2024 – Page 9 – TheCyberThrone

Gitlab fixes CVE-2024-11274 and CVE-2024-8233

GitLab has released a crucial security update to address multiple vulnerabilities impacting various versions of its platform. This update, applicable to versions 17.6.2, 17.5.4, and 17.4.6 for both Community Edition…

PravinKarthik December 13, 2024

Apache Struts was affected by CVE-2024-53677

Apache Struts framework has been detected with a critical vulnerability that could allow attackers to execute malicious code remotely, posing a significant risk to affected systems. The vulnerability tracked as…

PravinKarthik December 13, 2024

Krispy Kreme confirms a cyber incident

Hackers have set their sights on the world of doughnuts, with Krispy Kreme confirming that a cyberattack has disrupted access to its online ordering system. In a recent filing with…

PravinKarthik December 13, 2024

Splunk addresses CVE-2024-53247 in Secure Gateway

A critical vulnerability identified has been discovered in the Splunk Secure Gateway app, affecting various versions of Splunk Enterprise and the Splunk Cloud Platform. The vulnerability tracked as CVE-2024-53247 with…

PravinKarthik December 12, 2024

Ivanti fixes critical vulnerabilities in CSA

Ivanti has issued critical software updates to address several severe vulnerabilities in its Cloud Services Application (CSA). These vulnerabilities, tracked as CVE-2024-11639, CVE-2024-11772, and CVE-2024-11773, affect CSA versions 5.0.2 and…

PravinKarthik December 12, 2024

AuthQuake vulnerability with Microsoft to Bypass MFA

Cybersecurity researchers at Oasis Security have discovered a significant vulnerability in Microsoft’s Multi-Factor Authentication (MFA) system, which they have named AuthQuake. This vulnerability allows attackers to bypass security measures and…

PravinKarthik December 12, 2024

Apache Superset 4.1.0 released with bug fixes

The Apache Software Foundation has announced the release of Apache Superset 4.1.0 with several bug fixes that could potentially allow attackers to bypass security controls, access sensitive data, and gain…

PravinKarthik December 11, 2024

Google fixes important vulnerabilities with the latest Google Chrome

Google has released updates for its Chrome browser, addressing several security vulnerabilities, including two important vulnerabilities. The first vulnerability tracked as CVE-2024-12381 with a CVSSv3 score of 8.8 is a…

PravinKarthik December 11, 2024