Snapshot
Oct. 26, 2024 - Nov. 1, 2024
CISA Known Exploited Vulnerabilities |
||||
|---|---|---|---|---|
| No issues added to the CISA Known Exploited Vulnerability list. | ||||
Newswires |
||||
|
Critical Authentication Vulnerabilities Threaten Smart Factory Equipment
Factory automation software developed by Mitsubishi Electric and Rockwell Automation is under threat from critical security flaws that could potentially enable remote code execution (RCE), authentication bypass, product manipulation, and denial-of-service (DoS) attacks. |
Nov. 1, 2024 |
|||
|
Critical Zero-Day Vulnerabilities Found in PTZ Cameras: Hackers on the Prowl
Hackers are capitalizing on two zero-day vulnerabilities found in PTZOptics pan-tilt-zoom (PTZ) live streaming cameras. |
Oct. 31, 2024 |
|||
|
High-Severity Flaw in LiteSpeed Cache WordPress Plugin Allows Admin Access to Hackers
The LiteSpeed Cache WordPress plugin, employed by over six million websites to enhance speed and user experience, has patched a serious privilege escalation vulnerability in its latest release. |
Oct. 31, 2024 |
|||
|
Enhanced LightSpy Spyware Targets iPhones with Advanced Surveillance and Destructive Features
Cybersecurity experts have uncovered an enhanced version of an Apple iOS spyware known as LightSpy. |
Oct. 31, 2024 |
|||
|
Google Addresses Critical Vulnerability in Chrome Browser
Google has recently rectified a critical vulnerability in its Chrome browser. |
Oct. 30, 2024 |
|||
|
Persistent Windows Vulnerability Could Leak User Credentials: Zero-Day Exploit Allows NTLM Hash Theft
The vulnerability in all versions of Windows, from Windows 7 to Windows 11, could allow attackers to steal NTLM authentication hashes from users. |
Oct. 29, 2024 |
|||
|
Unofficial Patches Released for New Windows Themes Zero-Day Exploit
The discovery of a new zero-day vulnerability in Windows Themes has led to the release of free unofficial patches. |
Oct. 29, 2024 |
|||
|
Multiple Security Flaws Uncovered in Open-Source AI and ML Models
Researchers have discovered more than thirty-six security vulnerabilities in several open-source artificial intelligence (AI) and machine learning (ML) models. |
Oct. 29, 2024 |
|||
|
ChatGPT Vulnerable to Hex Code Manipulation: Mozilla Report
According to a recent report by Mozilla, OpenAI's advanced language learning model (LLM), GPT-4o, can be manipulated by bad actors using a hex code-based prompt-injection technique. |
Oct. 28, 2024 |
|||
|
Fog and Akira Ransomware Operations Exploit SonicWall VPNs for Network Infiltration
Ransomware groups Fog and Akira are reportedly exploiting SonicWall VPNs to infiltrate corporate networks. |
Oct. 27, 2024 |
|||
|
Cisco Adds Security Features to Thwart VPN Brute-Force Attacks
Cisco has rolled out new security features to its Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) to combat brute-force and password spray attacks. |
Oct. 26, 2024 |
|||
Vulnerabilities In The News |
||||
| CVE | Summary | Severity | Vendor | Risk Context |
| CVE-2024-38812 (4) | The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. | CRITICAL | Vmware |
Actively Exploited Remote Code Execution Public Exploits Available |
| CVE-2024-10386 (3) | CVE-2024-10386 IMPACT An authentication vulnerability exists in the affected product. | CRITICAL | Risk Context N/A | |
| CVE-2024-47575 (3) | A missing authentication for critical function in FortiManager 7.6.0, FortiManager 7.4.0 through 7.4.4, FortiManager 7.2.0 th... | CRITICAL | Fortinet |
CISA Known Exploited Actively Exploited Remote Code Execution Public Exploits Available |
| CVE-2024-50550 (4) | Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Privilege Escalation.This issue... | HIGH |
Actively Exploited Remote Code Execution Public Exploits Available |
|
| CVE-2024-10387 (3) | CVE-2024-10387 IMPACT A Denial-of-Service vulnerability exists in the affected product. | HIGH | Risk Context N/A | |
| CVE-2024-38094 (3) | Microsoft SharePoint Remote Code Execution Vulnerability | HIGH | Microsoft |
CISA Known Exploited Actively Exploited Remote Code Execution |
| CVE-2024-38030 (5) | Windows Themes Spoofing Vulnerability | MEDIUM | Microsoft | Risk Context N/A |
| CVE-2024-21320 (5) | Windows Themes Spoofing Vulnerability | MEDIUM | Microsoft |
Public Exploits Available |
| CVE-2024-20481 (4) | A vulnerability in the Remote Access VPN service of Cisco Adaptive Security Appliance Software and Cisco Firepower Threat D... | MEDIUM | Cisco |
CISA Known Exploited Actively Exploited Remote Code Execution |
CISA Known Exploited Vulnerabilities
CISA added 0 vulnerabilities to the known exploited vulnerabilities list.
In The News
Vulnerabilities receiving the most attention in traditional news media.
CVE-2024-38812 |
|
CRITICAL CVSS 9.80 EPSS Score 0.09 EPSS Percentile 40.76 |
|
Actively Exploited Remote Code Execution Public Exploits Available |
|
Published: Sept. 17, 2024 |
|
The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafted network packet potentially leading to remote code execution. |
|
Vendor Impacted: Vmware |
|
Product Impacted: Vcenter Server |
|
Quotes
|
|
Headlines
|
| Back to top ↑ |
CVE-2024-10386 |
|
CRITICAL CVSS 9.80 EPSS Score 0.04 EPSS Percentile 9.90 |
|
Risk Context N/A |
|
Published: Oct. 25, 2024 |
|
CVE-2024-10386 IMPACT An authentication vulnerability exists in the affected product. The vulnerability could allow a threat actor with network access to send crafted messages to the device, potentially resulting in database manipulation. |
|
Headlines |
| Back to top ↑ |
CVE-2024-47575 |
|
CRITICAL CVSS 9.80 EPSS Score 5.18 EPSS Percentile 93.20 |
|
CISA Known Exploited Actively Exploited Remote Code Execution Public Exploits Available |
|
Published: Oct. 23, 2024 |
|
A missing authentication for critical function in FortiManager 7.6.0, FortiManager 7.4.0 through 7.4.4, FortiManager 7.2.0 through 7.2.7, FortiManager 7.0.0 through 7.0.12, FortiManager 6.4.0 through 6.4.14, FortiManager 6.2.0 through 6.2.12, Fortinet FortiManager Cloud 7.4.1 through 7.4.4, FortiManager Cloud 7.2.1 through 7.2.7, FortiManager Cloud 7.0.1 through 7.0.13, FortiManager Cloud 6.4.1 through 6.4.7 allows attacker to execute arbitrary code or commands via specially crafted requests. |
|
Vendor Impacted: Fortinet |
|
Products Impacted: Fortimanager, Fortimanager Cloud |
|
Quotes
|
|
Headlines |
| Back to top ↑ |
CVE-2024-50550 |
|
HIGH CVSS 8.10 EPSS Score 0.04 EPSS Percentile 9.90 |
|
Actively Exploited Remote Code Execution Public Exploits Available |
|
Published: Oct. 29, 2024 |
|
Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Privilege Escalation.This issue affects LiteSpeed Cache: from n/a through 6.5.1. |
|
Quotes
|
|
Headlines
|
| Back to top ↑ |
CVE-2024-10387 |
|
HIGH CVSS 7.50 EPSS Score 0.04 EPSS Percentile 9.90 |
|
Risk Context N/A |
|
Published: Oct. 25, 2024 |
|
CVE-2024-10387 IMPACT A Denial-of-Service vulnerability exists in the affected product. The vulnerability could allow a threat actor with network access to send crafted messages to the device, potentially resulting in Denial-of-Service. |
|
Headlines |
| Back to top ↑ |
CVE-2024-38094 |
|
HIGH CVSS 7.20 EPSS Score 3.49 EPSS Percentile 91.76 |
|
CISA Known Exploited Actively Exploited Remote Code Execution |
|
Published: July 9, 2024 |
|
Microsoft SharePoint Remote Code Execution Vulnerability |
|
Vendor Impacted: Microsoft |
|
Products Impacted: Sharepoint Server, Sharepoint |
|
Quotes
|
|
Headlines |
| Back to top ↑ |
CVE-2024-38030 |
|
MEDIUM CVSS 6.50 EPSS Score 0.45 EPSS Percentile 75.56 |
|
Risk Context N/A |
|
Published: July 9, 2024 |
|
Windows Themes Spoofing Vulnerability |
|
Vendor Impacted: Microsoft |
|
Products Impacted: Windows 11 21h2, Windows 10 21h2, Windows 10 1507, Windows 10 1607, Windows 10 22h2, Windows Server 2016, Windows 10 1809, Windows 11 22h2, Windows Server 2012, Windows 11 23h2, Windows Server 2019, Windows Server 2022 |
|
Quotes
|
|
Headlines
|
| Back to top ↑ |
CVE-2024-21320 |
|
MEDIUM CVSS 6.50 EPSS Score 0.17 EPSS Percentile 54.56 |
|
Public Exploits Available |
|
Published: Jan. 9, 2024 |
|
Windows Themes Spoofing Vulnerability |
|
Vendor Impacted: Microsoft |
|
Products Impacted: Windows 11 21h2, Windows 10 21h2, Windows 10 1507, Windows 10 1607, Windows 10 22h2, Windows Server 2016, Windows 10 1809, Windows 11 22h2, Windows Server 2012, Windows 11 23h2, Windows Server 2019, Windows Server 2022 |
|
Quotes
|
|
Headlines
|
| Back to top ↑ |
CVE-2024-20481 |
|
MEDIUM CVSS 5.80 EPSS Score 0.23 EPSS Percentile 61.28 |
|
CISA Known Exploited Actively Exploited Remote Code Execution |
|
Published: Oct. 23, 2024 |
|
A vulnerability in the Remote Access VPN (RAVPN) service of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) of the RAVPN service. This vulnerability is due to resource exhaustion. An attacker could exploit this vulnerability by sending a large number of VPN authentication requests to an affected device. A successful exploit could allow the attacker to exhaust resources, resulting in a DoS of the RAVPN service on the affected device. Depending on the impact of the attack, a reload of the device may be required to restore the RAVPN service. Services that are not related to VPN are not affected. Cisco Talos discussed these attacks in the blog post Large-scale brute-force activity targeting VPNs, SSH services with commonly used login credentials. |
|
Vendor Impacted: Cisco |
|
Products Impacted: Adaptive Security Appliance Software, Adaptive Security Appliance (Asa) And Firepower Threat Defense (Ftd), Firepower Threat Defense Software |
|
Quotes
|
|
Headlines
|
| Back to top ↑ |
Accelerate Security Teams
Schedule a free consultation with a vulnerability expert to discuss your use cases and to see a demo.
