SecurityVulnerability.io

Collects, Enriches and Displays
Vulnerability Information,
for Humans 😄 and Computers 🤖

Trending
Vulnerabilities

If it's trending, then it's probably important. Patch quicker!

Authentication Bypass Vulnerability Affects Palo Alto Networks PAN-OS Software

CVE-2024-0012
Palo Alto NetworksCloud Ngfw👾🟣9.8CRITICAL

Fortinet FortiOS Vulnerability Allows Unauthorized Code Execution

CVE-2024-23113
FortinetFortiswitchmanager👾9.8CRITICAL

Specially crafted requests can execute arbitrary code or commands in FortiManager

CVE-2024-47575
FortinetFortimanager👾9.8CRITICAL

Authentication Bypass Vulnerability in Two-Factor Authentication

CVE-2024-10924
Really Simple Plu...Really Simple Security...👾9.8CRITICAL

Windows Under Attack: NTLM Hash Disclosure Spoofing Vulnerability Threatens User Credentials

CVE-2024-43451
MicrosoftWindows Server 2025👾6.5MEDIUM

Scoold API Injection Vulnerability

CVE-2024-50334
ErudikaScoold5.3MEDIUM

vCenter Server Heap Overflow Vulnerability

CVE-2024-38812
VMwareVmware Vcenter Server👾9.8CRITICAL

Trending Cyber News

Read about it, before you get ransomwared!

favicon imageArs Technica

Reports: China hacked Verizon and AT&T, may have accessed US wiretap systems

Chinese hackers were in networks of major ISPs “for months,” WSJ reports.

favicon imageBleepingComputer

Casio reports IT systems failure after weekend network breach

Japanese tech giant Casio has suffered a cyberattack after an unauthorized actor accessed its networks on October 5, causing system disruption that impacted some of its services.

favicon imageNewsweek

Hackers claim 'catastrophic' Internet Archive attack

Nonprofit behind the Wayback Machine has suffered a cyberattack by "pro-Palestinian hacktivists" affecting 31 million users.

favicon imageBleepingComputer

European govt air-gapped systems breached using custom malware

An APT hacking group known as GoldenJackal has successfully breached air-gapped government systems in Europe using two custom toolsets to steal sensitive data, like emails, encryption keys, images, archives, and documents.

favicon imagehttps://www.abc.net.au/news/julian-fell/13905936

Hackers take control of robot vacuums in multiple US cities and abuse owners

Ecovacs robot vacuums in multiple US cities were hacked in the space of a few days, with the attacker physically controlling them and yelling obscenities through their onboard speakers.

favicon imageThe Dysruption Hub

Cyber Attack Shuts Down Internet Across Nevada County Schools in California

On October 9, 2024, a cyber attack disrupted internet service across the Nevada Joint Union High School District (NJUHSD), affecting schools in Grass Valley, California, and surrounding areas. The breach, traced to an IP address in the United Kingdom, prompted district officials to disable internet ...

favicon imageThe Hacker News

High-Severity Flaw in PostgreSQL Allows Hackers to Exploit Environment Variables

Critical PostgreSQL flaw (CVE-2024-10979) patched; update now to prevent code execution and data breaches.

favicon imageSecurityWeek

Windows Zero-Day Exploited by Russia Triggered With File Drag-and-Drop, Delete Actions

Exploit for a Windows zero-day vulnerability (CVE-2024-43451) is executed by deleting files, drag-and-dropping them, or right clicking.

From the Blog

Advice from the first line...