Monday , December 2 2024

Recent Posts

CVE-2024-20272
CISCO FIXED CRITICAL UNITY CONNECTION VULNERABILITY

CISCO

Cisco released updates to fix a security flaw in Unity Connection that could allow an attacker to run commands on the system. The vulnerability CVE-2024-20272 (CVSS score: 7.3) is an arbitrary file upload bug in the web-based management interface. It happens due to a lack of authentication in a specific …

Read More »

CISA Adds One Known Exploited Vulnerability to Catalog

CVE

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-29357 Microsoft SharePoint Server Privilege Escalation Vulnerability. These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. CVE-2023-29357 Detail: Description: Microsoft SharePoint …

Read More »