Search cyberveille.decio.ch

Found 5 bookmarks

Custom sorting

Progress LoadMaster vulnerable to 10/10 severity RCE flaw

Progress Software has issued an emergency fix for a maximum (10/10) severity vulnerability impacting its LoadMaster and LoadMaster Multi-Tenant (MT) Hypervisor products that allows attackers to remotely execute commands on the device.

#bleepingcomputer #EN #2024 #LoadMaster #Progress-Software #RCE #Remote-Command-Execution #Vulnerability

·bleepingcomputer.com·Sep 8, 2024

Progress LoadMaster vulnerable to 10/10 severity RCE flaw

D-Link says it is not fixing four RCE flaws in DIR-846W routers

D-Link is warning that four remote code execution (RCE) flaws impacting all hardware and firmware versions of its DIR-846W router will not be fixed as the products are no longer supported.

#bleepingcomputer #EN #2024 #D-Link #End-of-Life #End-of-Service #Hardware #RCE #Remote-Code-Execution #Vulnerability #DIR-846W

·bleepingcomputer.com·Sep 7, 2024

D-Link says it is not fixing four RCE flaws in DIR-846W routers

Veeam warns of critical RCE flaw in Backup & Replication software

Veeam has released security updates for several of its products as part of a single September 2024 security bulletin that addresses 18 high and critical severity flaws in Veeam Backup & Replication, Service Provider Console, and One.

#bleepingcomputer #EN #2024 #RCE #Remote-Code-Execution #Veeam #Veeam-Backup-&-Replication #Veeam-ONE #Vulnerability

·bleepingcomputer.com·Sep 6, 2024

Veeam warns of critical RCE flaw in Backup & Replication software

Exploiting CVE-2024-21378 – Remote Code Execution in Microsoft Outlook

Learn how NetSPI discovered that Microsoft Outlook was vulnerable to authenticated remote code execution (RCE) via synced form objects.

#netspi #EN #2024 #CVE-2024-21378 #RCE #vulnerability #Outlook

·netspi.com·Mar 11, 2024

Exploiting CVE-2024-21378 – Remote Code Execution in Microsoft Outlook

CVE-2024-21591 - Juniper J-Web OOB Write vulnerability

Juniper Networks recently patched a critical pre-authentication Remote Code Execution (RCE) vulnerability in the J-Web configuration interface across all versions of Junos OS on SRX firewalls and EX switches. Unauthenticated actors could exploit this vulnerability to gain root access or initiate Denial of Service (DoS) attacks on devices that have not been patched. Ensure your systems are updated promptly to mitigate this risk. Check for exposed J-Web configuration interfaces using this Censys Search query: services.software.uniform_resource_identifier: cpe:2.3:a:juniper:jweb:*:*:*:*:*:*:*:*. * As emphasized last year in CISA’s BOD 23-02 guidance, exposed network management interfaces continue to pose a significant risk. Restrict access to these interfaces from the public internet wherever possible.

#censys #EN #2024 #CVE-2024-21591 #Juniper #J-Web #OOB #vulnerability #RCE #exposed

·censys.com·Jan 14, 2024

CVE-2024-21591 - Juniper J-Web OOB Write vulnerability