Previously patched vCenter vulnerabilities actively exploited

Previously patched vCenter vulnerabilities actively exploited

Broadcom appears to be playing catchup regarding a recent update for critical vulnerabilities in VMware vCenter Server. These vulnerabilities, which enable remote code execution and privilege escalation, were supposedly… Article Source https://www.techzine.eu/news/security/126360/previously-patched-vcenter-vulnerabilities-actively-exploited/

Citrix Virtual Apps & Desktops Vulnerability Actively Exploited in Attacks

Citrix Virtual Apps & Desktops Vulnerability Actively Exploited in Attacks

A recently discovered vulnerability in Citrix Virtual Apps and Desktops is being actively exploited in the wild. The flaw, which allows for unauthenticated remote code execution (RCE), poses a significant threat to… Article Source https://cybersecuritynews.com/citrix-virtual-apps-desktops-flaw-exploit/

Google Warns of Actively Exploited CVE-2024-43093 Vulnerability in Android System

Google Warns of Actively Exploited CVE-2024-43093 Vulnerability in Android System

Nov 05, 2024Ravie LakshmananMobile Security / Vulnerability Google has warned that a security flaw impacting its Android operating system has come under active exploitation in the wild. The vulnerability, tracked as CVE-2024-43093, has… Article Source https://thehackernews.com/2024/11/google-warns-of-actively-exploited-cve.html

Actively exploited Cisco ASA, FTD vulnerability addressed

Actively exploited Cisco ASA, FTD vulnerability addressed

Updates have been issued by Cisco to fix a medium-severity flaw in its Adaptive Security Appliance’s and Firepower Threat Defense Software’s Remote Access VPN service, tracked as CVE-2024-20481, which has already been leveraged in ongoing… Article Source https://www.scworld.com/brief/actively-exploited-cisco-asa-ftd-vulnerability-addressed

Cisco fixed tens of vulnerabilities, including an actively exploited one

Cisco fixed tens of vulnerabilities, including an actively exploited one

Cisco fixed tens of vulnerabilities, including an actively exploited one Pierluigi Paganini October 24, 2024 Cisco patched vulnerabilities in ASA, FMC, and FTD products, including one actively exploited in a large-scale brute-force… Article Source https://securityaffairs.com/170203/breaking-news/cisco-fixed-tens-of-vulnerabilities-including-actively-exploited-one.html

Cisco releases security patch for actively exploited zero-day vulnerability in Nexus switches.

Cisco releases security patch for actively exploited zero-day vulnerability in Nexus switches.

Cisco has released patches for several Nexus switch series to address a vulnerability that allows attackers to execute bash commands in the underlying operating system by exploiting an insufficient validation of arguments passed with configuration commands. This flaw, identified as CVE-2024-20399, affects various Cisco switches including MDS 9000 Series Multilayer Switches, Nexus 3000 Series Switches, … Read more

Two vulnerabilities discovered by Citrix, both actively exploited

Two vulnerabilities discovered by Citrix, both actively exploited

Two vulnerabilities have been discovered in NetScaler ADC and NetScaler Gateway, previously known as Citrix ADC and Citrix Gateway, impacting six supported versions. The first vulnerability, CVE-2023-6548, requires access to NSIP, CLIP, or SNIP with access to the management interface, allowing threat actors to authenticate remote code execution on the device. The severity of this … Read more