Vulnerability

Vulnerability Management Tools play a significant role in detecting, analyzing, and patching vulnerabilities in web and network-based applications. The most common words used in security speak of vulnerability, risk, and threat. Risk is the...

Two critical vulnerabilities have been identified in Redis, the widely used in-memory database, potentially exposing millions of systems to denial-of-service (DoS) attacks and remote code execution (RCE). These flaws tracked as CVE-2024-51741 and CVE-2024-46981,...

A team of researchers has developed a novel approach called ART4SQLi that aims to enhance the efficiency of SQL injection (SQLi) vulnerability detection during penetration testing. This innovative method, described in a recent paper,...

Amazon Web Services (AWS) has introduced the same remote code execution (RCE) vulnerability three times over the last four years through its Neuron SDK, highlighting critical lapses in securing its Python package installation processes....

A critical 7-Zip zero-day exploit has been allegedly leaked by a hacker who is an individual operating under the alias "NSA_Employee39" on X, which allows attackers to execute arbitrary code on a victim’s machine...

In the ongoing battle against cyber threats, the Cybersecurity and Infrastructure Security Agency (CISA) has flagged a critical vulnerability in Palo Alto Networks' PAN-OS software that could leave enterprise firewalls susceptible to remote attacks....

A critical vulnerability (CVE-2024-13030) has been identified in the web management interface of the D-Link DIR-823G router with firmware version 1.0.2B05_20181207. The vulnerability allows attackers to exploit improper access control within the affected device,...

A new critical vulnerability (CVE-2024-52046) has been discovered in Apache MINA, potentially allowing attackers to execute remote code by exploiting insecure deserialization processes. This flaw affects multiple versions of the popular networking library, raising...

A newly disclosed high-impact vulnerability in Dell’s widely used SupportAssist software could allow attackers to escalate privileges on affected systems. Identified as CVE-2024-52535, the vulnerability has raised significant concern among cybersecurity experts and end-users, given...

IBM has reported vulnerabilities in its AIX operating system that could allow attackers to cause a Denial of Service (DoS) condition. The identified vulnerabilities affect specific kernel extensions, potentially disrupting normal system operations. Details of...