Critical Vulnerabilities – TheCyberThrone

Critical SolarWinds Web Help Desk Vulnerabilities

SolarWinds has released a critical security advisory addressing multiple severe vulnerabilities in its Web Help Desk (WHD) platform that impact versions prior to 2026.1. Among the six issues patched, four…

PravinKarthik January 30, 2026

Ivanti fixes Critical Security Vulnerabilities in EPM

Ivanti has recently addressed multiple critical and high-severity vulnerabilities in its Endpoint Manager (EPM) software. These vulnerabilities could allow unauthorized access, remote code execution, privilege escalation, and sensitive information leaks.…

PravinKarthik January 16, 2025

Year 2024

Microsoft Patch Tuesday Year 2024 Analysis

In 2024, Microsoft's Patch Tuesday updates played a critical role in addressing security vulnerabilities across various platforms. Throughout the year, a total of 1,000+ vulnerabilities were patched, including multiple critical…

PravinKarthik December 25, 2024

Asus addresses several critical vulnerabilities

ASUS has released patches for addressing several vulnerabilities resides in its router products. The first one is a critical remote authentication bypass vulnerability, tracked as CVE-2024-3080 with a CVSS score of 9.8,…

PravinKarthik June 16, 2024

VMware Ceitical Sandbox escape Bug

VMware is urging customers to patch critical vulnerabilities that make it possible for hackers to break out of sandbox and hypervisor protections in all versions, including out-of-support ones, of VMware…

PravinKarthik March 7, 2024

Critical TeamCity Vulnerabilities Patched – CVE-2024-27198 & CVE-2024-27199

The vulnerabilities, identified as CVE-2024-27198 and CVE-2024-27199, that could be exploited to perform unauthorized administrative actions. CVE-2024-27198, with a CVSS score of 9.8, enables an authentication bypass that could allow…

PravinKarthik March 5, 2024

Autodesk hit with several Critical Vulnerabilities

More than 3 dozens of vulnerabilities has been identified in Autodesk software. These flaws, if exploited, could potentially allow attackers to execute arbitrary code, compromising sensitive data and disrupting operations…

PravinKarthik February 20, 2024

Cisco Patches Critical Vulnerabilities in Expressway Devices

Cisco has addressed several vulnerabilities in its Expressway Series collaboration gateways. Two of the critical vulnerabilities tracked as CVE-2024-20252 and CVE-2024-20254 can lead to cross-site request forgery (CSRF) attacks. An…

PravinKarthik February 8, 2024