vulnerability Archives

SSL.com Experiences Bug Allowing Non-Owner Domain Certification

Posted byby
4 days ago
0 Comments

Sec Reporter account holder on Mozilla’s Bugzilla platform reported a vulnerability in SSL.com’s certificate issuance service, where the domain ownership verification process failed, allowing malicious actors to issue certificates for...

Warning: Vulnerability in PAN-OS Exposes Path for Hackers to Attack VPN; Attacks Detected, Patch Pending

Posted byby
1 year ago
0 Comments

Palo Alto Networks reports the discovery of a hacking group targeting PAN-OS through a previously unknown vulnerability in GlobalProtect, termed Operation MidnightEclipse. The company is currently developing a patch scheduled...

Report: Vulnerability on Hugging Face Allows for Sending Models to Penetrate Other Users’ AI.

Posted byby
1 year ago
0 Comments

Wiz, a cloud security company, has reported a serious vulnerability found on the Hugging Face AI model platform, allowing access to other users’ AI model data. The security engineering team...

Unearthed: Critical Vulnerability Unleashed in GitLab Servers Escapes Internet’s Grasp, Surpassing 5,000 Machines; 27 Instances Found within Thailand

Posted byby
1 year ago
0 Comments

GitLab has released a patch, along with a notification for vulnerability CVE-2023-7028, since the beginning of this year. However, many servers have not been updated, putting them at risk of...

GitLab Presents Critical Vulnerability Patch Notification – Malevolent Adversary Can Immediately Commandeer User Accounts

Posted byby
1 year ago
0 Comments

GitLab, the leading platform for DevOps teams, recently announced the release of a patch to address a critical vulnerability, CVE-2023-7028. This vulnerability poses a severe threat, as it allows malicious...

Bitwarden Vulnerability Unveiled: Exploiting Windows Hello to Decrypt Database Keys – Developer Patched Issue Since April

Posted byby
1 year ago
0 Comments

RedTeam Pentesting, a German software security company, has reported on the security assessment of Bitwarden, a password management software. The assessment focused on decoding the database when users enable the...

Exploiting Google’s Login System Vulnerabilities, Malware Infiltrates and Perpetuates Access to User Login Data Even After Password Resets

Posted byby
1 year ago
0 Comments

CloudSEK, a cybersecurity company, recently reported that the malware group PRISMA claims to have a special feature that allows them to reuse stolen Google login cookies, even after the account...

Securing Networks: Terrapin’s Unveiled Vulnerability Dampens SSH’s Robust Protective Measures, Yet Limited in Attack Surface

Posted byby
1 year ago
0 Comments

A team of researchers from Ruhr University Bochum has recently reported on a vulnerability in the Secure Shell protocol, commonly known as ssh. This vulnerability, named “Terrapin,” allows hackers to...

Google Uncovers a Glitch in C-PUs: Machine Freezes Despite Running on Virtual Machines and Impacting 10th Generation Core Processors

Posted byby
1 year ago
0 Comments

Tavis Ormandy, a member of Google’s Project Zero, recently reported a vulnerability named Reptar (CVE-2023-23583) that exploits the unused bit of the MOVSB instruction to move data into a register....

Warning from Cisco: A Potent Vulnerability in the IOS XE Operating System Unveiled, Unleashing an Actualized Assault.

Posted byby
2 years ago
0 Comments

Cisco issues critical vulnerability warning for its IOS XE operating system used in its network devices. The flaw allows hackers to have full control over the device and has already...