Vulnerabilities
Oracle has patched a high-severity information disclosure zero-day in Agile PLM that has been exploited in the wild.
Hi, what are you looking for?
SecurityWeek
All posts tagged "exploited"
Malware & Threats
Palo Alto Networks has released patches and CVEs for the firewall zero-days exploited in what the company calls Operation Lunar Peek.
Malware & Threats
A zero-day vulnerability affecting five discontinued GeoVision product models has been exploited by a botnet.
Vulnerabilities
Palo Alto Networks has released IoCs for the attacks exploiting a newly uncovered firewall zero-day vulnerability.
Vulnerabilities
CISA has added two more Palo Alto Networks Expedition flaws, CVE-2024-9463 and CVE-2024-9465, to its KEV catalog.
Vulnerabilities
Palo Alto Networks has confirmed that a zero-day is being exploited in attacks after investigating claims of a firewall remote code execution flaw.
Vulnerabilities
The exploit for a new zero-day vulnerability in Windows is executed by deleting files, drag-and-dropping them, or right clicking on them.
Vulnerabilities
Exploitation attempts targeting CVE-2024-10914, a recently disclosed ‘won’t fix’ vulnerability affecting outdated D-Link NAS devices.
Vulnerabilities
Veeam has released a hotfix for a high-severity authentication bypass vulnerability in Backup Enterprise Manager.
Vulnerabilities
CISA has added a Palo Alto Networks Expedition flaw tracked as CVE-2024-5910 to its Known Exploited Vulnerabilities Catalog.
Mobile & Wireless
Google warns of the limited, targeted exploitation of two vulnerabilities resolved with the latest Android security update.
Malware & Threats
CyberPanel vulnerabilities have been exploited to compromise thousands of instances as part of ransomware attacks.
Vulnerabilities
A Fortinet zero-day tracked as CVE-2024-47575 and named FortiJump has been exploited since at least June 2024.
Network Security
Cisco has released patches for multiple vulnerabilities in ASA, FMC, and FTD products, including an exploited flaw.
Vulnerabilities
CISA has added a recent Microsoft SharePoint Server remote code execution vulnerability to the KEV catalog.
Mobile & Wireless
A zero-day vulnerability in Samsung mobile processors has been abused as part of an exploit chain for arbitrary code execution.
Email Security
An XSS vulnerability in Roundcube Webmail has been targeted for code execution against a governmental organization in a CIS country.
Malware & Threats
The Adload macOS adware potentially exploits a privacy bypass vulnerability resolved in Sequoia 15 last month.
Vulnerabilities
CISA warns that a critical-severity hardcoded credentials vulnerability in SolarWinds Web Help Desk is exploited in attacks.
Vulnerabilities
Tor browser version 13.5.7 is rolling out with patches for an exploited zero-day vulnerability recently addressed in Firefox.
Vulnerabilities
WhatsApp told SecurityWeek that it linked the exploited FreeType vulnerability CVE-2025-27363 to a Paragon exploit.
Data Protection
Data Breaches
Artificial Intelligence
Network Security
Malware & Threats
Vulnerabilities
Malware & Threats
