Alerts & Advisories

Critical Vulnerability in Hypertext Preprocessor (PHP) Software

June 8, 2024

PHP has released security updates addressing a critical vulnerability (CVE-2024-4577) affecting installations where PHP is used in CGI mode. The...

High-Severity Vulnerability in Atlassian Confluence Data Center and Server

June 5, 2024

Atlassian has released security updates addressing a high severity vulnerability (CVE-2024-21683) affecting their Confluence Data Center and Server products.Successful exploitation...

Active Exploitation of High-Severity Vulnerability in Check Point Virtual Private Network (VPN) Products

May 31, 2024

Check Point has released updates addressing a high severity vulnerability (CVE-2024-24919) affecting their VPN products. The vulnerability is reportedly being...

Critical Vulnerabilities in FortiSIEM

May 30, 2024

Fortinet has released updates addressing critical vulnerabilities (CVE-2024-23108 and CVE-2024-23109) affecting their FortiSIEM products. The vulnerabilities have a Common Vulnerability...

Critical Vulnerability in TP-Link Archer C5400X Gaming Router

May 28, 2024

TP-Link has released security updates to address a critical vulnerability (CVE-2024-5035) affecting their Archer C5400X gaming router product. The vulnerability...

Critical Vulnerabilities in Cacti

May 28, 2024

Cacti has released security updates addressing critical vulnerabilities in their products. The vulnerabilities are:CVE-2024-29895: Successful exploitation of this vulnerability could allow an...

Active Exploitation of Critical Vulnerability in NextGen Healthcare Mirth Connect

May 28, 2024

There have been reports of active exploitation of a critical vulnerability (CVE-2023-43208) affecting NextGen Healthcare Mirth Connect. The vulnerability has...

High-Severity Vulnerability in Mozilla PDF.js

May 28, 2024

Security researchers have discovered a high-severity vulnerability (CVE-2024-4367) in Mozilla PDF.js. Mozilla PDF.js is a PDF viewer that is built into Mozilla...

Active Exploitation of High-Severity Vulnerability in Apache Flink

May 28, 2024

There have been reports of active exploitation of a high-severity vulnerability (CVE-2020-17519) affecting Apache Flink.Successful exploitation of the vulnerability could...

Active Exploitation of High-Severity Vulnerability in Google Chrome

May 27, 2024

There have been reports of active exploitation of a high-severity vulnerability (CVE-2024-4947) affecting Google Chrome. The vulnerability is caused by...

Critical Vulnerabilities in WordPress Plugins

May 27, 2024

Security updates have been released to address critical vulnerabilities in multiple WordPress plugins. The vulnerabilities affect the following plugins: WordPress Copymatic –...

Active Exploitation of Vulnerabilities in D-Link Routers

May 27, 2024

There have been reports of active exploitation of vulnerabilities affecting D-Link DIR-600 and DIR-605 routers.The vulnerabilities are:CVE-2014-100005: Successful exploitation of the...

Critical Vulnerabilities in Ivanti Endpoint Manager

May 24, 2024

Ivanti has released security updates to address critical vulnerabilities (CVE-2024-29822, CVE-2024-29823, CVE-2024-29824, CVE-2024-29825, CVE-2024-29826, and CVE-2024-29827) in Ivanti Endpoint Manager...

Critical Vulnerability in Fluent Bit

May 24, 2024

Security updates have been released to address a critical vulnerability (CVE-2024-4323) affecting Fluent Bit. The vulnerability has a Common Vulnerability...

Critical Vulnerability in Veeam Backup Enterprise Manager

May 24, 2024

Veeam has released security updates to address a critical vulnerability (CVE-2024-29849) affecting Veeam Backup Enterprise Manager (VBEM). The vulnerability has...

Critical Vulnerability in GitHub Enterprise Server

May 24, 2024

GitHub has released security updates to address a critical vulnerability (CVE-2024-4985) affecting GitHub Enterprise Server (GHES). The vulnerability has a...

Critical Vulnerability in Git

May 24, 2024

Security updates have been released to address a critical vulnerability (CVE-2024-32002) affecting Git. The vulnerability has a Common Vulnerability Scoring...

Multiple Vulnerabilities in VMWare Workstation and Fusion

May 17, 2024

VMware has released security updates addressing multiple vulnerabilities (CVE-2024-22267, CVE-2024-22268, CVE-2024-22269 and CVE-2024-22270) affecting their Workstation and Fusion products.The vulnerabilities...

May 2024 Monthly Patch

May 15, 2024

Microsoft has released security patches to address multiple vulnerabilities in their software and products.The vulnerabilities that have been classified as...

Active Exploitation of Zero-Day Vulnerability in Google Chrome

May 13, 2024

Google has released security updates addressing a zero-day vulnerability (CVE-2024-4671) affecting their Chrome browser on Windows, Mac and Linux systems....

Critical Vulnerability in Tinyproxy Instances

May 8, 2024

Tinyproxy has released security fixes addressing a critical vulnerability (CVE-2023-49606) in their internet-exposed instances. The vulnerability has a Common Vulnerability...

Active Exploitation of Critical Vulnerability in WordPress Automatic Plugin

May 6, 2024

ValvePress has released security updates to address a critical vulnerability (CVE-2024-27956) impacting WordPress Automatic plugin. This vulnerability has a Common...

High-Severity Vulnerability in R Programming Language

May 3, 2024

R Project has released updates addressing a high-severity vulnerability (CVE-2024-27322) affecting the R programming language. This vulnerability has a Common...

Active Exploitation of Vulnerabilities in Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) Products.

April 25, 2024

Cisco has disclosed three vulnerabilities (CVE-2024-20353, CVE-2024-20359 and CVE-2024-20358) in their Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) products....

Alerts & Advisories

Critical Vulnerability in Hypertext Preprocessor (PHP) Software

High-Severity Vulnerability in Atlassian Confluence Data Center and Server

Active Exploitation of High-Severity Vulnerability in Check Point Virtual Private Network (VPN) Products

Critical Vulnerabilities in FortiSIEM

Critical Vulnerability in TP-Link Archer C5400X Gaming Router

Critical Vulnerabilities in Cacti

Active Exploitation of Critical Vulnerability in NextGen Healthcare Mirth Connect

High-Severity Vulnerability in Mozilla PDF.js

Active Exploitation of High-Severity Vulnerability in Apache Flink

Active Exploitation of High-Severity Vulnerability in Google Chrome

Critical Vulnerabilities in WordPress Plugins

Active Exploitation of Vulnerabilities in D-Link Routers

Critical Vulnerabilities in Ivanti Endpoint Manager

Critical Vulnerability in Fluent Bit

Critical Vulnerability in Veeam Backup Enterprise Manager

Critical Vulnerability in GitHub Enterprise Server

Critical Vulnerability in Git

Multiple Vulnerabilities in VMWare Workstation and Fusion

May 2024 Monthly Patch

Active Exploitation of Zero-Day Vulnerability in Google Chrome

Critical Vulnerability in Tinyproxy Instances

Active Exploitation of Critical Vulnerability in WordPress Automatic Plugin

High-Severity Vulnerability in R Programming Language

Active Exploitation of Vulnerabilities in Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) Products.

[FUNKSEC] – Ransomware Victim: gtsportcarrental[.]com

CVE Alert: CVE-2023-31279

CVE Alert: CVE-2024-11349

CVE Alert: CVE-2024-12846

CVE Alert: CVE-2024-11196

You may have missed