Critical Vulnerability in Progress Flowmon
Progress has released security updates to address a critical vulnerability affecting their Progress Flowmon product.
Alerts
Timely information about security issues, vulnerabilities, and exploits
Filter By:
Active Exploitation of Vulnerabilities in Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) Products
Cisco has disclosed three vulnerabilities (CVE-2024-20353, CVE-2024-20359 and CVE-2024-20358) in their Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) products. These vulnerabilities are reportedly being actively exploited.
Cryptographic Vulnerability in PuTTY
The PuTTy Project has released a security update to address a cryptographic vulnerability (CVE-2024-31497) in PuTTY.
Critical Vulnerabilities in Ivanti Avalanche
Ivanti has released security updates addressing two critical vulnerabilities (CVE-2024-24996 and CVE-2024-29204) in their Avalanche mobile device management (MDM) products.
Active Exploitation of Critical Vulnerability in Palo Alto Networks PAN-OS Software
Palo Alto Networks has disclosed a critical vulnerability affecting their PAN-OS software used in its GlobalProtect gateways. The vulnerability has a Common Vulnerability Scoring System (CVSSv3) score of 10.0 and is reportedly being actively exploited.
Active Exploitation of Vulnerabilities in D-Link Products
D-Link has disclosed two vulnerabilities (CVE-2024-3272 & CVE-2024-3273) in their network-attached storage (NAS) devices.
Critical Vulnerability in Rust Standard Library
Rust has released an update to address a critical vulnerability (CVE-2024-24576) affecting the Rust standard library.
Apr 2024 Monthly Patch
Microsoft has released security patches to address multiple vulnerabilities in their software and products.
Multiple Vulnerabilities in HTTP/2 Protocol
A security researcher has disclosed a new Denial-of-Service (DoS) attack method which exploits HTTP/2 protocols affected by a class of vulnerabilities, codenamed HTTP/2 CONTINUATION Flood.
