Friday, November 21, 2025
Follow on LinkedIn
Home Vulnerability News

Vulnerability News

Random
Palo Alto Firewall Vulnerabilities

Critical Palo Alto Firewall Vulnerabilities Let Hackers Bypass Secure Boot & Exploit Firmware

Balaji N -
A recent cybersecurity report has identified critical vulnerabilities in Palo Alto Networks firewall devices that could enable attackers to bypass Secure Boot protections, exploit...
Read more
DrayOS Routers Vulnerability

DrayOS Routers Vulnerability Let Attackers Execute Malicious Code Remotely

Guru Baran -
A critical vulnerability has been discovered in DrayTek's DrayOS routers, which could allow unauthenticated remote attackers to execute malicious code. The flaw, tracked as...
Read more
PoC Exploit Released for CrushFTP 0-day Vulnerability

PoC Exploit Released for CrushFTP 0-day Vulnerability (CVE-2025-54309)

Florence Nightingale -
A weaponized proof-of-concept exploit has been publicly released targeting CVE-2025-54309, a severe authentication bypass vulnerability affecting CrushFTP file transfer servers.  The flaw enables remote attackers...
Read more

1000+ Unique IPs Attacking Ivanti Connect Secure Systems to Exploit Vulnerabilities

Guru Baran -
A significant increase in suspicious scanning activity targeting Ivanti Connect Secure (ICS) and Ivanti Pulse Secure (IPS) VPN systems, signaling a potential coordinated reconnaissance...
Read more
Cybersecurity Newsletter September

Cybersecurity Newsletter Weekly – Chrome 0-Day, 22.2 Tbps DDOS Attack, Kali Linux Release, Cisco...

Guru Baran -
This week in cybersecurity was marked by a relentless pace of critical disclosures and unprecedented attack volumes, underscoring the escalating challenges facing defenders. At the...
Read more
Curl Vulnerability Attackers Sensitive Information

Curl Vulnerability Let Attackers Access Sensitive Information

Guru Baran -
A critical security flaw has been discovered in the popular data transfer tool Curl, potentially allowing attackers to access sensitive information. The vulnerability, identified as...
Read more
Ivanti Endpoint Manager Vulnerabilities

Ivanti Endpoint Manager Vulnerabilities Let Attackers Write Arbitrary Files to Disk

Guru Baran -
Ivanti has rolled out security updates for its Endpoint Manager product, addressing three high-severity vulnerabilities that could let authenticated local attackers write arbitrary files...
Read more
Samsung 0-Day Exploited Via WhatsApp

Hackers Hijack Samsung Galaxy Phones via 0-Day Exploit Using a Single WhatsApp Image

Guru Baran -
A sophisticated spyware operation targeting Samsung Galaxy devices, dubbed LANDFALL, which exploited a zero-day vulnerability to infiltrate phones through seemingly innocuous images shared on...
Read more
HPE Remote Support Tool

HPE Remote Support Tool Vulnerability Let Attackers Execute Arbitrary code – PoC Released

Guru Baran -
A newly disclosed vulnerability in Hewlett Packard Enterprise's (HPE) Insight Remote Support tool enables unauthenticated attackers to execute arbitrary code on vulnerable systems, with...
Read more
Kibana SSRF and XSS Vulnerabilities

Multiple Kibana Vulnerabilities Enables SSRF and XSS Attacks

Abinaya -
Elastic Security has disclosed critical vulnerabilities affecting Kibana that could enable attackers to execute Server-Side Request Forgery (SSRF) and Cross-Site Scripting (XSS) attacks against...
Read more
123...93Page 1 of 93
CSN

Top 10

Follow us

Cyber Security News is a Dedicated News Platform For Cyber News, Cyber Attack News, Hacking News & Vulnerability Analysis.

Cybersecurity News

Latest news

Critical ASUSTOR Vulnerability Let Attackers Execute Malicious Code with Elevated Privileges

Vulnerability News
A critical security vulnerability has been discovered in ASUSTOR...

SonicOS SSLVPN Vulnerability Let Attackers Crash the Firewall Remotely

Vulnerability News
SonicWall has disclosed a critical stack-based buffer overflow vulnerability...

Authorities Sanctioned Russia-based Bulletproof Hosting Provider for Supporting Ransomware Operations

Cyber Security News
The U.S. Department of the Treasury, Australia, and the...

CISO Corner

How to Conduct a Secure Code Review – Tools and Techniques

CISO Advisory
Secure code review represents a critical security practice that...

Understanding OWASP Top 10 – Mitigating Web Application Vulnerabilities

CISO Advisory
The OWASP Top 10 2021 represents the most critical...

Securing Virtualized Environments – Hypervisor Security Best Practices

CISO Advisory
Hypervisor security represents a critical foundation for protecting virtualized...

© Copyright 2025 - Cyber Security News