Secure Bulletin Navigating the cyber sea with knowledge
Home > Categoria > Vulnerability
Latest news

QNAP NAS vulnerabilities

9 December 2024  |  dark6  |  Vulnerability

QNAP NAS systems, widely used for data storage, have been flagged for several critical vulnerabilities that pose significant risks to users and organizations. Here’s what you need to...

>> read more

Critical NTLM Vulnerability in Windows

8 December 2024  |  dark6  |  Vulnerability

Security researchers have identified a critical vulnerability affecting all Windows Workstation and Server versions, including Windows 7, Server 2008 R2, Windows 11 (v24H2), and Server 2022. This vulnerability...

>> read more

Apache Tomcat vulnerability (CVE-2024-38286)

24 September 2024  |  dark6  |  Vulnerability

A severe vulnerability has emerged in Apache Tomcat, a widely used Java application server. Identified as CVE-2024-38286, this flaw poses a serious risk to organizations that rely on...

>> read more

Windows MiniFilter vulnerability: a threat to EDR security

18 September 2024  |  dark6  |  Vulnerability

Endpoint Detection and Response (EDR) solutions are essential for modern cybersecurity defenses. However, research has revealed a vulnerability in Windows MiniFilter drivers that can be exploited to prevent...

>> read more

Critical Windows kernel vulnerability disclosed

18 September 2024  |  dark6  |  Vulnerability

Microsoft has issued an urgent warning regarding a critical Windows kernel vulnerability (CVE-2024-37985) that could result in the disclosure of sensitive information. This vulnerability affects ARM-based systems and...

>> read more

Apple iOS 18 patches 32 security flaws

17 September 2024  |  dark6  |  Vulnerability

Apple has released iOS 18, a major software update that addresses a multitude of security vulnerabilities across its operating system. These vulnerabilities posed significant risks to user privacy...

>> read more

Critical macOS Calendar vulnerability: zero-click execution of malicious code

17 September 2024  |  dark6  |  Vulnerability

A severe zero-click vulnerability has been discovered within Apple’s macOS Calendar application, posing a significant threat to user security. This vulnerability enables attackers to compromise user devices without...

>> read more

Cybercriminals exploit legitimate software for insidious attacks

14 September 2024  |  dark6  |  Vulnerability

Cybercriminals are evolving their tactics, leveraging legitimate software to evade detection and compromise systems. By blending into normal network traffic, these actors render traditional security measures ineffective, making...

>> read more