Critical update: CVE-2024-3400 🚨CVSS:10.0 🔥
New findings reveal attackers can bypass telemetry requirements on #PaloAlto firewalls, with proof-of-concept exploit code available.
Palo Alto has released patches. Don't delay, patch now!
#Cybersecurity #PatchNow #CVE20243400
#FortiClientEMS contiene una #vulnerabilidad CVE-2023-48788 (puntuación CVSS: 9,3) sobre #SQLinjection que desde marzo de 2024 se ha explotado masivamente de acuerdo a datos de CISA Cyber
thehackernews.com/2024/04/hacker…
🚨 New #cybersecurity research reveals risks in AWS & Google Cloud CLI tools. LeakyCLI vulnerability exposes sensitive credentials via build logs. Microsoft patched a related issue in Azure (CVE-2023-36052, CVSS 8.6). Stay vigilant! #infosec #cloudsecurity
Fixed glibc CVE-2024-2961 iconv(3) out-of-bounds write for EL9 distros via Rocky Linux SIG/Security
sig-security.rocky.page/packages/glibc/
sig-security.rocky.page/issues/CVE-202…
Bug found and explored by Charles Fol, exploitable via PHP, rated Important, CVSS 8.8 by Red Hat, patched in Fedora but not yet in RHEL