PravinKarthik

Atlassian fixes DoS vulnerabilities in its Products

Atlassian releases patches for high-severity vulnerabilities in Bamboo, Bitbucket, Confluence, and Crowd. There are four vulnerabilities addressed in these products, all four allowing attackers to cause denial-of-service (DoS) conditions. The…

PravinKarthik September 19, 2024

GitLab fixes critical vulnerability CVE-2024-45409

GitLab has released security patches for a critical vulnerability that affects both GitLab Community Edition (CE) and Enterprise Edition (EE) that allows a threat actor to bypass authentication checks and…

PravinKarthik September 19, 2024

Microsoft Kernel Vulnerability CVE-2024-37985 exploited

Microsoft has confirmed the exploitation of a Windows Kernel vulnerability, identified as CVE-2024-37985, in the wild. This vulnerability, first released on July 9, 2024, and last updated on September 17,…

PravinKarthik September 19, 2024

Google Chrome 129 released with several bug fixes

Google has released Chrome 129, with bug fixes for several vulnerabilities, which are now available on the stable channel for Windows, Mac, and Linux users. The new version release addresses…

PravinKarthik September 18, 2024

CISA KEV Catalog Update September 2024 -Part VI

The US CISA adds nine vulnerabilities to its Known Exploited Vulnerabilities Catalog based on the evidence of active exploitation CVE-2024-27348 Apache HugeGraph-Server contains an improper access control vulnerability that could…

PravinKarthik September 18, 2024

VMware fixes flaws identified in Chinese Matrix Cup

VMware released patches for two critical vulnerabilities in its vCenter Server platform and warned that there’s a major risk of remote code execution attacks. The first vulnerability tracked as CVE-2024-38812…

PravinKarthik September 18, 2024

CISA KEV Update September 2024 -Part V

The US CISA adds two vulnerabilities to its Known Exploited Vulnerabilities Catalog based on the evidence of active exploitation The first vulnerability tracked as CVE-2024-43461, Microsoft Windows MSHTML Platform contains…

PravinKarthik September 17, 2024

Spring Framework Vulnerability CVE-2024-38816 fixed

A high severity vulnerability has been discovered in the Spring Framework, that allows attackers to gain unauthorized access to sensitive files on the server, posing a significant risk of data…

PravinKarthik September 16, 2024