High Risk Vulnerability – TheCyberThrone

PoC for Cisco Any Connect Vulnerability Released

A PoC exploit code was released by a researcher for the high-severity vulnerability , tracked as CVE-2023-20178, impacting Cisco AnyConnect Secure Mobility Client and Secure Client for Windows. This vulnerability…

PravinKarthik June 23, 2023

IoT Devices are at Risk due to TPM 2.0 Library Vulnerabilities

Trusted Platform Module (TPM) 2.0 has been affected with vulnerabilities that could lead to information disclosure or escalation of privilege. The bugs are being identified in the Revisions 1.59, 1.38…

PravinKarthik March 6, 2023

High Severity Bug in Trellix DLP

Trellix is urging customers to patch a high-severity flaw that allows local attackers to bypass restrictions and exfiltrate sensitive data. The flaw tracked as CVE-2023-0400 with a CVSS score of…

PravinKarthik February 15, 2023

Sophos Addresses High severity security flaws

Sophos has released patches to address vulnerabilities in Sophos Firewall version 19.5, including arbitrary code execution bugs. The most severe issue addressed is a critical code injection vulnerability tracked as…

PravinKarthik December 9, 2022

Google patches a high severity bug in Pixel

Google has addressed a high-severity security bug, tracked as CVE-2022-20465, affecting all Pixel smartphones that could be exploited to unlock the devices. The issue allowed an attacker with physical access…

PravinKarthik November 11, 2022

SQLite patches more than a decade old vulnerability

SQLite database engine has been patched with a high severity vulnerability that attackers could exploit to crash or control programs that rely on the software. They have revised the software…

PravinKarthik November 1, 2022

TikTok Account takeover bug

Researchers have discovered a vulnerability in TikTok’s Android app which could allow attackers to remotely hijack user accounts. Tracked as CVE-2022-28799, Microsoft reported the vulnerability to TikTok in February 2022, after…

PravinKarthik September 2, 2022

Google Chrome Ships Emergency Patches

Google has released emergency patches to address two security issues in its Chrome web browser, one of which it says is being actively exploited in the wild. Tracked as CVE-2022-1364, the…

PravinKarthik April 15, 2022