RedPacket Security - InfoSec News & Tutorials

CVE Alert: CVE-2024-11008

December 12, 2024

Vulnerability Summary: CVE-2024-11008 The Members – Membership & User Role Editor Plugin plugin for WordPress is vulnerable to Sensitive Information...

CVE Alert: CVE-2024-12294

December 12, 2024

Vulnerability Summary: CVE-2024-12294 The Last Viewed Posts by WPBeginner plugin for WordPress is vulnerable to Sensitive Information Exposure in all...

CVE Alert: CVE-2024-12363

December 12, 2024

Vulnerability Summary: CVE-2024-12363 Insufficient permissions in the TeamViewer Patch & Asset Management component prior to version 24.12 on Windows allows...

CVE Alert: CVE-2024-11840

December 12, 2024

Vulnerability Summary: CVE-2024-11840 The RapidLoad – Optimize Web Vitals Automatically plugin for WordPress is vulnerable to unauthorized access of data...

[SARCOMA] – Ransomware Victim: Brasilmad

December 12, 2024

Ransomware Group: SARCOMA VICTIM NAME: Brasilmad NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CVE Alert: CVE-2024-12325

December 12, 2024

Vulnerability Summary: CVE-2024-12325 The Waymark plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘content’ parameter in all...

CVE Alert: CVE-2023-23472

December 12, 2024

Vulnerability Summary: CVE-2023-23472 IBM InfoSphere DataStage Flow Designer (InfoSphere Information Server 11.7) could allow an authenticated user to obtain sensitive...

CVE Alert: CVE-2024-51460

December 12, 2024

Vulnerability Summary: CVE-2024-51460 IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information when a detailed...

CVE Alert: CVE-2024-11351

December 12, 2024

Vulnerability Summary: CVE-2024-11351 The Restrict – membership, site, content and user access restrictions for WordPress plugin for WordPress is vulnerable...

CVE Alert: CVE-2024-28141

December 12, 2024

Vulnerability Summary: CVE-2024-28141 The web application is not protected against cross-site request forgery attacks. Therefore, an attacker can trick users...

CVE Alert: CVE-2024-11597

December 12, 2024

Vulnerability Summary: CVE-2024-11597 Under specific circumstances, insecure permissions in Ivanti Performance Manager before version 2024.3 HF1, 2024.1 HF1, or 2023.3...

CVE Alert: CVE-2024-11598

December 12, 2024

Vulnerability Summary: CVE-2024-11598 Under specific circumstances, insecure permissions in Ivanti Application Control before version 2024.3 HF1, 2024.1 HF2, or 2023.3...

CVE Alert: CVE-2024-8496

December 12, 2024

Vulnerability Summary: CVE-2024-8496 Under specific circumstances, insecure permissions in Ivanti Workspace Control before version 10.18.40.0 allows a local authenticated attacker...

CVE Alert: CVE-2024-10251

December 12, 2024

Vulnerability Summary: CVE-2024-10251 Under specific circumstances, insecure permissions in Ivanti Security Controls before version 2024.4.1 allows a local authenticated attacker...

CVE Alert: CVE-2024-9845

December 12, 2024

Vulnerability Summary: CVE-2024-9845 Under specific circumstances, insecure permissions in Ivanti Automation before version 2024.4.0.1 allows a local authenticated attacker to...

CISA: Palo Alto Networks Emphasizes Hardening Guidance

December 12, 2024

Palo Alto Networks Emphasizes Hardening Guidance Updated November 15, 2024 Palo Alto Networks (PAN) has updated their informational bulletin, noting...

CISA: Citrix Releases Security Updates for NetScaler and Citrix Session Recording

December 12, 2024

Citrix Releases Security Updates for NetScaler and Citrix Session Recording Citrix released security updates to address multiple vulnerabilities in NetScaler...

CISA: CISA, FBI, NSA, and International Partners Release Joint Advisory on 2023 Top Routinely Exploited Vulnerabilities

December 12, 2024

CISA, FBI, NSA, and International Partners Release Joint Advisory on 2023 Top Routinely Exploited Vulnerabilities Today, the Cybersecurity and Infrastructure...

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

December 12, 2024

CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Releases Nineteen Industrial Control Systems Advisories

December 12, 2024

CISA Releases Nineteen Industrial Control Systems Advisories CISA released nineteen Industrial Control Systems (ICS) advisories on November 14, 2024. These...

CISA: Apple Releases Security Updates for Multiple Products

December 12, 2024

Apple Releases Security Updates for Multiple Products Apple released security updates to address vulnerabilities in multiple Apple products. A cyber...

CISA: 2024 CWE Top 25 Most Dangerous Software Weaknesses

December 12, 2024

2024 CWE Top 25 Most Dangerous Software Weaknesses The Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the Homeland...

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

December 12, 2024

CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

December 12, 2024

CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

Main Story

Editor’s Picks

Trending Story

Featured Story

You may have missed