November 20, 2024 at 12:18AM Oracle has alerted users about a high-severity vulnerability (CVE-2024-21287) in the Agile Product Lifecycle Management Framework, which is being actively exploited. This flaw allows unauthenticated access to sensitive files. Users are urged to apply patches immediately for protection, as details on the attackers remain unknown. **Meeting Takeaways – Nov 20, … Read more
November 4, 2024 at 06:41AM Okta identified a security flaw that could let attackers exploit usernames of 52 characters or more for AD/LDAP Delegated Authentication. This bug persisted for over three months before it was fixed on October 30. Okta advises customers to implement multi-factor authentication and check logs for suspicious activity since July 23. … Read more
October 3, 2024 at 05:25PM The Cybersecurity and Infrastructure Security Agency has added CVE-2024-29824, an SQL Injection vulnerability in Ivanti Endpoint Manager, to its Known Exploited Vulnerabilities Catalog. Rated critical with a CVSS score of 9.6, this flaw was exploited in the wild, prompting Ivanti to release security updates in May. Organizations are cautioned to … Read more
September 27, 2024 at 09:44AM Microsoft issued a warning about Storm-0501’s shift in tactics, targeting hybrid cloud environments. Despite being a relatively new group, Storm-0501 is prolific in carrying out ransomware attacks and has been linked to various ransomware affiliate programs. The group typically targets over-privileged accounts, and Microsoft has provided threat-hunting tips and indicators … Read more
September 26, 2024 at 05:52PM Nvidia’s Container Toolkit has a critical bug, CVE-2024-0132, rated 9.0/10 in severity, allowing an attacker to escape containers and take over the host. Nvidia issued a fix with versions v1.16.2 and v24.6.2. The vulnerability affects cloud and AI workloads, impacting 33% of cloud environments. Wiz’s security researchers found and disclosed … Read more
September 26, 2024 at 04:26PM HPE Aruba Networking addressed three critical vulnerabilities (CVE-2024-42505, CVE-2024-42506, and CVE-2024-42507) that could allow remote code execution by unauthenticated attackers on Aruba access points. The bugs impact devices running AOS-8 and AOS-10, prompting the recommendation for administrators to install updates to prevent potential attacks. Other Aruba products are not affected. … Read more
September 19, 2024 at 05:16PM Organizations using self-hosted GitLab instances with SAML-based authentication are advised to urgently update to the latest versions due to a severe bug (CVE-2024-45409) allowing attackers to bypass authentication checks and gain unauthorized access. GitLab has already updated managed instances but urges self-managed installations to patch immediately to mitigate the vulnerability. … Read more
September 13, 2024 at 09:33AM Apple has released a patch for its Vision Pro mixed reality headset after researchers demonstrated an attack method, known as GAZEploit, that could infer a user’s typed data by tracking their avatar’s eye movements. The vulnerability, tracked as CVE-2024-40865, has been patched with the release of visionOS 1.3, which suspends … Read more
September 12, 2024 at 07:47AM Cisco announced patches for eight vulnerabilities in the IOS XR network operating system, including fixes for six high-severity bugs. The most severe flaws allow privilege escalation and remote DoS attacks. Two high-severity flaws affecting the Routed Passive Optical Network (PON) controller software could be exploited for command injection. Cisco plans … Read more
September 12, 2024 at 07:39AM Microsoft warned users of a Windows Installer flaw, CVE-2024-38014, allowing for SYSTEM-level privilege escalation via an .msi file, exploited in the wild. Security firm SEC Consult disclosed the flaw and released msiscan, an open source tool to detect vulnerable files. Microsoft patched the vulnerability in its latest Patch Tuesday update … Read more