April 2024 – Page 5 – TheCyberThrone

Ivanti Vulnerability is Wide Spread – CVE-2024-21894

A recently patched Ivanti high-severity heap overflow vulnerability, tracked as CVE-2024-21894, could impact nearly 16,500 internet-exposed Ivanti Connect Secure, and Poly Secure VPN gateways. The maximum number of vulnerable Ivanti…

PravinKarthik April 8, 2024

Cisco warning on XSS Flaw in SMB Routers

Cisco warns of a Cross-Site scripting (XSS) flaw in small business class routers The vulnerability tracked as CVE-2024-20362 with a CVSS score 6.1 resides in the web-based management interface of…

PravinKarthik April 6, 2024

QlikView Fixes Privilege Escalation Vulnerability – CVE-2024-29863

Qlik, the popular business intelligence software vendor, has released urgent security patches to address a critical vulnerability in its QlikView platform. This vulnerability tracked as CVE-2024-29863 with a CVSS of…

PravinKarthik April 5, 2024

Apache releases patches for CloudStack Product

The Apache Software Foundation has issued security releases 4.18.1.1 and 4.19.0.1 for its popular cloud management platform, Apache CloudStack. The first vulnerability tracked as CVE-2024-29006 is a medium severity vulnerability…

PravinKarthik April 5, 2024

DHS CSRB Blames Microsoft for STORM-0558 Intrusion

Microsoft committed a serious of "avoidable errors" that permitted a Chinese hacking campaign last summer to successfully target the top U.S. government officials' email accounts, according to a government-ordered review.…

PravinKarthik April 4, 2024

VMWare addressed Several Vulnerabilities in SD-WAN

VMware has released critical security patches to address multiple vulnerabilities in its SD-WAN solution. These vulnerabilities, if left unpatched, could present significant risks to organizations relying on VMware SD-WAN for…

PravinKarthik April 3, 2024