Toute l'actualité de la Cybersécurité


TunnelVision - CVE-2024-3661

2024-10-18 01:39:24
Fortinet is aware of the recent publication of the TunnelVision vulnerability (CVE-2024-3661).The research [1] identified a technique to bypass the use of protected VPN tunnels when clients connect via...

Lire la suite »

Veeam Backup and Replication Deserialization Vulnerability (CVE-2024-40711)

2024-10-18 01:25:02
What is the Vulnerability?CVE-2024-40711 is a critical unauthenticated Remote Code Execution (RCE) vulnerability in Veeam Backup & Replication software. Threat actors could execute arbitrary code on a...

Lire la suite »

Progress Telerik Report Server Authentication Bypass Vulnerability

2024-10-18 01:11:36
What is the Vulnerability?Progress Telerik Report Server contains an authorization bypass by spoofing vulnerability, allowing an attacker to bypass authentication and create rogue administrator users....

Lire la suite »

Ivanti Virtual Traffic Manager (vTM ) Authentication Bypass Vulnerability (CVE-2024-7593)

2024-10-18 01:10:14
What is the Vulnerability?Ivanti Virtual Traffic Manager (vTM), a software application used to manage and optimize the delivery of applications across networks is affected by an authentication bypass...

Lire la suite »

Versa Director Dangerous File Type Upload Vulnerability (CVE-2024-39717)

2024-10-18 01:08:44
What is the Vulnerability?The Versa Director GUI contains a zero-day dangerous file type upload vulnerability (CVE-2024-39717) that allows attackers to upload potentially malicious files, granting them...

Lire la suite »

Two Sudanese nationals indicted for operating the Anonymous Sudan group

2024-10-18 00:01:04
The DoJ charged Anonymous Sudan members and disrupted their DDoS infrastructure, halting its cyber operations. The US Justice Department charged two Sudanese brothers (Ahmed Salah Yousif Omer, 22, and...

Lire la suite »