Rhadamanthys Infostealer Exploiting Microsoft Management Console to Execute Malicious Script Researchers uncovered an ongoing campaign distributing the Rhadamanthys Infostealer through malicious Microsoft Management Console (MMC) files (.MSC), leveraging both a patched DLL vulnerability and l … Read more Published Date: Feb 20, 2025 (2 hours, 45 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2024-43572
IBM OpenPages Vulnerability Let Attackers Steal Authentication Credentials IBM has addressed multiple high-severity vulnerabilities in its OpenPages Governance, Risk, and Compliance (GRC) platform that could enable attackers to hijack user sessions, steal authentication cred … Read more Published Date: Feb 20, 2025 (2 hours, 51 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2024-49781 CVE-2024-49779 CVE-2024-49344 […]
PRevent: Open-source tool to detect malicious code in pull requests Apiiro security researchers have released open source tools that can help organizations detect malicious code as part of their software development lifecycle: PRevent (a scanner for pull requests), an … Read more Published Date: Feb 20, 2025 (3 hours, 3 minutes ago) Vulnerabilities has been mentioned in […]
Microsoft fixes Power Pages zero-day bug exploited in attacks Microsoft has issued a security bulletin for a high-severity elevation of privilege vulnerability in Power Pages, which hackers exploited as a zero-day in attacks. The flaw, tracked as CVE-2025-24989, … Read more Published Date: Feb 20, 2025 (3 hours, 5 minutes ago) Vulnerabilities has been mentioned in this article. […]
Atlassian waarschuwt voor kritieke Tomcat-kwetsbaarheden in Confluence Softwarebedrijf Atlassian waarschuwt voor twee kritieke kwetsbaarheden in Confluence Data Center en Server waardoor remote code execution mogelijk is. De impact van de twee kwetsbaarheden (CVE-2024-50 … Read more Published Date: Feb 20, 2025 (3 hours, 22 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2024-56337 CVE-2024-50379
Cisco: inbraak systemen telecomproviders via gestolen inloggegevens Een groep aanvallers die op de Cisco-systemen van Amerikaanse telecomproviders wist in te breken maakte gebruik van gestolen inloggegevens, zo stelt Cisco. In een analyse laat het netwerkbedrijf weten … Read more Published Date: Feb 20, 2025 (1 hour, 47 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2018-0171
Microsoft testing fix for Windows 11 bug breaking SSH connections Microsoft is not testing a fix for a longstanding known issue that is breaking SSH connections on some Windows 11 22H2 and 23H2 systems. On Tuesday, Microsoft started rolling Windows 11 Build 26100.33 … Read more Published Date: Feb 20, 2025 (2 hours, 10 minutes ago) Vulnerabilities […]
CVE ID : CVE-2025-1039 Published : Feb. 20, 2025, 1:15 p.m. | 1 hour, 24 minutes ago Description : The Lenix Elementor Leads addon plugin for WordPress is vulnerable to Stored Cross-Site Scripting via a URL form field in all versions up to, and including, 1.8.2 due to insufficient input sanitization and output escaping. This makes it […]
CVE-2024-12284 impacts NetScaler CVE-2024-12284 is a high severity vulnerability identified in the NetScaler Console (formerly NetScaler ADM) and NetScaler Console Agent.Vulnerability DetailsNature of CVE-2024-12284Description: CVE-2 … Read more Published Date: Feb 20, 2025 (2 hours, 25 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2024-12284 CVE-2025-1094
Kritiek Microsoft Bing-lek maakte remote code execution mogelijk Een kritieke kwetsbaarheid in Microsoft Bing maakte remote code execution mogelijk, zo heeft Microsoft laten weten. Het techbedrijf heeft de kwetsbaarheid verholpen en Bing-gebruikers hoeven geen acti … Read more Published Date: Feb 20, 2025 (2 hours, 47 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-21355
