August 2024 – Page 8 – TheCyberThrone

MongoDB fixes High severity vulnerability CVE-2024-7553

MongoDB has released patches for a high-severity vulnerability affecting multiple versions of its server and driver products that could allow a malicious local user to escalate their privileges, potentially taking…

PravinKarthik August 9, 2024

Apple fixes Advanced Data Protection flaws with new iOS version release

Apple has released the iOS 17.6.1 update, specifically targets a bug related to Apple’s Advanced Data Protection (ADP) feature. The glitch, which affected a small number of users, made it…

PravinKarthik August 9, 2024

Apache Cloudstack fixes CVE-2024-42062 & CVE-2024-42222

Apache CloudStack project has released patches for addressing two critical vulnerabilities, that could allow attackers to gain unauthorized access to sensitive information and compromise the integrity of CloudStack-managed infrastructure. The…

PravinKarthik August 8, 2024

Jenkins Patches Critical Vulnerability CVE-2024-43044

Jenkins has released an urgent advisory detailing two vulnerabilities, that expose Jenkins instances to arbitrary file read and unauthorized access risks, The critical one of the two vulnerabilities, tracked as…

PravinKarthik August 8, 2024

Shadow Resources flaw enables AWS services to be vulnerable

Researchers discovered critical vulnerabilities in six AWS services could have enabled account takeover, remote code execution, AI data manipulation, sensitive information disclosure, and more. The researchers from Aqua Security disclosed…

PravinKarthik August 8, 2024

Mobile Guardian hit by a cyber-attack

A cyber-attack on Mobile Guardian leaves 13,000 Singapore’s students had their data remotely wiped. Several Singaporean schools alerted the ministry on August 4 that some students who use iPads or Chromebooks as…

PravinKarthik August 7, 2024

Google Fixes Android Zeroday Vulnerability CVE-2024-36971

Google has released patches for 46 bugs affecting its Android operating system in its August 2024 security update. This includes an actively exploited kernel vulnerability tracked as CVE-2024-36971 affects the…

PravinKarthik August 7, 2024

CISA adds CVE-2018-0824 to its KEV Catalog

The U.S. CISA added a deserialization of untrusted data vulnerability in Microsoft COM for Windows, tracked as CVE-2018-0824 with a CVSS score of 7.5, to its Known Exploited Vulnerabilities (KEV)…

PravinKarthik August 6, 2024