Ferenc Fresz

2024-013: Zero-Day Vulnerability in Apple Products

2024-012: Vulnerability in Chrome

On January 16, 2024, Google has released an advisory addressing a zero-day vulnerability identified as "CVE-2024-0519", which affects the V8 engine in Google Chromium. This vulnerability allows for out-of-bounds memory access, potentially leading to heap corruption through a crafted HTML page. It has been reported that this vulnerability

2024-011: Vulnerability in Wordpress POST SMTP Mailer Plugin

2024-009: Critical and High Vulnerabilities in Atlassian Products

On January 16, 2024, Atlassian released a security advisory addressing a critical vulnerability in Confluence Data Center and Confluence Server that, if exploited, could lead to Remote Code Execution (RCE) on the affected server. The editor also released a security advisory addressing 28 high-severity vulnerabilities which have been fixed in

2024-010: Vulnerabilities in Netscaler ADS and Netscaler Gateway

2024-004: Critical Vulnerabilities in Ivanti Connect Secure

On January 10, 2024, Ivanti has released an advisory about two critical vulnerabilities in Ivanti Connect Secure (ICS) and Policy Secure gateways. These vulnerabilities, identified as CVE-2023-46805 and CVE-2024-21887, have been exploited in the wild and can allow remote attackers to execute arbitrary commands on targeted gateways. Technical Blog Advisory:

2024-008: Critical Vulnerabilities in Junos OS

2024-007: Critical Vulnerabilities in GitLab

On January 11, 2024, GitLab released a security advisory addressing several vulnerabilities, including critical ones that, if exploited, could lead to account takeover, or slack command execution. It is recommended upgrading as soon as possible. GitLab Security Advisory - January 2024 GitLab Security Advisory - January 2024 History: 12/01/