Content Paint
Search
Sign in
Membership

vulnerabilities

 |  Security  | Jan 10, 2025
Ivanti zero day: 2,000 exposed; Anti-forensics draw attention
Ivanti zero day: 2,000 exposed; Anti-forensics draw attention

Factory reset devices after threat hunting even if NO compromise detected says CISA

Security  | Jan 09, 2025
Ivanti zero day exploited in the wild - attacks started mid-December
Ivanti zero day CVE-2025-0282 exploited

Previously unseen malware being deployed, and UK's NCSC is "investigating cases of active exploitation affecting UK networks"

Security  | Jan 07, 2025
KEV turns up late to the party, carrying a bottle of 2020 Oracle
KEV turns up late to the party, carrying a bottle of 2020 Oracle

CVE-2020-2883: You patched that when you first heard about it, right? Ditto these Mitel Colab bugs...

vulnerabilities  | Nov 16, 2024
Palo Alto Networks confirms mystery zero day now exploited: Adds CVE, guidance.
Palo Alto Networks confirms mystery zero day now exploited: Adds CVE, guidance.

You *still* didn't pull your PAN-OS interface off the public internet? Don't say you weren't warned...

Security  | Nov 12, 2024
Palo Alto Networks warns over possible PAN-OS RCE: Says get your blooming interface off the internet
PAN-OS vulnerability? Mebbe... bake in resilience.

Public advisory comes after alleged PAN-OS vulnerability advertised on exploit forum.

cybersecurity  | Oct 23, 2024
Fortinet confirms zero day exploitation: Pre-auth RCE now allocated CVE-2024-47575
Fortinet, proudly bringing you FortiManager vulnerability CVE-2024-47575 

A "missing authentication for critical function vulnerability"? Well, this is novel!

Samsung  | Oct 23, 2024
Critical bug in millions of Samsung Exynos mobile phone processors "exploited in the wild"
Critical bug in millions of Samsung Exynos mobile phone processors "exploited in the wild"

Google researchers say use after free vulnerability could allow attackers to escalate privileges on Android devices.

vulnerabilities  | Oct 22, 2024
Sciencelogic critical known exploited vulnerability remains unidentified
Sciencelogic critical zero day remains unidentified despite in-the-wild exploitation

CISA warns of "unspecified vulnerability involving an unspecified third-party component."

Security  | Oct 14, 2024
Attackers are hitting legacy Ivanti boxes, patching them to keep rivals out
Attackers are hitting legacy Ivanti boxes, patching them to keep rivals out

But details of campaign blasted by one industry veteran for giving away too much detail on web shells on victims' systems

Interviews, insight, intelligence, and exclusive events for digital leaders.

© 2026 The Stack
©  2026 The Stack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.