News

2024-069: Vulnerabilities in Citrix Netscaler

2024-068: Critical Vulnerabilities in GeoServer and GeoTools

2024-067: Multiple Vulnerabilities in Microsoft Products

2024-066: Critical Vulnerability in OpenSSH

On July 1, 2024, a new OpenSSH unauthenticated remote code execution (RCE) vulnerability dubbed regreSSHion was reported, affecting glibc-based Linux systems. This vulnerability, identified as CVE-2024-6387, allows remote attackers to execute arbitrary code as root due to a signal handler race condition in sshd. OpenSSH regreSSHion Vulnerability OpenSSH regreSSHion Vulnerability

2024-065: Critical Vulnerability in Juniper Networks Products

2024-064: Vulnerabilities in GitLab

2024-063: Critical Vulnerability in MOVEit Transfer

2024-062: Vulnerabilities in Chrome and Chromium based Browsers

2024-060: Vulnerabilities in VMware Products

2024-061: Vulnerabilities in Nextcloud Products

2024-059: Vulnerability in FortiOS

2024-058: Vulnerabilities in PHP

2024-057: Vulnerabilities in JetBrains Products

2024-056: Multiple Vulnerabilities in Microsoft Products

On June 11, 2024, Microsoft addressed 58 vulnerabilities in its June 2024 Patch Tuesday update, including one zero-day vulnerability. This Patch Tuesday also fixes one critical vulnerability, a Microsoft Message Queuing (MSMQ) Remote Code Execution vulnerability. Microsoft Patch Tuesday - June 2024 Microsoft Patch Tuesday - June 2024 Summary On

2024-055: SolarWinds High-Severity Vulnerabilities

2024-053: Zero-day Vulnerability in Check Point Security Gateways