The Information Highway

The Information Highway

command injection vulnerability

Oracle WebLogic Server vulnerability

Wednesday, 05 June 2024

LBT Technology Group, LLC.

Security

Threat-Advisory-Banner3

Threat update

There has been active exploitation of a critical operating system (OS) command injection vulnerability, known as CVE-2017-3506, found in the Oracle WebLogic Server. The impact can be severe, ranging from financial loss to reputational damage.

Continue reading

396 Hits

0 Comments

Tags:

move block exploitation command injection vulnerability CVE -2017-3506

Critical vulnerability discovered in FortiSIEM

Monday, 03 June 2024

LBT Technology Group, LLC.

Security

Threat-Advisory-Banner3

Threat update

A new critical command injection vulnerability, CVE-2024-23108, was found in Fortinet's FortiSIEM solution. This vulnerability poses significant risks to organizations using the solution.

Continue reading

417 Hits

0 Comments

Tags:

move block command injection vulnerability CVE -2024-23108 FortiSIEM solution

22,500 Palo Alto firewalls "possibly vulnerable" to ongoing attacks

Friday, 19 April 2024

Security

palo-alto-networks

Approximately 22,500 exposed Palo Alto GlobalProtect firewall devices are likely vulnerable to the CVE-2024-3400 flaw, a critical command injection vulnerability that has been actively exploited in attacks since at least March 26, 2024.

Continue reading

525 Hits

0 Comments

Tags:

Palo Alto GlobalProtect firewall devices CVE -2024-3400 flaw command injection vulnerability March 26 2024. CVE -2024-3400

Palo Alto Networks warns of PAN-OS firewall zero-day used in attacks

Saturday, 13 April 2024

Security

Palo_Alto_Networks

Today, Palo Alto Networks warns that an unpatched critical command injection vulnerability in its PAN-OS firewall is being actively exploited in attacks.

Continue reading

719 Hits

0 Comments

Tags:

Palo Alto Networks command injection vulnerability PAN-OS firewall attacks exploitation

Blog Categories
Security 444 post(s) News 301 post(s) Technology 151 post(s) Compliance 27 post(s) Cloud Computing 10 post(s) Uncategorized 1 post(s) Business Continuity & Disaster Recovery 1 post(s)

You May Also Like

Ransomware gang targets Windows admins via PuTTy, WinSCP malvertising

A ransomware operation targets Windows system administrators by taking out Google ads to promote fak...

Global infostealer malware operation targets crypto users, gamers

A massive infostealer malware operation encompassing thirty campaigns targeting a broad spectrum of ...

Multiple NFT collections at risk by flaw in open-source library

A vulnerability in an open-source library that is common across the Web3 space impacts the security ...

Critical RCE vulnerability in ZCS

Threat update There is a critical remote code execution (RCE) vulnerability in Zimbra Collaboration ...

Capita warns customers they should assume data was stolen

Business process outsourcing firm Capita is warning customers to assume that their data was stolen i...

Blog Archive

Recent Comments
No comments yet.

Recent Blogs

02 November 2024

Microsoft SharePoint RCE bug exploited to breach corporate network

02 November 2024

Microsoft shares workaround for Outlook freezes when copying text

01 November 2024

Microsoft warns Azure Virtual Desktop users of black screen issues

01 November 2024

LA housing authority confirms breach claimed by Cactus ransomware

01 November 2024

OpenAI's new ChatGPT Search Chrome extension feels like a search hijacker

Tag Cloud

Top Breaches Of 2023

Customers Affected In T-Mobile Breach

Accounts Affected In MOVEit Breach

Customers Affected In MCNA Insurance Data Breach

Individuals Affected In PharMerica Data Breach

Users Affected In ChatGPT Major Data Breach

*Founder Shield End of Year 2023

© 2015 - 2024 All rights reserved. Designed & Developed by LBT Technology Group. | Privacy Policy | Terms & Use