SecurityVulnerability.io

Collecting, Enriching,
and Displaying
Cyber Security Vulnerabilities

Trending
Vulnerabilities

If it's trending, then it's probably important. Patch quicker!

Stack-Based Buffer Overflow in Ivanti Connect Secure and Policy Secure

CVE-2025-0282
IvantiConnect Secure💰👾🟡9CRITICAL

Remote Arbitrary Code Execution Vulnerability in libSaped.so Prior to SMR Dec-2024 Release 1

CVE-2024-49415
SamsungSamsung Devices8.1HIGH

Mitel NuPoint Unified Messaging (NPM) Vulnerability: Path Traversal Attack

CVE-2024-41713
MitelMicollab👾🟣9.1CRITICAL

Remote Code Execution Vulnerability in Aviatrix Controller by Aviatrix

CVE-2024-50603
AviatrixController💰👾🟡10CRITICAL

Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

CVE-2024-49113
MicrosoftWindows 10 V...👾7.5HIGH

Authentication Bypass Vulnerability in NETGEAR DGN1000 Router

CVE-2024-12847
NETGEAR

Trending Cyber News

Read about it, before you get ransomware!

favicon imageGizmodo

Ukranian Hackers Managed to Nearly Destroy Russian Internet Provider

The regional Russian provider confirmed the attack on social media, saying it caused a "complete failure" in its infrastructure.

favicon imageBleepingComputer

Telegram hands over data on thousands of users to US law enforcement

Telegram reveals that the communications platform has fulfilled 900 U.S. government requests, sharing the phone number or IP address information of 2,253 users with law enforcement.

favicon imageWIRED

Secret Phone Surveillance Tech Was Likely Deployed at 2024 DNC

Data WIRED collected during the 2024 Democratic National Convention strongly suggests the use of a cell-site simulator, a controversial spy device that intercepts sensitive data from every phone in its range.

favicon imageThe Record from Recorded Future News

Ivanti warns hackers are exploiting new vulnerability

The company released an advisory and a corresponding blog about two bugs — CVE-2025-0282 and CVE-2025-0283 — and warned that some customers have already seen CVE-2025-0282 exploited in their environments.

favicon imageCSO Online

Ivanti warns critical RCE flaw in Connect Secure exploited as zero-day

The software maker announced that a stack-based buffer overflow flaw in its VPN appliance has been exploited in the wild. Ivanti Policy Secure and Ivanti Neurons for ZTA gateways are also impacted.

favicon imageInvesting News Network

Cybersecurity Stocks: 10 Biggest Companies

We profile the 10 largest publicly traded cybersecurity companies by market cap, including Microsoft, Broadcom, Cisco Systems and IBM.

Ivanti Flaw CVE-2025-0282 Actively Exploited, Impacts Connect Secure and Policy Secure

Ivanti's CVE-2025-0282 flaw, exploited by China-linked actors, enables remote code execution. CISA demands urgent patching by January 15, 2025.

favicon imageTechTarget

Critical Ivanti Connect Secure zero-day flaw under attack | TechTarget

Ivanti said Wednesday that threat actors have exploited stack-based buffer overflow vulnerability CVE-2025-0282 in Ivanti Connect Secure.

favicon imageCyber Magazine

Top 10: Cybersecurity Companies to Watch

From quantum-resistant encryption to AI-powered threat detection, we highlight the cybersecurity companies revolutionising enterprise defence strategies

favicon imageForbes

Surprise Google Chrome 131 Update For Windows, Mac, Linux, Android

Google has got 2025 off to a surprise start with an emergency security update for all Chrome browser users—update now.