-Wave Series 700 and Z-Wave Series 800 7.21.1. This affects an unknown part of the component Wakeup Handler. The manipulation leads to permission issues. This vulnerability is uniquely identified as CVE-2024-50928. Access to the local network is required for this attack. There is no exploit available.

A vulnerability was found in Silicon Labs Z-Wave Series 700 and Z-Wave Series 800 7.21.1. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Packets Handler. The manipulation leads to denial of service. This vulnerability is handled as CVE-2024-50921. The attack needs to be initiated within the local network. There is no exploit available.

A vulnerability was found in Ivanti Connect Secure and Policy Secure up to 22.7. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to command injection. This vulnerability is known as CVE-2024-11634. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

Manufacturing Companies Targeted with New Lumma and Amadey Campaign

Phone Phishing Gang Busted: Eight Arrested in Belgium and Netherlands

Campagna di phishing ai danni di ho. Mobile

《2024全球AI网络安全产品洞察报告》正式发布 | FreeBuf咨询

Looking for Free Fire Hack/ Mod menu

Auguria today at the Black Hat Europe conference, in addition to providing five additional integrations with other platforms, revealed it has added an explainability graph capability that makes it simple to understand why log data collected is either irrelevant or warrants further investigation.

The post Auguria Streamlines Management of Security Log Data appeared first on Security Boulevard.

【安全圈】SaaS巨头被勒索攻击，泄露680GB数据

【安全圈】俄罗斯APT组织打击乌克兰国防企业

【安全圈】TikTok提交紧急动议 试图暂缓美国“不卖就禁”法令生效

【安全圈】防火墙服务配置漏洞波及多家全球财富100强公司

Five Ways Spear Phishing Tactics are Evolving in 2025

Hackers Weaponize Visual Studio Code Remote Tunnels for Cyber Espionage