SecurityVulnerability.io
Collecting, Enriching,
and Displaying
Cyber Security Vulnerabilities
Trending
Vulnerabilities
If it's trending, then it's probably important. Patch quicker!
Remote Code Execution Vulnerability in Windows Lightweight Directory Access Protocol
CVE-2024-49112
MicrosoftWindows 10 V...👾🟡9.8CRITICAL
Vulnerability in Nuclei Vulnerability Scanner Affecting Signature Verification
CVE-2024-43405
Projectdi...Nuclei7.8HIGH
Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability
CVE-2024-49113
MicrosoftWindows 10 V...7.5HIGH
Unauthenticated Injection of HID Messages via Bluetooth HID Hosts in BlueZ
CVE-2023-45866
BlueZAndroid👾🟡6.3MEDIUM
Apple Addresses Integer Overflow Vulnerability in watchOS, Other Products
CVE-2023-32434
ApplemacOS💰👾7.8HIGH
Profile Configuration Exposure in OpenVPN Connect
CVE-2024-8474
OpenvpnOpenvpn Connect
Trending Cyber News
Read about it, before you get ransomware!
CNNChina-backed hackers breached US Treasury workstations | CNN Business
The US Treasury Department notified lawmakers on Monday that a China state-sponsored actor infiltrated Treasury workstations in what officials are describing as a “major incident.”
GizmodoApple Agrees to $95 Million Settlement in Siri Eavesdropping Lawsuit
The company's virtual assistant allegedly recorded plaintiffs who hadn't said "hey Siri" while they were in their bedrooms and speaking with their doctors.
MashableVolkswagen leak exposed location of 800,000 electric car drivers for months
A data leak at a Volkswagen subsidiary has exposed location and other data of 800,000 EV owners for months.
Bad Tenable plugin updates take down Nessus agents worldwide
Tenable says customers must manually upgrade their software to revive Nessus vulnerability scanner agents taken offline on December 31st due to buggy differential plugin updates.
Ars TechnicaPasskey technology is elegant, but it’s most definitely not usable security
Just in time for holiday tech-support sessions, here’s what to know about passkeys.
Massive healthcare breaches prompt US cybersecurity rules overhaul
The U.S. Department of Health and Human Services (HHS) has proposed updates to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) to secure patients' health data following a surge in massive healthcare data leaks.
Corporate cover-up behind world-beating cyber security record in Mi...
Report ranking Gulf corporations ahead of US and EU counterparts for cybersecurity has sparked debate about the region's tendency for secrecy and state control.
US Soldier Arrested in Verizon, AT&T Hacks
Wagenius posted about hacking more than 15 telecom providers on the Telegram messaging service.
SalonChinese hackers behind "major incident" at US Treasury, documents stolen
The hackers circumvented a third-party cybersecurity service, according to Treasury officials
wiz.ioCVE-2024-43405A Signature Verification Bypass in Nuclei (CVE-2024-43405) | Wiz Blog
Wiz's engineering team discovered a high-severity signature verification bypass in Nuclei which could potentially lead to arbitrary code execution.
The Blog
Advice from the first line...