200
CVEs
23
Threats
0
News
200
Critical
200
CISA KEV
🛡 Security Vulnerabilities (CVE)
CVE-2020-0878
Microsoft Edge and Internet Explorer Memory Corruption Vulnerability — Microsoft Edge and Internet Explorer contain a me
11:01 KSA
Microsoft Edge and Internet Explorer Memory Corruption Vulnerability — Microsoft Edge and Internet Explorer contain a memory corruption vulnerability that allows attackers to execute code in the context of the current user.
CVE-2020-13927
Apache Airflow's Experimental API Authentication Bypass — The previous default setting for Airflow's Experimental API wa
11:01 KSA
Apache Airflow's Experimental API Authentication Bypass — The previous default setting for Airflow's Experimental API was to allow all API requests without authentication.
CVE-2020-1464
Microsoft Windows Spoofing Vulnerability — Microsoft Windows contains a spoofing vulnerability when Windows incorrectly
11:01 KSA
Microsoft Windows Spoofing Vulnerability — Microsoft Windows contains a spoofing vulnerability when Windows incorrectly validates file signatures, allowing an attacker to bypass security features and load improperly signed files.
CVE-2020-15999
Google Chrome FreeType Heap Buffer Overflow Vulnerability — Google Chrome uses FreeType, an open-source software library
11:01 KSA
Google Chrome FreeType Heap Buffer Overflow Vulnerability — Google Chrome uses FreeType, an open-source software library to render fonts, which contains a heap buffer overflow vulnerability in the function Load_SBit_Png when processing PNG images embedded into fonts. This vulnera…
CVE-2020-16846
SaltStack Salt Shell Injection Vulnerability — SaltStack Salt allows an unauthenticated user with network access to the
11:01 KSA
SaltStack Salt Shell Injection Vulnerability — SaltStack Salt allows an unauthenticated user with network access to the Salt API to use shell injections to run code on the Salt API using the SSH client. This vulnerability affects any users running the Salt API.
CVE-2020-17087
Microsoft Windows Kernel Privilege Escalation Vulnerability — Microsoft Windows kernel contains an unspecified vulnerabi
11:01 KSA
Microsoft Windows Kernel Privilege Escalation Vulnerability — Microsoft Windows kernel contains an unspecified vulnerability that allows for privilege escalation.
CVE-2020-1938
Apache Tomcat Improper Privilege Management Vulnerability — Apache Tomcat treats Apache JServ Protocol (AJP) connections
11:01 KSA
Apache Tomcat Improper Privilege Management Vulnerability — Apache Tomcat treats Apache JServ Protocol (AJP) connections as having higher trust than, for example, a similar HTTP connection. If such connections are available to an attacker, they can be exploited.
CVE-2020-1956
Apache Kylin OS Command Injection Vulnerability — Apache Kylin contains an OS command injection vulnerability which coul
11:01 KSA
Apache Kylin OS Command Injection Vulnerability — Apache Kylin contains an OS command injection vulnerability which could permit an attacker to perform remote code execution.
CVE-2020-2021
Palo Alto Networks PAN-OS Authentication Bypass Vulnerability — Palo Alto Networks PAN-OS contains a vulnerability in SA
11:01 KSA
Palo Alto Networks PAN-OS Authentication Bypass Vulnerability — Palo Alto Networks PAN-OS contains a vulnerability in SAML which allows an attacker to bypass authentication.
CVE-2020-24363
TP-link TL-WA855RE Missing Authentication for Critical Function Vulnerability — TP-link TL-WA855RE contains a missing au
11:01 KSA
TP-link TL-WA855RE Missing Authentication for Critical Function Vulnerability — TP-link TL-WA855RE contains a missing authentication for critical function vulnerability. This vulnerability could allow an unauthenticated attacker (on the same network) to submit a TDDP_RESET POST r…
CVE-2020-24557
Trend Micro Multiple Products Improper Access Control Vulnerability — Trend Micro Apex One, OfficeScan, and Worry-Free B
11:01 KSA
Trend Micro Multiple Products Improper Access Control Vulnerability — Trend Micro Apex One, OfficeScan, and Worry-Free Business Security on Microsoft Windows contain an improper access control vulnerability that may allow an attacker to manipulate a particular product folder to d…
CVE-2020-2506
QNAP Helpdesk Improper Access Control Vulnerability — QNAP Helpdesk contains an improper access control vulnerability wh
11:01 KSA
QNAP Helpdesk Improper Access Control Vulnerability — QNAP Helpdesk contains an improper access control vulnerability which could allow an attacker to gain privileges or to read sensitive information.
CVE-2020-25078
D-Link DCS-2530L and DCS-2670L Devices Unspecified Vulnerability — D-Link DCS-2530L and DCS-2670L devices contains an un
11:01 KSA
D-Link DCS-2530L and DCS-2670L Devices Unspecified Vulnerability — D-Link DCS-2530L and DCS-2670L devices contains an unspecified vulnerability that could allow for remote administrator password disclosure. The impacted products could be end-of-life (EoL) and/or end-of-service (E…
CVE-2020-25079
D-Link DCS-2530L and DCS-2670L Command Injection Vulnerability — D-Link DCS-2530L and DCS-2670L devices contains a comma
11:01 KSA
D-Link DCS-2530L and DCS-2670L Command Injection Vulnerability — D-Link DCS-2530L and DCS-2670L devices contains a command injection vulnerability in the cgi-bin/ddns_enc.cgi. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue p…
CVE-2020-2509
QNAP Network-Attached Storage (NAS) Command Injection Vulnerability — QNAP NAS devices contain a command injection vulne
11:01 KSA
QNAP Network-Attached Storage (NAS) Command Injection Vulnerability — QNAP NAS devices contain a command injection vulnerability which could allow attackers to perform remote code execution.
CVE-2020-25213
WordPress File Manager Plugin Remote Code Execution Vulnerability — WordPress File Manager plugin contains a remote code
11:01 KSA
WordPress File Manager Plugin Remote Code Execution Vulnerability — WordPress File Manager plugin contains a remote code execution vulnerability that allows unauthenticated users to execute PHP code and upload malicious files on a target site.
CVE-2020-25223
Sophos SG UTM Remote Code Execution Vulnerability — A remote code execution vulnerability exists in the WebAdmin of Soph
11:01 KSA
Sophos SG UTM Remote Code Execution Vulnerability — A remote code execution vulnerability exists in the WebAdmin of Sophos SG UTM.
CVE-2020-25506
D-Link DNS-320 Device Command Injection Vulnerability — D-Link DNS-320 device contains a command injection vulnerability
11:01 KSA
D-Link DNS-320 Device Command Injection Vulnerability — D-Link DNS-320 device contains a command injection vulnerability in the sytem_mgr.cgi component that may allow for remote code execution.
CVE-2020-2551
Oracle Fusion Middleware Unspecified Vulnerability — Oracle Fusion Middleware contains an unspecified vulnerability in t
11:01 KSA
Oracle Fusion Middleware Unspecified Vulnerability — Oracle Fusion Middleware contains an unspecified vulnerability in the WLS Core Components that allows an unauthenticated attacker with network access via IIOP to compromise the WebLogic Server.
CVE-2020-2555
Oracle Multiple Products Remote Code Execution Vulnerability — Multiple Oracle products contain a remote code execution
11:01 KSA
Oracle Multiple Products Remote Code Execution Vulnerability — Multiple Oracle products contain a remote code execution vulnerability that allows an unauthenticated attacker with network access via T3 or HTTP to takeover the affected system. Impacted Oracle products: Oracle Coher…
CVE-2020-26919
Netgear JGS516PE Devices Missing Function Level Access Control Vulnerability — Netgear JGS516PE devices contain a missin
11:01 KSA
Netgear JGS516PE Devices Missing Function Level Access Control Vulnerability — Netgear JGS516PE devices contain a missing function level access control vulnerability.
CVE-2020-27930
Apple Multiple Products Memory Corruption Vulnerability — Apple iOS, iPadOS, macOS, and watchOS FontParser contain a mem
11:01 KSA
Apple Multiple Products Memory Corruption Vulnerability — Apple iOS, iPadOS, macOS, and watchOS FontParser contain a memory corruption vulnerability which may allow for code execution when processing maliciously crafted front.
CVE-2020-27932
Apple Multiple Products Type Confusion Vulnerability — Apple iOS, iPadOS, macOS, and watchOS contain a type confusion vu
11:01 KSA
Apple Multiple Products Type Confusion Vulnerability — Apple iOS, iPadOS, macOS, and watchOS contain a type confusion vulnerability that may allow a malicious application to execute code with kernel privileges.
CVE-2020-27950
Apple Multiple Products Memory Initialization Vulnerability — Apple iOS, iPadOS, macOS, and watchOS contain a memory ini
11:01 KSA
Apple Multiple Products Memory Initialization Vulnerability — Apple iOS, iPadOS, macOS, and watchOS contain a memory initialization vulnerability that may allow a malicious application to disclose kernel memory.
CVE-2020-2883
Oracle WebLogic Server Unspecified Vulnerability — Oracle WebLogic Server, a product within the Fusion Middleware suite,
11:01 KSA
Oracle WebLogic Server Unspecified Vulnerability — Oracle WebLogic Server, a product within the Fusion Middleware suite, contains an unspecified vulnerability exploitable by an unauthenticated attacker with network access via IIOP or T3.
CVE-2020-28949
PEAR Archive_Tar Deserialization of Untrusted Data Vulnerability — PEAR Archive_Tar allows an unserialization attack bec
11:01 KSA
PEAR Archive_Tar Deserialization of Untrusted Data Vulnerability — PEAR Archive_Tar allows an unserialization attack because phar: is blocked but PHAR: is not blocked. PEAR stands for PHP Extension and Application Repository and it is an open-source framework and distribution sys…
CVE-2020-29557
D-Link DIR-825 R1 Devices Buffer Overflow Vulnerability — D-Link DIR-825 R1 devices contain a buffer overflow vulnerabil
11:01 KSA
D-Link DIR-825 R1 Devices Buffer Overflow Vulnerability — D-Link DIR-825 R1 devices contain a buffer overflow vulnerability in the web interface that may allow for remote code execution.
CVE-2020-29574
CyberoamOS (CROS) SQL Injection Vulnerability — CyberoamOS (CROS) contains a SQL injection vulnerability in the WebAdmin
11:01 KSA
CyberoamOS (CROS) SQL Injection Vulnerability — CyberoamOS (CROS) contains a SQL injection vulnerability in the WebAdmin that allows an unauthenticated attacker to execute arbitrary SQL statements remotely.
CVE-2020-29583
Zyxel Multiple Products Use of Hard-Coded Credentials Vulnerability — Zyxel firewalls (ATP, USG, VM) and AP Controllers
11:01 KSA
Zyxel Multiple Products Use of Hard-Coded Credentials Vulnerability — Zyxel firewalls (ATP, USG, VM) and AP Controllers (NXC2500 and NXC5500) contain a use of hard-coded credentials vulnerability in an undocumented account ("zyfwp") with an unchangeable password.
CVE-2020-3118
Cisco IOS XR Software Discovery Protocol Format String Vulnerability — Cisco IOS XR improperly validates string input fr
11:01 KSA
Cisco IOS XR Software Discovery Protocol Format String Vulnerability — Cisco IOS XR improperly validates string input from certain fields in Cisco Discovery Protocol messages. Exploitation could allow an unauthenticated, adjacent attacker to execute code with administrative privi…
CVE-2020-3153
Cisco AnyConnect Secure Mobility Client for Windows Uncontrolled Search Path Vulnerability — Cisco AnyConnect Secure Mob
11:01 KSA
Cisco AnyConnect Secure Mobility Client for Windows Uncontrolled Search Path Vulnerability — Cisco AnyConnect Secure Mobility Client for Windows allows for incorrect handling of directory paths. An attacker with valid credentials on Windows would be able to copy malicious files t…
CVE-2020-3161
Cisco IP Phones Web Server Remote Code Execution and Denial-of-Service Vulnerability — Cisco IP Phones contain an improp
11:01 KSA
Cisco IP Phones Web Server Remote Code Execution and Denial-of-Service Vulnerability — Cisco IP Phones contain an improper input validation vulnerability for HTTP requests. Exploitation could allow an attacker to execute code remotely with root privileges or cause a denial-of-ser…
CVE-2020-3259
Cisco ASA and FTD Information Disclosure Vulnerability — Cisco Adaptive Security Appliance (ASA) and Firepower Threat De
11:01 KSA
Cisco ASA and FTD Information Disclosure Vulnerability — Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an information disclosure vulnerability. An attacker could retrieve memory contents on an affected device, which could lead to the disclosur…
CVE-2020-3433
Cisco AnyConnect Secure Mobility Client for Windows DLL Hijacking Vulnerability — Cisco AnyConnect Secure Mobility Clien
11:01 KSA
Cisco AnyConnect Secure Mobility Client for Windows DLL Hijacking Vulnerability — Cisco AnyConnect Secure Mobility Client for Windows interprocess communication (IPC) channel allows for insufficient validation of resources that are loaded by the application at run time. An attack…
CVE-2020-3452
Cisco ASA and FTD Read-Only Path Traversal Vulnerability — Cisco Adaptive Security Appliance (ASA) and Firepower Threat
11:01 KSA
Cisco ASA and FTD Read-Only Path Traversal Vulnerability — Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an improper input validation vulnerability when HTTP requests process URLs. An attacker could exploit this vulnerability by sending a cra…
CVE-2020-3566
Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability — Cisco IOS XR Distance Vector Multicast Routing Protocol (D
11:01 KSA
Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability — Cisco IOS XR Distance Vector Multicast Routing Protocol (DVMRP) incorrectly handles Internet Group Management Protocol (IGMP) packets. Exploitation could allow an unauthenticated, remote attacker to immediately crash t…
CVE-2020-3569
Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability — Cisco IOS XR Distance Vector Multicast Routing Protocol (D
11:01 KSA
Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability — Cisco IOS XR Distance Vector Multicast Routing Protocol (DVMRP) incorrectly handles Internet Group Management Protocol (IGMP) packets. Exploitation could allow an unauthenticated, remote attacker to immediately crash t…
CVE-2020-35730
Roundcube Webmail Cross-Site Scripting (XSS) Vulnerability — Roundcube Webmail contains a cross-site scripting (XSS) vul
11:01 KSA
Roundcube Webmail Cross-Site Scripting (XSS) Vulnerability — Roundcube Webmail contains a cross-site scripting (XSS) vulnerability that allows an attacker to send a plain text e-mail message with Javascript in a link reference element that is mishandled by linkref_addinindex in r…
CVE-2020-3580
Cisco ASA and FTD Cross-Site Scripting (XSS) Vulnerability — Cisco Adaptive Security Appliance (ASA) and Firepower Threa
11:01 KSA
Cisco ASA and FTD Cross-Site Scripting (XSS) Vulnerability — Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) contain an insufficient input validation vulnerability for user-supplied input by the web services interface. Successful exploitation could all…
CVE-2020-36193
PEAR Archive_Tar Improper Link Resolution Vulnerability — PEAR Archive_Tar Tar.php allows write operations with director
11:01 KSA
PEAR Archive_Tar Improper Link Resolution Vulnerability — PEAR Archive_Tar Tar.php allows write operations with directory traversal due to inadequate checking of symbolic links. PEAR stands for PHP Extension and Application Repository and it is an open-source framework and distri…
CVE-2020-3837
Apple Multiple Products Memory Corruption Vulnerability — Apple iOS, iPadOS, macOS, tvOS, and watchOS contain a memory c
11:01 KSA
Apple Multiple Products Memory Corruption Vulnerability — Apple iOS, iPadOS, macOS, tvOS, and watchOS contain a memory corruption vulnerability that could allow an application to execute code with kernel privileges.
CVE-2020-3950
VMware Multiple Products Privilege Escalation Vulnerability — VMware Fusion, Remote Console (VMRC) for Mac, and Horizon
11:01 KSA
VMware Multiple Products Privilege Escalation Vulnerability — VMware Fusion, Remote Console (VMRC) for Mac, and Horizon Client for Mac contain a privilege escalation vulnerability due to improper use of setuid binaries that allows attackers to escalate privileges to root.
CVE-2020-3952
VMware vCenter Server Information Disclosure Vulnerability — VMware vCenter Server contains an information disclosure vu
11:01 KSA
VMware vCenter Server Information Disclosure Vulnerability — VMware vCenter Server contains an information disclosure vulnerability in the VMware Directory Service (vmdir) when the Platform Services Controller (PSC) does not correctly implement access controls. Successful exploit…
CVE-2020-3992
VMware ESXi OpenSLP Use-After-Free Vulnerability — VMware ESXi OpenSLP contains a use-after-free vulnerability that allo
11:01 KSA
VMware ESXi OpenSLP Use-After-Free Vulnerability — VMware ESXi OpenSLP contains a use-after-free vulnerability that allows an attacker residing in the management network with access to port 427 to perform remote code execution.
CVE-2020-4006
Multiple VMware Products Command Injection Vulnerability — VMware Workspace One Access, Access Connector, Identity Manag
11:01 KSA
Multiple VMware Products Command Injection Vulnerability — VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector contain a command injection vulnerability. An attacker with network access to the administrative configurator on port 8443 an…
CVE-2020-4427
IBM Data Risk Manager Security Bypass Vulnerability — IBM Data Risk Manager contains a security bypass vulnerability tha
11:01 KSA
IBM Data Risk Manager Security Bypass Vulnerability — IBM Data Risk Manager contains a security bypass vulnerability that could allow a remote attacker to bypass security restrictions when configured with SAML authentication. By sending a specially crafted HTTP request, an attack…
CVE-2020-4428
IBM Data Risk Manager Remote Code Execution Vulnerability — IBM Data Risk Manager contains an unspecified vulnerability
11:01 KSA
IBM Data Risk Manager Remote Code Execution Vulnerability — IBM Data Risk Manager contains an unspecified vulnerability which could allow a remote, authenticated attacker to execute commands on the system.�
CVE-2020-4430
IBM Data Risk Manager Directory Traversal Vulnerability — IBM Data Risk Manager contains a directory traversal vulnerabi
11:01 KSA
IBM Data Risk Manager Directory Traversal Vulnerability — IBM Data Risk Manager contains a directory traversal vulnerability that could allow a remote authenticated attacker to traverse directories and send a specially crafted URL request to download arbitrary files from the syst…
CVE-2020-5135
SonicWall SonicOS Buffer Overflow Vulnerability — A buffer overflow vulnerability in SonicOS allows a remote attacker to
11:01 KSA
SonicWall SonicOS Buffer Overflow Vulnerability — A buffer overflow vulnerability in SonicOS allows a remote attacker to cause Denial of Service (DoS) and potentially execute arbitrary code by sending a malicious request to the firewall.
CVE-2020-5410
VMware Tanzu Spring Cloud Config Directory Traversal Vulnerability — Spring, by VMware Tanzu, Cloud Config contains a pa
11:01 KSA
VMware Tanzu Spring Cloud Config Directory Traversal Vulnerability — Spring, by VMware Tanzu, Cloud Config contains a path traversal vulnerability that allows applications to serve arbitrary configuration files.
CVE-2020-5722
Grandstream Networks UCM6200 Series SQL Injection Vulnerability — Grandstream UCM6200 series is vulnerable to an unauthe
11:01 KSA
Grandstream Networks UCM6200 Series SQL Injection Vulnerability — Grandstream UCM6200 series is vulnerable to an unauthenticated remote SQL injection via crafted HTTP request. Exploitation can allow for code execution as root.
CVE-2020-5735
Amcrest Cameras and NVR Stack-based Buffer Overflow Vulnerability — Amcrest cameras and NVR contain a stack-based buffer
11:01 KSA
Amcrest Cameras and NVR Stack-based Buffer Overflow Vulnerability — Amcrest cameras and NVR contain a stack-based buffer overflow vulnerability through port 37777 that allows an unauthenticated, remote attacker to crash the device and possibly execute code.
CVE-2020-5741
Plex Media Server Remote Code Execution Vulnerability — Plex Media Server contains a remote code execution vulnerability
11:01 KSA
Plex Media Server Remote Code Execution Vulnerability — Plex Media Server contains a remote code execution vulnerability that allows an attacker with access to the server administrator's Plex account to upload a malicious file via the Camera Upload feature and have the media serv…
CVE-2020-5847
Unraid Remote Code Execution Vulnerability — Unraid contains a vulnerability due to the insecure use of the extract PHP
11:01 KSA
Unraid Remote Code Execution Vulnerability — Unraid contains a vulnerability due to the insecure use of the extract PHP function that can be abused to execute remote code as root. This CVE is chainable with CVE-2020-5849 for initial access.
CVE-2020-5849
Unraid Authentication Bypass Vulnerability — Unraid contains an authentication bypass vulnerability that allows attacker
11:01 KSA
Unraid Authentication Bypass Vulnerability — Unraid contains an authentication bypass vulnerability that allows attackers to gain access to the administrative interface. This CVE is chainable with CVE-2020-5847 for remote code execution.
CVE-2020-5902
F5 BIG-IP Traffic Management User Interface (TMUI) Remote Code Execution Vulnerability — F5 BIG-IP Traffic Management Us
11:01 KSA
F5 BIG-IP Traffic Management User Interface (TMUI) Remote Code Execution Vulnerability — F5 BIG-IP Traffic Management User Interface (TMUI) contains a remote code execution vulnerability in undisclosed pages.
CVE-2020-6207
SAP Solution Manager Missing Authentication for Critical Function Vulnerability — SAP Solution Manager User Experience M
11:01 KSA
SAP Solution Manager Missing Authentication for Critical Function Vulnerability — SAP Solution Manager User Experience Monitoring contains a missing authentication for critical function vulnerability which results in complete compromise of all SMDAgents connected to the Solution …
SAP NetWeaver Missing Authentication for Critical Function Vulnerability — SAP NetWeaver Application Server Java Platforms contains a missing authentication for critical function vulnerability allowing unauthenticated access to execute configuration tasks and create administrativ…
CVE-2020-6418
Google Chromium V8 Type Confusion Vulnerability — Google Chromium V8 Engine contains a type confusion vulnerability allo
11:01 KSA
Google Chromium V8 Type Confusion Vulnerability — Google Chromium V8 Engine contains a type confusion vulnerability allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium…
CVE-2020-6572
Google Chrome Media Use-After-Free Vulnerability — Google Chrome Media contains a use-after-free vulnerability that allo
11:01 KSA
Google Chrome Media Use-After-Free Vulnerability — Google Chrome Media contains a use-after-free vulnerability that allows a remote attacker to execute code via a crafted HTML page.
CVE-2020-6819
Mozilla Firefox And Thunderbird Use-After-Free Vulnerability — Mozilla Firefox and Thunderbird contain a race condition
11:01 KSA
Mozilla Firefox And Thunderbird Use-After-Free Vulnerability — Mozilla Firefox and Thunderbird contain a race condition vulnerability when running the nsDocShell destructor under certain conditions. The race condition creates a use-after-free vulnerability, causing unspecified im…
CVE-2020-6820
Mozilla Firefox And Thunderbird Use-After-Free Vulnerability — Mozilla Firefox and Thunderbird contain a race condition
11:01 KSA
Mozilla Firefox And Thunderbird Use-After-Free Vulnerability — Mozilla Firefox and Thunderbird contain a race condition vulnerability when handling a ReadableStream under certain conditions. The race condition creates a use-after-free vulnerability, causing unspecified impacts.
CVE-2020-7247
OpenSMTPD Remote Code Execution Vulnerability — smtp_mailaddr in smtp_session.c in OpenSMTPD, as used in OpenBSD and oth
11:01 KSA
OpenSMTPD Remote Code Execution Vulnerability — smtp_mailaddr in smtp_session.c in OpenSMTPD, as used in OpenBSD and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session.
CVE-2020-7961
Liferay Portal Deserialization of Untrusted Data Vulnerability — Liferay Portal contains a deserialization of untrusted
11:01 KSA
Liferay Portal Deserialization of Untrusted Data Vulnerability — Liferay Portal contains a deserialization of untrusted data vulnerability that allows remote attackers to execute code via JSON web services.
CVE-2020-8193
Citrix ADC, Gateway, and SD-WAN WANOP Appliance Authorization Bypass Vulnerability — Citrix ADC, Citrix Gateway, and mul
11:01 KSA
Citrix ADC, Gateway, and SD-WAN WANOP Appliance Authorization Bypass Vulnerability — Citrix ADC, Citrix Gateway, and multiple Citrix SD-WAN WANOP appliance models contain an authorization bypass vulnerability that may allow unauthenticated access to certain URL endpoints. The att…
CVE-2020-8195
Citrix ADC, Gateway, and SD-WAN WANOP Appliance Information Disclosure Vulnerability — Citrix ADC, Citrix Gateway, and m
11:01 KSA
Citrix ADC, Gateway, and SD-WAN WANOP Appliance Information Disclosure Vulnerability — Citrix ADC, Citrix Gateway, and multiple Citrix SD-WAN WANOP appliance models contain an information disclosure vulnerability.
CVE-2020-8196
Citrix ADC, Gateway, and SD-WAN WANOP Appliance Information Disclosure Vulnerability — Citrix ADC, Citrix Gateway, and m
11:01 KSA
Citrix ADC, Gateway, and SD-WAN WANOP Appliance Information Disclosure Vulnerability — Citrix ADC, Citrix Gateway, and multiple Citrix SD-WAN WANOP appliance models contain an information disclosure vulnerability.
CVE-2020-8218
Pulse Connect Secure Code Injection Vulnerability — A code injection vulnerability exists in Pulse Connect Secure that a
11:01 KSA
Pulse Connect Secure Code Injection Vulnerability — A code injection vulnerability exists in Pulse Connect Secure that allows an attacker to crafted a URI to perform an arbitrary code execution via the admin web interface.
CVE-2020-8243
Ivanti Pulse Connect Secure Code Execution Vulnerability — Ivanti Pulse Connect Secure contains an unspecified vulnerabi
11:01 KSA
Ivanti Pulse Connect Secure Code Execution Vulnerability — Ivanti Pulse Connect Secure contains an unspecified vulnerability in the admin web interface that could allow an authenticated attacker to upload a custom template to perform code execution.
CVE-2020-8260
Ivanti Pulse Connect Secure Code Execution Vulnerability — Pulse Connect Secure contains an unspecified vulnerability th
11:01 KSA
Ivanti Pulse Connect Secure Code Execution Vulnerability — Pulse Connect Secure contains an unspecified vulnerability that allows an authenticated attacker to perform code execution using uncontrolled gzip extraction.
CVE-2020-8467
Trend Micro Apex One and OfficeScan Remote Code Execution Vulnerability — Trend Micro Apex One and OfficeScan contain an
11:01 KSA
Trend Micro Apex One and OfficeScan Remote Code Execution Vulnerability — Trend Micro Apex One and OfficeScan contain an unspecified vulnerability within a migration tool component that allows for remote code execution.
CVE-2020-8468
Trend Micro Multiple Products Content Validation Escape Vulnerability — Trend Micro Apex One, OfficeScan, and Worry-Free
11:01 KSA
Trend Micro Multiple Products Content Validation Escape Vulnerability — Trend Micro Apex One, OfficeScan, and Worry-Free Business Security agents contain a content validation escape vulnerability that could allow an attacker to manipulate certain agent client components.
CVE-2020-8515
Multiple DrayTek Vigor Routers Web Management Page Vulnerability — DrayTek Vigor3900, Vigor2960, and Vigor300B routers c
11:01 KSA
Multiple DrayTek Vigor Routers Web Management Page Vulnerability — DrayTek Vigor3900, Vigor2960, and Vigor300B routers contain an unspecified vulnerability that allows for remote code execution.
CVE-2020-8599
Trend Micro Apex One and OfficeScan Authentication Bypass Vulnerability — Trend Micro Apex One and OfficeScan server con
11:01 KSA
Trend Micro Apex One and OfficeScan Authentication Bypass Vulnerability — Trend Micro Apex One and OfficeScan server contain a vulnerable EXE file that could allow a remote attacker to write data to a path on affected installations and bypass root login.
CVE-2020-8644
PlaySMS Server-Side Template Injection Vulnerability — PlaySMS contains a server-side template injection vulnerability t
11:01 KSA
PlaySMS Server-Side Template Injection Vulnerability — PlaySMS contains a server-side template injection vulnerability that allows for remote code execution.
CVE-2020-8655
EyesOfNetwork Improper Privilege Management Vulnerability — EyesOfNetwork contains an improper privilege management vuln
11:01 KSA
EyesOfNetwork Improper Privilege Management Vulnerability — EyesOfNetwork contains an improper privilege management vulnerability that may allow a user to run commands as root via a crafted Nmap Scripting Engine (NSE) script to nmap7.
CVE-2020-8657
EyesOfNetwork Use of Hard-Coded Credentials Vulnerability — EyesOfNetwork contains a use of hard-coded credentials vulne
11:01 KSA
EyesOfNetwork Use of Hard-Coded Credentials Vulnerability — EyesOfNetwork contains a use of hard-coded credentials vulnerability, as it uses the same API key by default. Exploitation allows an attacker to calculate or guess the admin access token.
CVE-2020-8816
Pi-Hole AdminLTE Remote Code Execution Vulnerability — Pi-hole Web v4.3.2 (aka AdminLTE) allows Remote Code Execution by
11:01 KSA
Pi-Hole AdminLTE Remote Code Execution Vulnerability — Pi-hole Web v4.3.2 (aka AdminLTE) allows Remote Code Execution by privileged dashboard users via a crafted DHCP static lease.
CVE-2020-9054
Zyxel Multiple NAS Devices OS Command Injection Vulnerability — Multiple Zyxel network-attached storage (NAS) devices co
11:01 KSA
Zyxel Multiple NAS Devices OS Command Injection Vulnerability — Multiple Zyxel network-attached storage (NAS) devices contain a pre-authentication command injection vulnerability, which may allow a remote, unauthenticated attacker to execute arbitrary code.
CVE-2020-9377
D-Link DIR-610 Devices Remote Command Execution — D-Link DIR-610 devices allow remote code execution via the cmd paramet
11:01 KSA
D-Link DIR-610 Devices Remote Command Execution — D-Link DIR-610 devices allow remote code execution via the cmd parameter to command.php.
CVE-2020-9818
Apple iOS, iPadOS, and watchOS Out-of-Bounds Write Vulnerability — Apple iOS, iPadOS, and watchOS Mail contains an out-o
11:01 KSA
Apple iOS, iPadOS, and watchOS Out-of-Bounds Write Vulnerability — Apple iOS, iPadOS, and watchOS Mail contains an out-of-bounds write vulnerability which may allow memory modification or application termination when processing a maliciously crafted mail message.
CVE-2020-9819
Apple iOS, iPadOS, and watchOS Memory Corruption Vulnerability — Apple iOS, iPadOS, and watchOS Mail contains a memory c
11:01 KSA
Apple iOS, iPadOS, and watchOS Memory Corruption Vulnerability — Apple iOS, iPadOS, and watchOS Mail contains a memory corruption vulnerability that may allow heap corruption when processing a maliciously crafted mail message.
CVE-2020-9859
Apple Multiple Products Code Execution Vulnerability — Apple iOS, iPadOS, macOS, watchOS, and tvOS contain an unspecifie
11:01 KSA
Apple Multiple Products Code Execution Vulnerability — Apple iOS, iPadOS, macOS, watchOS, and tvOS contain an unspecified vulnerability that may allow an application to execute code with kernel privileges.
CVE-2020-9907
Apple Multiple Products Memory Corruption Vulnerability — Apple iOS, iPadOS, and tvOS contain a memory corruption vulner
11:01 KSA
Apple Multiple Products Memory Corruption Vulnerability — Apple iOS, iPadOS, and tvOS contain a memory corruption vulnerability that could allow an application to execute code with kernel privileges.
CVE-2020-9934
Apple iOS, iPadOS, and macOS Input Validation Vulnerability — Apple iOS, iPadOS, and macOS contain an unspecified vulner
11:01 KSA
Apple iOS, iPadOS, and macOS Input Validation Vulnerability — Apple iOS, iPadOS, and macOS contain an unspecified vulnerability involving input validation which can allow a local attacker to view sensitive user information.
CVE-2021-0920
Android Kernel Race Condition Vulnerability — Android kernel contains a race condition, which allows for a use-after-fre
11:01 KSA
Android Kernel Race Condition Vulnerability — Android kernel contains a race condition, which allows for a use-after-free vulnerability. Exploitation can allow for privilege escalation.
CVE-2021-1048
Android Kernel Use-After-Free Vulnerability — Android kernel contains a use-after-free vulnerability that allows for pri
11:01 KSA
Android Kernel Use-After-Free Vulnerability — Android kernel contains a use-after-free vulnerability that allows for privilege escalation.
CVE-2021-1497
Cisco HyperFlex HX Installer Virtual Machine Command Injection Vulnerability — Cisco HyperFlex HX Installer Virtual Mach
11:01 KSA
Cisco HyperFlex HX Installer Virtual Machine Command Injection Vulnerability — Cisco HyperFlex HX Installer Virtual Machine contains an insufficient input validation vulnerability which could allow an attacker to execute commands on an affected device as the root user.
CVE-2021-1498
Cisco HyperFlex HX Data Platform Command Injection Vulnerability — Cisco HyperFlex HX Installer Virtual Machine contains
11:01 KSA
Cisco HyperFlex HX Data Platform Command Injection Vulnerability — Cisco HyperFlex HX Installer Virtual Machine contains an insufficient input validation vulnerability which could allow an attacker to execute commands on an affected device as the tomcat8 user.
CVE-2021-1647
Microsoft Defender Remote Code Execution Vulnerability — Microsoft Defender contains an unspecified vulnerability that a
11:01 KSA
Microsoft Defender Remote Code Execution Vulnerability — Microsoft Defender contains an unspecified vulnerability that allows for remote code execution.
CVE-2021-1675
Microsoft Windows Print Spooler Remote Code Execution Vulnerability — Microsoft Windows Print Spooler contains an unspec
11:01 KSA
Microsoft Windows Print Spooler Remote Code Execution Vulnerability — Microsoft Windows Print Spooler contains an unspecified vulnerability that allows for remote code execution.
CVE-2021-1732
Microsoft Win32k Privilege Escalation Vulnerability — Microsoft Win32k contains an unspecified vulnerability that allows
11:01 KSA
Microsoft Win32k Privilege Escalation Vulnerability — Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation.
CVE-2021-1782
Apple Multiple Products Race Condition Vulnerability — Apple iOS, iPadOs, macOS, watchOS, and tvOS contain a race condit
11:01 KSA
Apple Multiple Products Race Condition Vulnerability — Apple iOS, iPadOs, macOS, watchOS, and tvOS contain a race condition vulnerability that may allow a malicious application to elevate privileges.
CVE-2021-1789
Apple Multiple Products Type Confusion Vulnerability — A type confusion issue affecting multiple Apple products allows p
11:01 KSA
Apple Multiple Products Type Confusion Vulnerability — A type confusion issue affecting multiple Apple products allows processing of maliciously crafted web content, leading to arbitrary code execution.
CVE-2021-1870
Apple iOS, iPadOS, and macOS WebKit Remote Code Execution Vulnerability — Apple iOS, iPadOS, and macOS WebKit contain an
11:01 KSA
Apple iOS, iPadOS, and macOS WebKit Remote Code Execution Vulnerability — Apple iOS, iPadOS, and macOS WebKit contain an unspecified logic vulnerability that allows a remote attacker to execute code. This vulnerability could impact HTML parsers that use WebKit, including but not …
CVE-2021-1871
Apple iOS, iPadOS, and macOS WebKit Remote Code Execution Vulnerability — Apple iOS, iPadOS, and macOS WebKit contain an
11:01 KSA
Apple iOS, iPadOS, and macOS WebKit Remote Code Execution Vulnerability — Apple iOS, iPadOS, and macOS WebKit contain an unspecified logic vulnerability that allows a remote attacker to execute code. This vulnerability could impact HTML parsers that use WebKit, including but not …
CVE-2021-1879
Apple iOS, iPadOS, and watchOS WebKit Cross-Site Scripting (XSS) Vulnerability — Apple iOS, iPadOS, and watchOS WebKit c
11:01 KSA
Apple iOS, iPadOS, and watchOS WebKit Cross-Site Scripting (XSS) Vulnerability — Apple iOS, iPadOS, and watchOS WebKit contain an unspecified vulnerability that allows for universal cross-site scripting (XSS) when processing maliciously crafted web content. This vulnerability cou…
CVE-2021-1905
Qualcomm Multiple Chipsets Use-After-Free Vulnerability — Multiple Qualcomm Chipsets contain a use after free vulnerabil
11:01 KSA
Qualcomm Multiple Chipsets Use-After-Free Vulnerability — Multiple Qualcomm Chipsets contain a use after free vulnerability due to improper handling of memory mapping of multiple processes simultaneously.
CVE-2021-1906
Qualcomm Multiple Chipsets Detection of Error Condition Without Action Vulnerability — Multiple Qualcomm chipsets contai
11:01 KSA
Qualcomm Multiple Chipsets Detection of Error Condition Without Action Vulnerability — Multiple Qualcomm chipsets contain a detection of error condition without action vulnerability when improper handling of address deregistration on failure can lead to new GPU address allocation…
CVE-2021-20016
SonicWall SSLVPN SMA100 SQL Injection Vulnerability — SonicWall SSLVPN SMA100 contains a SQL injection vulnerability tha
11:01 KSA
SonicWall SSLVPN SMA100 SQL Injection Vulnerability — SonicWall SSLVPN SMA100 contains a SQL injection vulnerability that allows remote exploitation for credential access by an unauthenticated attacker.
CVE-2021-20021
SonicWall Email Security Improper Privilege Management Vulnerability — SonicWall Email Security contains an improper pri
11:01 KSA
SonicWall Email Security Improper Privilege Management Vulnerability — SonicWall Email Security contains an improper privilege management vulnerability that allows an attacker to create an administrative account by sending a crafted HTTP request to the remote host. This vulnerabi…
CVE-2021-20022
SonicWall Email Security Unrestricted Upload of File Vulnerability — SonicWall Email Security contains an unrestricted u
11:01 KSA
SonicWall Email Security Unrestricted Upload of File Vulnerability — SonicWall Email Security contains an unrestricted upload of file with dangerous type vulnerability that allows a post-authenticated attacker to upload a file to the remote host. This vulnerability has known usag…
CVE-2021-20023
SonicWall Email Security Path Traversal Vulnerability — SonicWall Email Security contains a path traversal vulnerability
11:01 KSA
SonicWall Email Security Path Traversal Vulnerability — SonicWall Email Security contains a path traversal vulnerability that allows a post-authenticated attacker to read files on the remote host. This vulnerability has known usage in a SonicWall Email Security exploit chain alon…
CVE-2021-20028
SonicWall Secure Remote Access (SRA) SQL Injection Vulnerability — SonicWall Secure Remote Access (SRA) products contain
11:01 KSA
SonicWall Secure Remote Access (SRA) SQL Injection Vulnerability — SonicWall Secure Remote Access (SRA) products contain an improper neutralization of a SQL Command leading to SQL injection.
CVE-2021-20035
SonicWall SMA100 Appliances OS Command Injection Vulnerability — SonicWall SMA100 appliances contain an OS command injec
11:01 KSA
SonicWall SMA100 Appliances OS Command Injection Vulnerability — SonicWall SMA100 appliances contain an OS command injection vulnerability in the management interface that allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' user, which could potentia…
CVE-2021-20038
SonicWall SMA 100 Appliances Stack-Based Buffer Overflow Vulnerability — SonicWall SMA 100 devies are vulnerable to an u
11:01 KSA
SonicWall SMA 100 Appliances Stack-Based Buffer Overflow Vulnerability — SonicWall SMA 100 devies are vulnerable to an unauthenticated stack-based buffer overflow vulnerability where exploitation can result in code execution.
CVE-2021-20090
Arcadyan Buffalo Firmware Path Traversal Vulnerability — Arcadyan Buffalo firmware contains a path traversal vulnerabili
11:01 KSA
Arcadyan Buffalo Firmware Path Traversal Vulnerability — Arcadyan Buffalo firmware contains a path traversal vulnerability that could allow unauthenticated, remote attackers to bypass authentication and access sensitive information. This vulnerability affects multiple routers acr…
CVE-2021-20123
Draytek VigorConnect Path Traversal Vulnerability — Draytek VigorConnect contains a path traversal vulnerability in the
11:01 KSA
Draytek VigorConnect Path Traversal Vulnerability — Draytek VigorConnect contains a path traversal vulnerability in the DownloadFileServlet endpoint. An unauthenticated attacker could leverage this vulnerability to download arbitrary files from the underlying operating system wi…
CVE-2021-20124
Draytek VigorConnect Path Traversal Vulnerability — Draytek VigorConnect contains a path traversal vulnerability in the
11:01 KSA
Draytek VigorConnect Path Traversal Vulnerability — Draytek VigorConnect contains a path traversal vulnerability in the file download functionality of the WebServlet endpoint. An unauthenticated attacker could leverage this vulnerability to download arbitrary files from the unde…
CVE-2021-21017
Adobe Acrobat and Reader Heap-based Buffer Overflow Vulnerability — Acrobat Acrobat and Reader contain a heap-based buff
11:01 KSA
Adobe Acrobat and Reader Heap-based Buffer Overflow Vulnerability — Acrobat Acrobat and Reader contain a heap-based buffer overflow vulnerability that could allow an unauthenticated attacker to achieve code execution in the context of the current user.
CVE-2021-21148
Google Chromium V8 Heap Buffer Overflow Vulnerability — Google Chromium V8 Engine contains a heap buffer overflow vulner
11:01 KSA
Google Chromium V8 Heap Buffer Overflow Vulnerability — Google Chromium V8 Engine contains a heap buffer overflow vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that…
CVE-2021-21166
Google Chromium Race Condition Vulnerability — Google Chromium contains a race condition vulnerability that allows a rem
11:01 KSA
Google Chromium Race Condition Vulnerability — Google Chromium contains a race condition vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, includ…
CVE-2021-21193
Google Chromium Blink Use-After-Free Vulnerability — Google Chromium Blink contains a use-after-free vulnerability that
11:01 KSA
Google Chromium Blink Use-After-Free Vulnerability — Google Chromium Blink contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chro…
CVE-2021-21206
Google Chromium Blink Use-After-Free Vulnerability — Google Chromium Blink contains a use-after-free vulnerability that
11:01 KSA
Google Chromium Blink Use-After-Free Vulnerability — Google Chromium Blink contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chro…
CVE-2021-21220
Google Chromium V8 Improper Input Validation Vulnerability — Google Chromium V8 Engine contains an improper input valida
11:01 KSA
Google Chromium V8 Improper Input Validation Vulnerability — Google Chromium V8 Engine contains an improper input validation vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web br…
CVE-2021-21224
Google Chromium V8 Type Confusion Vulnerability — Google Chromium V8 Engine contains a type confusion vulnerability that
11:01 KSA
Google Chromium V8 Type Confusion Vulnerability — Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to execute code inside a sandbox via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium,…
CVE-2023-25717
Multiple Ruckus Wireless Products CSRF and RCE Vulnerability — Ruckus Wireless Access Point (AP) software contains an un
11:01 KSA
Multiple Ruckus Wireless Products CSRF and RCE Vulnerability — Ruckus Wireless Access Point (AP) software contains an unspecified vulnerability in the web services component. If the web services component is enabled on the AP, an attacker can perform cross-site request forgery (C…
CVE-2023-26083
Arm Mali GPU Kernel Driver Information Disclosure Vulnerability — Arm Mali GPU Kernel Driver contains an information dis
11:01 KSA
Arm Mali GPU Kernel Driver Information Disclosure Vulnerability — Arm Mali GPU Kernel Driver contains an information disclosure vulnerability that allows a non-privileged user to make valid GPU processing operations that expose sensitive kernel metadata.
CVE-2023-26359
Critical Adobe ColdFusion Deserialization RCE Vulnerability (CVE-2023-26359)
11:01 KSA
Adobe ColdFusion Deserialization of Untrusted Data Vulnerability — Adobe ColdFusion contains a deserialization of untrusted data vulnerability that could result in code execution in the context of the current user.
CVE-2023-26360
Adobe ColdFusion Deserialization of Untrusted Data Vulnerability — Adobe ColdFusion contains a deserialization of untrus
11:01 KSA
Adobe ColdFusion Deserialization of Untrusted Data Vulnerability — Adobe ColdFusion contains a deserialization of untrusted data vulnerability that allows for remote code execution.
Adobe Acrobat and Reader Out-of-Bounds Write Vulnerability — Adobe Acrobat and Reader contains an out-of-bounds write vulnerability that allows for code execution.
CVE-2023-27350
PaperCut MF/NG Improper Access Control Vulnerability — PaperCut MF/NG contains an improper access control vulnerability
11:01 KSA
PaperCut MF/NG Improper Access Control Vulnerability — PaperCut MF/NG contains an improper access control vulnerability within the SetupCompleted class that allows authentication bypass and code execution in the context of system.
CVE-2023-27524
Apache Superset Insecure Default Initialization of Resource Vulnerability — Apache Superset contains an insecure default
11:01 KSA
Apache Superset Insecure Default Initialization of Resource Vulnerability — Apache Superset contains an insecure default initialization of a resource vulnerability that allows an attacker to authenticate and access unauthorized resources on installations that have not altered the…
CVE-2023-27532
Veeam Backup & Replication Cloud Connect Missing Authentication for Critical Function Vulnerability — Veeam Backup & Rep
11:01 KSA
Veeam Backup & Replication Cloud Connect Missing Authentication for Critical Function Vulnerability — Veeam Backup & Replication Cloud Connect component contains a missing authentication for critical function vulnerability that allows an unauthenticated user operating within the …
CVE-2023-27992
Zyxel Multiple NAS Devices Command Injection Vulnerability — Multiple Zyxel network-attached storage (NAS) devices conta
11:01 KSA
Zyxel Multiple NAS Devices Command Injection Vulnerability — Multiple Zyxel network-attached storage (NAS) devices contain a pre-authentication command injection vulnerability that could allow an unauthenticated attacker to execute commands remotely via a crafted HTTP request.
CVE-2023-27997
Fortinet FortiOS and FortiProxy SSL-VPN Heap-Based Buffer Overflow Vulnerability — Fortinet FortiOS and FortiProxy SSL-V
11:01 KSA
Fortinet FortiOS and FortiProxy SSL-VPN Heap-Based Buffer Overflow Vulnerability — Fortinet FortiOS and FortiProxy SSL-VPN contain a heap-based buffer overflow vulnerability which can allow an unauthenticated, remote attacker to execute code or commands via specifically crafted r…
CVE-2023-28204
Apple Multiple Products WebKit Out-of-Bounds Read Vulnerability — Apple iOS, iPadOS, macOS, tvOS, watchOS, and Safari We
11:01 KSA
Apple Multiple Products WebKit Out-of-Bounds Read Vulnerability — Apple iOS, iPadOS, macOS, tvOS, watchOS, and Safari WebKit contain an out-of-bounds read vulnerability that may disclose sensitive information when processing maliciously crafted web content. This vulnerability cou…
CVE-2023-28252
Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability — Microsoft Windows Common Log
11:01 KSA
Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability — Microsoft Windows Common Log File System (CLFS) driver contains an unspecified vulnerability that allows for privilege escalation.
CVE-2023-28432
MinIO Information Disclosure Vulnerability — MinIO contains a vulnerability in a cluster deployment where MinIO returns
11:01 KSA
MinIO Information Disclosure Vulnerability — MinIO contains a vulnerability in a cluster deployment where MinIO returns all environment variables, which allows for information disclosure.
CVE-2023-28434
MinIO Security Feature Bypass Vulnerability — MinIO contains a security feature bypass vulnerability that allows an atta
11:01 KSA
MinIO Security Feature Bypass Vulnerability — MinIO contains a security feature bypass vulnerability that allows an attacker to use crafted requests to bypass metadata bucket name checking and put an object into any bucket while processing `PostPolicyBucket` to conduct privilege …
CVE-2023-28461
Array Networks AG and vxAG ArrayOS Missing Authentication for Critical Function Vulnerability — Array Networks AG and vx
11:01 KSA
Array Networks AG and vxAG ArrayOS Missing Authentication for Critical Function Vulnerability — Array Networks AG and vxAG ArrayOS contain a missing authentication for critical function vulnerability that allows an attacker to read local files and execute code on the SSL VPN gate…
CVE-2023-2868
Barracuda Networks ESG Appliance Improper Input Validation Vulnerability — Barracuda Email Security Gateway (ESG) applia
11:01 KSA
Barracuda Networks ESG Appliance Improper Input Validation Vulnerability — Barracuda Email Security Gateway (ESG) appliance contains an improper input validation vulnerability of a user-supplied .tar file, leading to remote command injection.
CVE-2023-28771
Zyxel Multiple Firewalls OS Command Injection Vulnerability — Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG firewalls allow f
11:01 KSA
Zyxel Multiple Firewalls OS Command Injection Vulnerability — Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG firewalls allow for improper error message handling which could allow an unauthenticated attacker to execute OS commands remotely by sending crafted packets to an affected devic…
CVE-2023-29300
Adobe ColdFusion Deserialization of Untrusted Data Vulnerability — Adobe ColdFusion contains a deserialization of untrus
11:01 KSA
Adobe ColdFusion Deserialization of Untrusted Data Vulnerability — Adobe ColdFusion contains a deserialization of untrusted data vulnerability that allows for code execution.
CVE-2023-29336
Microsoft Win32K Privilege Escalation Vulnerability — Microsoft Win32k contains an unspecified vulnerability that allows
11:01 KSA
Microsoft Win32K Privilege Escalation Vulnerability — Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation up to SYSTEM privileges.
CVE-2023-29357
Microsoft SharePoint Server Privilege Escalation Vulnerability — Microsoft SharePoint Server contains an unspecified vul
11:01 KSA
Microsoft SharePoint Server Privilege Escalation Vulnerability — Microsoft SharePoint Server contains an unspecified vulnerability that allows an unauthenticated attacker, who has gained access to spoofed JWT authentication tokens, to use them for executing a network attack. This…
CVE-2023-29360
Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability — Microsoft Streaming Service contains an untrus
11:01 KSA
Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability — Microsoft Streaming Service contains an untrusted pointer dereference vulnerability that allows for privilege escalation, enabling a local attacker to gain SYSTEM privileges.
CVE-2023-29492
Novi Survey Insecure Deserialization Vulnerability — Novi Survey contains an insecure deserialization vulnerability that
11:01 KSA
Novi Survey Insecure Deserialization Vulnerability — Novi Survey contains an insecure deserialization vulnerability that allows remote attackers to execute code on the server in the context of the service account.
CVE-2023-29552
Service Location Protocol (SLP) Denial-of-Service Vulnerability — The Service Location Protocol (SLP) contains a denial-
11:01 KSA
Service Location Protocol (SLP) Denial-of-Service Vulnerability — The Service Location Protocol (SLP) contains a denial-of-service (DoS) vulnerability that could allow an unauthenticated, remote attacker to register services and use spoofed UDP traffic to conduct a denial-of-serv…
CVE-2023-3079
Google Chromium V8 Type Confusion Vulnerability — Google Chromium V8 Engine contains a type confusion vulnerability that
11:01 KSA
Google Chromium V8 Type Confusion Vulnerability — Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chr…
Qlik Sense HTTP Tunneling Vulnerability — Qlik Sense contains an HTTP tunneling vulnerability that allows an attacker to escalate privileges and execute HTTP requests on the backend server hosting the software.
Qlik Sense Path Traversal Vulnerability — Qlik Sense contains a path traversal vulnerability that allows a remote, unauthenticated attacker to create an anonymous session by sending maliciously crafted HTTP requests. This anonymous session could allow the attacker to send further…
Apple iOS and iPadOS Use-After-Free Vulnerability — Apple iOS and iPadOS contain a use-after-free vulnerability. An app may be able to execute arbitrary code with kernel privileges.
Apple Multiple Products WebKit Code Execution Vulnerability — Apple iOS, iPadOS, macOS, and Safari WebKit contain an unspecified vulnerability that leads to code execution when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKi…
Arm Mali GPU Kernel Driver Use-After-Free Vulnerability — Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that allows a local, non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.
JetBrains TeamCity Authentication Bypass Vulnerability — JetBrains TeamCity contains an authentication bypass vulnerability that allows for remote code execution on TeamCity Server.
Apple iOS and iPadOS Kernel Privilege Escalation Vulnerability — Apple iOS and iPadOS contain an unspecified vulnerability that allows for local privilege escalation.
Apple Multiple Products WebKit Out-of-Bounds Read Vulnerability — Apple iOS, iPadOS, macOS, and Safari WebKit contain an out-of-bounds read vulnerability that may disclose sensitive information when processing maliciously crafted web content. This vulnerability could impact HTML …
Apple Multiple Products WebKit Memory Corruption Vulnerability — Apple iOS, iPadOS, macOS, and Safari WebKit contain a memory corruption vulnerability that leads to code execution when processing maliciously crafted web content. This vulnerability could impact HTML parsers that u…
Apple Multiple products Use-After-Free Vulnerability — Apple macOS, iOS, iPadOS, and Safari 16.6 contain a use-after-free vulnerability due to the processing of maliciously crafted web content that may lead to memory corruption.
NextGen Healthcare Mirth Connect Deserialization of Untrusted Data Vulnerability — NextGen Healthcare Mirth Connect contains a deserialization of untrusted data vulnerability that allows for unauthenticated remote code execution via a specially crafted request.
Roundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability — Roundcube Webmail contains a persistent cross-site scripting (XSS) vulnerability that can lead to information disclosure via malicious link references in plain/text messages.
SonicWall SMA100 Appliances OS Command Injection Vulnerability — SonicWall SMA100 appliances contain an OS command injection vulnerability in the SSL-VPN management interface that allows a remote, authenticated attacker with administrative privilege to inject arbitrary commands a…
HTTP/2 Rapid Reset Attack Vulnerability — HTTP/2 contains a rapid reset vulnerability that allows for a distributed denial-of-service attack (DDoS).
CVE-2023-45249
Acronis Cyber Infrastructure Unauthenticated Remote Command Execution via Default Credentials
11:01 KSA
Acronis Cyber Infrastructure (ACI) Insecure Default Password Vulnerability — Acronis Cyber Infrastructure (ACI) allows an unauthenticated user to execute commands remotely due to the use of default passwords.
North Grid Proself Improper Restriction of XML External Entity (XXE) Reference Vulnerability — North Grid Proself Enterprise/Standard, Gateway, and Mail Sanitize contain an improper restriction of XML External Entity (XXE) reference vulnerability, which could allow a remote, unau…
Apache ActiveMQ Deserialization of Untrusted Data Vulnerability — Apache ActiveMQ contains a deserialization of untrusted data vulnerability that may allow a remote attacker with network access to a broker to run shell commands by manipulating serialized class types in the OpenWi…
F5 BIG-IP Configuration Utility Authentication Bypass Vulnerability — F5 BIG-IP Configuration utility contains an authentication bypass using an alternate path or channel vulnerability due to undisclosed requests that may allow an unauthenticated attacker with network access to t…
F5 BIG-IP Configuration Utility SQL Injection Vulnerability — F5 BIG-IP Configuration utility contains an SQL injection vulnerability that may allow an authenticated attacker with network access through the BIG-IP management port and/or self IP addresses to execute system command…
Ivanti Connect Secure and Policy Secure Authentication Bypass Vulnerability — Ivanti Connect Secure (ICS, formerly known as Pulse Connect Secure) and Ivanti Policy Secure gateways contain an authentication bypass vulnerability in the web component that allows an attacker to acces…
SysAid Server Path Traversal Vulnerability — SysAid Server (on-premises version) contains a path traversal vulnerability that leads to code execution.
QNAP VioStor NVR OS Command Injection Vulnerability — QNAP VioStar NVR contains an OS command injection vulnerability that allows authenticated users to execute commands via a network.
Google Chromium V8 Type Confusion Vulnerability — Google Chromium V8 contains a type confusion vulnerability that allows a remote attacker to execute code via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limi…
CVE-2023-48365
Qlik Sense HTTP Tunneling Privilege Escalation Vulnerability (CVE-2023-48365)
11:01 KSA
Qlik Sense HTTP Tunneling Vulnerability — Qlik Sense contains an HTTP tunneling vulnerability that allows an attacker to escalate privileges and execute HTTP requests on the backend server hosting the software.
CVE-2023-4863
Google Chromium WebP Heap-Based Buffer Overflow Vulnerability (CVE-2023-4863)
11:01 KSA
Google Chromium WebP Heap-Based Buffer Overflow Vulnerability — Google Chromium WebP contains a heap-based buffer overflow vulnerability that allows a remote attacker to perform an out-of-bounds memory write via a crafted HTML page. This vulnerability can affect applications that…
Fortinet FortiClient EMS SQL Injection Vulnerability — Fortinet FortiClient EMS contains a SQL injection vulnerability that allows an unauthenticated attacker to execute commands as SYSTEM via specifically crafted requests.
ownCloud graphapi Information Disclosure Vulnerability — ownCloud graphapi contains an information disclosure vulnerability that can reveal sensitive data stored in phpinfo() via GetPhpInfo.php, including administrative credentials.
GNU C Library Buffer Overflow Vulnerability — GNU C Library's dynamic loader ld.so contains a buffer overflow vulnerability when processing the GLIBC_TUNABLES environment variable, allowing a local attacker to execute code with elevated privileges.
Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability — Citrix NetScaler ADC and NetScaler Gateway contain a buffer overflow vulnerability that allows for sensitive information disclosure when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Pr…
FXC AE1021, AE1021PE OS Command Injection Vulnerability — FXC AE1021 and AE1021PE contain an OS command injection vulnerability that allows authenticated users to execute commands via a network.
CVE-2023-50224
TP-Link TL-WR841N Authentication Bypass via Spoofing - Credential Disclosure
11:01 KSA
TP-Link TL-WR841N Authentication Bypass by Spoofing Vulnerability — TP-Link TL-WR841N contains an authentication bypass by spoofing vulnerability within the httpd service, which listens on TCP port 80 by default, leading to the disclose of stored credentials. The impacted product…
Digiever DS-2105 Pro Missing Authorization Vulnerability — Digiever DS-2105 Pro contains a missing authorization vulnerability which could allow for command injection via time_tzsetup.cgi.
Google Chromium libvpx Heap Buffer Overflow Vulnerability — Google Chromium libvpx contains a heap buffer overflow vulnerability in vp8 encoding that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could impact web brows…
Roundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability — Roundcube Webmail contains a persistent cross-site scripting (XSS) vulnerability that allows a remote attacker to run malicious JavaScript code.
Google Skia Integer Overflow Vulnerability — Google Chromium Skia contains an integer overflow vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a malicious file. This vulnerability affects Google Ch…
CVE-2023-6448
Unitronics Vision PLC/HMI Insecure Default Password Remote Command Execution
11:01 KSA
Unitronics Vision PLC and HMI Insecure Default Password Vulnerability — Unitronics Vision Series PLCs and HMIs ship with an insecure default password, which if left unchanged, can allow attackers to execute remote commands.
Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability — Citrix NetScaler ADC and NetScaler Gateway contain a code injection vulnerability that allows for authenticated remote code execution on the management interface with access to NSIP, CLIP, or SNIP.
Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability — Citrix NetScaler ADC and NetScaler Gateway contain a buffer overflow vulnerability that allows for a denial-of-service when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA v…
Google Chromium WebRTC Heap Buffer Overflow Vulnerability — Google Chromium WebRTC, an open-source project providing web browsers with real-time communication, contains a heap buffer overflow vulnerability that allows a remote attacker to potentially exploit heap corruption via a…
GitLab Community and Enterprise Editions Improper Access Control Vulnerability — GitLab Community and Enterprise Editions contain an improper access control vulnerability. This allows an attacker to trigger password reset emails to be sent to an unverified email address to ultima…
Spreadsheet::ParseExcel Remote Code Execution Vulnerability — Spreadsheet::ParseExcel contains a remote code execution vulnerability due to passing unvalidated input from a file into a string-type “eval”. Specifically, the issue stems from the evaluation of Number format strings …
Palo Alto Networks PAN-OS Management Interface Authentication Bypass Vulnerability — Palo Alto Networks PAN-OS contains an authentication bypass vulnerability in the web-based management interface for several PAN-OS products, including firewalls and VPN concentrators.
Google Chromium V8 Out-of-Bounds Memory Access Vulnerability — Google Chromium V8 Engine contains an out-of-bounds memory access vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple we…
D-Link DIR-859 Router Path Traversal Vulnerability — D-Link DIR-859 routers contain a path traversal vulnerability in the file /hedwig.cgi of the component HTTP POST Request Handler. Manipulation of the argument service with the input ../../../../htdocs/webinc/getcfg/DHCPS6.BRID…
Linux Kernel Use-After-Free Vulnerability — Linux kernel contains a use-after-free vulnerability in the netfilter: nf_tables component that allows an attacker to achieve local privilege escalation.
GeoVision Devices OS Command Injection Vulnerability — Multiple GeoVision devices contain an OS command injection vulnerability that allows a remote, unauthenticated attacker to inject and execute arbitrary system commands. The impacted products could be end-of-life (EoL) and/or …
Android Pixel Privilege Escalation Vulnerability — Android Pixel contains an unspecified vulnerability in the firmware that allows for privilege escalation.
Palo Alto Networks PAN-OS Malicious DNS Packet Vulnerability — Palo Alto Networks PAN-OS contains a vulnerability in parsing and logging malicious DNS packets in the DNS Security feature that, when exploited, allows an unauthenticated attacker to remotely reboot the firewall. Rep…
OSGeo GeoServer GeoTools Eval Injection Vulnerability — OSGeo GeoServer GeoTools contains an improper neutralization of directives in dynamically evaluated code vulnerability due to unsafely evaluating property names as XPath expressions. This allows unauthenticated attackers to …
Android Kernel Remote Code Execution Vulnerability — Android contains an unspecified vulnerability in the kernel that allows for remote code execution. This vulnerability resides in Linux Kernel and could impact other products, including but not limited to Android OS.
Broadcom VMware vCenter Server Out-of-bounds Write Vulnerability — Broadcom VMware vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol. This could allow a malicious actor with network access to vCenter Server to send specially…
VMware ESXi Authentication Bypass Vulnerability — VMware ESXi contains an authentication bypass vulnerability. A malicious actor with sufficient Active Directory (AD) permissions can gain full access to an ESXi host that was previously configured to use AD for user management by …
RoundCube Webmail Cross-Site Scripting (XSS) Vulnerability — RoundCube Webmail contains a cross-site scripting (XSS) vulnerability in the handling of SVG animate attributes that allows a remote attacker to run malicious JavaScript code.
CVE-2024-38014
Microsoft Windows Installer Privilege Escalation Vulnerability CVE-2024-38014
11:01 KSA
Microsoft Windows Installer Improper Privilege Management Vulnerability — Microsoft Windows Installer contains an improper privilege management vulnerability that could allow an attacker to gain SYSTEM privileges.
CVE-2024-38080
Microsoft Windows Hyper-V Privilege Escalation Vulnerability CVE-2024-38080
11:01 KSA
Microsoft Windows Hyper-V Privilege Escalation Vulnerability — Microsoft Windows Hyper-V contains a privilege escalation vulnerability that allows a local attacker with user permissions to gain SYSTEM privileges.
Microsoft SharePoint Deserialization Vulnerability — Microsoft SharePoint contains a deserialization vulnerability that allows for remote code execution.
Microsoft Windows Kernel Privilege Escalation Vulnerability — Microsoft Windows Kernel contains an unspecified vulnerability that allows for privilege escalation, enabling a local attacker to gain SYSTEM privileges. Successful exploitation of this vulnerability requires an attack…
Microsoft Windows Power Dependency Coordinator Privilege Escalation Vulnerability — Microsoft Windows Power Dependency Coordinator contains an unspecified vulnerability that allows for privilege escalation, enabling a local attacker to obtain SYSTEM privileges.
Microsoft Windows MSHTML Platform Spoofing Vulnerability — Microsoft Windows MSHTML Platform contains a spoofing vulnerability that has a high impact to confidentiality, integrity, and availability.
Microsoft Windows Scripting Engine Memory Corruption Vulnerability — Microsoft Windows Scripting Engine contains a memory corruption vulnerability that allows unauthenticated attacker to initiate remote code execution via a specially crafted URL.
⚠️ Threat Intelligence
23 threats
rss:BleepingComputer
—
00:05 KSA
<strong>Vercel confirms breach as hackers claim to be selling stolen data</strong>
Cloud development platform Vercel has confirmed a security breach after threat actors claimed to have accessed its systems and are attempting to sell the stolen data. This incident affects organiz…
rss:BleepingComputer
—
23:00 KSA
<strong>Apple account change alerts abused to send phishing emails</strong>
Attackers are exploiting Apple's legitimate account change notification system to distribute phishing emails impersonating iPhone purchase confirmations. By leveraging Apple's official email servers, the…
rss:Mandiant Blog
—
21:58 KSA
<strong>Expanding your Bigtable architecture with change streams</strong>
This article covers Google Bigtable's change streams feature that enhances event-based architectures and offline processing for organizations managing large volumes of transactional and analytical data. Th…
rss:Mandiant Blog
—
21:58 KSA
<strong>How to optimize your existing queries with search indexes</strong>
This article discusses Google BigQuery's search indexes and SEARCH function launched in October 2022, which enable efficient searching of unstructured and semi-structured data using SQL. While focused on …
rss:Mandiant Blog
—
20:56 KSA
<strong>Applying Generative AI to product design with BigQuery DataFrames</strong>
This article explores the application of generative AI and BigQuery DataFrames to streamline product naming processes, particularly in the pharmaceutical industry. It addresses the complexity of e…
rss:Mandiant Blog
—
20:56 KSA
<strong>Introducing the unified Chronicle Security Operations platform</strong>
Google Cloud introduces Chronicle, a unified security operations platform designed to address the challenges of understaffed security teams. The platform leverages AI-powered innovation and frontline…
rss:Mandiant Blog
—
20:56 KSA
<strong>Managed service egress with Private Service Connect interfaces</strong>
This article discusses Google Cloud's Private Service Connect as a solution for secure private access to managed services over VPCs. It addresses the infrastructure and connectivity requirements for …
rss:BleepingComputer
—
20:56 KSA
<strong>NIST to stop rating non-priority flaws due to volume increase</strong>
NIST will discontinue assigning severity scores to lower-priority vulnerabilities due to overwhelming submission volumes and resource constraints. This change impacts vulnerability management practice…
rss:Mandiant Blog
—
19:54 KSA
<strong>Built with BigQuery: Bloomreach Engagement brings power to marketers with advanced personalization</strong>
Bloomreach Engagement platform utilizes BigQuery for advanced customer personalization and marketing analytics. The solution enables companies to deliver personali…
rss:Mandiant Blog
—
19:54 KSA
<strong>Use a GitHub repository to manage pipelines across Data Fusion instances/namespaces</strong>
Article discusses managing complex data pipelines across multiple environments using GitHub repositories. Addresses challenges in pipeline version control, collaboration, and dep…
rss:Mandiant Blog
—
19:54 KSA
<strong>Providing scalable, reliable video distribution with Google Kubernetes Engine at AbemaTV</strong>
AbemaTV, a free video streaming service, leverages Google Cloud infrastructure for video distribution APIs and peripheral services. The article discusses scalable cloud arch…
rss:Mandiant Blog
—
18:50 KSA
<strong>Expanding our infrastructure around the world</strong>
Google is expanding its global cloud infrastructure to serve businesses and government organizations with hyperscale cloud solutions. Enhanced infrastructure deployment worldwide strengthens cloud security posture an…
rss:Mandiant Blog
—
18:50 KSA
<strong>Meet the inaugural cohort of the Google for Startups Accelerator: AI First in Europe</strong>
Google for Startups Accelerator: AI First program supports emerging companies developing AI-driven solutions across Europe. The 10-week program aims to help startups scale their…
rss:Mandiant Blog
—
18:50 KSA
<strong>Why EigenPhi built its Web3 blockchain analysis platform on Google Cloud</strong>
EigenPhi developed a Web3 blockchain analysis platform leveraging Google Cloud infrastructure to address the increasing complexity of blockchain technology. The platform aims to enhance tra…
rss:Mandiant Blog
—
17:48 KSA
<strong>AlloyDB for PostgreSQL under the hood: adaptive autovacuum</strong>
This article describes AlloyDB's database optimization features including adaptive autovacuum and automatic memory management. It focuses on performance tuning and operational efficiency rather than cybe…
rss:Mandiant Blog
—
17:48 KSA
<strong>Confidential VMs on Intel CPUs: Your new intelligent defense</strong>
Google Cloud introduces Confidential VMs with Intel TDX technology for protecting sensitive workloads in the cloud. This security feature enables organizations to process confidential data without code…
rss:Mandiant Blog
—
17:48 KSA
<strong>Education turns out for Google Cloud Next ‘23</strong>
This article covers Google Cloud Next conference attendance by educators and IT professionals. It focuses on cloud technology demonstrations and success stories rather than cybersecurity threats.
Source: https://clo…
rss:Mandiant Blog
—
16:36 KSA
<strong>Cloud Load Balancing enhancements improve security and distributed application support</strong>
Google Cloud announces enhancements to Cloud Load Balancing including mTLS support for client-side authentication during TLS negotiation. These security improvements enhance p…
rss:Mandiant Blog
—
16:36 KSA
<strong>Manage infrastructure with Workload Identity Federation and Terraform Cloud</strong>
Article discusses managing infrastructure as code (IaC) using Terraform Cloud with Workload Identity Federation for enterprises. Addresses access control complexity and security manageme…
rss:Mandiant Blog
—
16:36 KSA
<strong>Conrad Electronics: Simplifying and accelerating development with Apigee and GKE</strong>
Conrad Electronics discusses implementation of Apigee and Google Kubernetes Engine (GKE) to streamline development processes. The article focuses on technical infrastructure improve…
rss:Mandiant Blog
—
15:33 KSA
<strong>What’s new with Google Cloud</strong>
This article provides an overview of Google Cloud's latest updates and announcements. It serves as a general informational resource rather than addressing specific cybersecurity threats or vulnerabilities.
Source: https://cloud.goog…
rss:Mandiant Blog
—
15:33 KSA
<strong>Five generative AI use cases for the financial services industry</strong>
This article explores generative AI applications in financial services and its potential to transform banking and investment operations. It does not focus on specific cybersecurity threats or vulne…
rss:Mandiant Blog
—
15:33 KSA
<strong>Five use cases for manufacturers to get started with generative AI</strong>
This article discusses generative AI applications in manufacturing to improve productivity and reduce costs. While focused on business transformation, it does not address specific cybersecurity t…
📰 Cybersecurity News
0 articles
No news aggregated today yet
This digest is updated automatically every day — Last updated: Sunday, April 19, 2026
CVE Archive ·
Threats ·
News