CyberAlerts's Avatar

CyberAlerts

@cyberalerts

๐Ÿšจ Automated posting of Known Exploited Vulnerabilities (KEV) from CyberAlerts.io

50
Followers 14
Following 427
Posts 10.03.2025
Joined
Posts Following

Latest posts by CyberAlerts @cyberalerts

Preview
Command Injection Vulnerability - CyberAlerts View detailed information about CVE-2025-8876 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

CRITICAL: Command Injection Vulnerability

CVE-2025-8876

14.08.2025 15:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
N-able N-Central Command Injection Vulnerability - CyberAlerts View detailed information about CVE-2025-8876 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

: N-able N-Central Command Injection Vulnerability

CVE-2025-8876

13.08.2025 20:00 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
RARLAB WinRAR Path Traversal Vulnerability - CyberAlerts View detailed information about CVE-2025-8088 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

HIGH: RARLAB WinRAR Path Traversal Vulnerability

CVE-2025-8088

12.08.2025 17:45 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
Path traversal vulnerability in WinRAR - CyberAlerts View detailed information about CVE-2025-8088 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

HIGH: Path traversal vulnerability in WinRAR

CVE-2025-8088

08.08.2025 12:40 ๐Ÿ‘ 0 ๐Ÿ” 1 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
D-Link DCS-2530L and DCS-2670L Devices Unspecified Vulnerability - CyberAlerts View detailed information about CVE-2020-25078 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

HIGH: D-Link DCS-2530L and DCS-2670L Devices Unspecified Vulnerability

CVE-2020-25078

05.08.2025 18:15 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
The Versa Director GUI provides an option to customize the look and feel of the user interface. This option is only available for a user logged... - CyberAlerts View detailed information about CVE-2024-39717 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

MEDIUM: The Versa Director GUI provides an option to customize the look and feel of the user interface. This option is only available for a user logged...

CVE-2024-39717

31.07.2025 00:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
Apache OFBiz: Unauthenticated endpoint could allow execution of screen rendering code - CyberAlerts View detailed information about CVE-2024-38856 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

: Apache OFBiz: Unauthenticated endpoint could allow execution of screen rendering code

CVE-2024-38856

30.07.2025 23:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via SVG animate attributes. - CyberAlerts View detailed information about CVE-2024-37383 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

: Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via SVG animate attributes.

CVE-2024-37383

30.07.2025 22:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
VMware ESXi contains an authentication bypass vulnerability.ย A malicious actor with sufficient Active Directory (AD) permissions can gain full... - CyberAlerts View detailed information about CVE-2024-37085 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

MEDIUM: VMware ESXi contains an authentication bypass vulnerability.ย A malicious actor with sufficient Active Directory (AD) permissions can gain full...

CVE-2024-37085

30.07.2025 21:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
PAN-OS: Arbitrary File Creation Leads to OS Command Injection Vulnerability in GlobalProtect - CyberAlerts View detailed information about CVE-2024-3400 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

CRITICAL: PAN-OS: Arbitrary File Creation Leads to OS Command Injection Vulnerability in GlobalProtect

CVE-2024-3400

30.07.2025 20:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
there is a possible way to bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution... - CyberAlerts View detailed information about CVE-2024-32896 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

: there is a possible way to bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution...

CVE-2024-32896

30.07.2025 19:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
D-Link DNS-320L/DNS-325/DNS-327L/DNS-340L HTTP GET Request nas_sharing.cgi command injection - CyberAlerts View detailed information about CVE-2024-3273 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

HIGH: D-Link DNS-320L/DNS-325/DNS-327L/DNS-340L HTTP GET Request nas_sharing.cgi command injection

CVE-2024-3273

30.07.2025 18:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
D-Link DNS-320L/DNS-325/DNS-327L/DNS-340L HTTP GET Request nas_sharing.cgi hard-coded credentials - CyberAlerts View detailed information about CVE-2024-3272 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

CRITICAL: D-Link DNS-320L/DNS-325/DNS-327L/DNS-340L HTTP GET Request nas_sharing.cgi hard-coded credentials

CVE-2024-3272

30.07.2025 17:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2022 SU5 and prior allows an unauthenticated attacker within the same... - CyberAlerts View detailed information about CVE-2024-29824 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

CRITICAL: An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2022 SU5 and prior allows an unauthenticated attacker within the same...

CVE-2024-29824

30.07.2025 16:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
there is a possible way to bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution... - CyberAlerts View detailed information about CVE-2024-29748 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

: there is a possible way to bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution...

CVE-2024-29748

30.07.2025 15:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
there is a possible Information Disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution... - CyberAlerts View detailed information about CVE-2024-29745 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

: there is a possible Information Disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution...

CVE-2024-29745

30.07.2025 14:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
SolarWinds Serv-U L Directory Transversal Vulnerability - CyberAlerts View detailed information about CVE-2024-28995 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

HIGH: SolarWinds Serv-U L Directory Transversal Vulnerability

CVE-2024-28995

30.07.2025 13:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
SolarWinds Web Help Desk Hardcoded Credential Vulnerability - CyberAlerts View detailed information about CVE-2024-28987 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

CRITICAL: SolarWinds Web Help Desk Hardcoded Credential Vulnerability

CVE-2024-28987

30.07.2025 12:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
Information disclosure - CyberAlerts View detailed information about CVE-2024-24919 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

HIGH: Information disclosure

CVE-2024-24919

30.07.2025 11:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an '@' character followed by... - CyberAlerts View detailed information about CVE-2024-23897 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

: Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an '@' character followed by...

CVE-2024-23897

30.07.2025 10:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
A use of externally-controlled format string in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13,... - CyberAlerts View detailed information about CVE-2024-23113 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

CRITICAL: A use of externally-controlled format string in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13,...

CVE-2024-23113

30.07.2025 09:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
A server-side request forgery vulnerability in the SAML component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) and... - CyberAlerts View detailed information about CVE-2024-21893 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

HIGH: A server-side request forgery vulnerability in the SAML component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) and...

CVE-2024-21893

30.07.2025 08:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: Software Development Kit, Process Extension). The... - CyberAlerts View detailed information about CVE-2024-21287 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

HIGH: Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: Software Development Kit, Process Extension). The...

CVE-2024-21287

30.07.2025 07:40 ๐Ÿ‘ 1 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
A vulnerability in the Remote Access VPN (RAVPN) service of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense... - CyberAlerts View detailed information about CVE-2024-20481 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

MEDIUM: A vulnerability in the Remote Access VPN (RAVPN) service of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense...

CVE-2024-20481

30.07.2025 06:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
A vulnerability in a legacy capability that allowed for the preloading of VPN clients and plug-ins and that has been available in Cisco Adaptive... - CyberAlerts View detailed information about CVE-2024-20359 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

MEDIUM: A vulnerability in a legacy capability that allowed for the preloading of VPN clients and plug-ins and that has been available in Cisco Adaptive...

CVE-2024-20359

30.07.2025 05:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
A vulnerability in the management and VPN web servers for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)... - CyberAlerts View detailed information about CVE-2024-20353 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

HIGH: A vulnerability in the management and VPN web servers for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)...

CVE-2024-20353

30.07.2025 04:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
Authentication bypass using an alternate path or channel - CyberAlerts View detailed information about CVE-2024-1709 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

CRITICAL: Authentication bypass using an alternate path or channel

CVE-2024-1709

28.07.2025 23:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
LoadMaster Pre-Authenticated OS Command Injection - CyberAlerts View detailed information about CVE-2024-1212 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

CRITICAL: LoadMaster Pre-Authenticated OS Command Injection

CVE-2024-1212

28.07.2025 21:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
PAN-OS: Authentication Bypass in the Management Web Interface (PAN-SA-2024-0015) - CyberAlerts View detailed information about CVE-2024-0012 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

CRITICAL: PAN-OS: Authentication Bypass in the Management Web Interface (PAN-SA-2024-0015)

CVE-2024-0012

28.07.2025 20:40 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0
Preview
PaperCut NG/MF Cross-Site Request Forgery (CSRF) Vulnerability - CyberAlerts View detailed information about CVE-2023-2533 on CyberAlerts

๐Ÿšจ New CISA Vulnerability Alert ๐Ÿšจ

HIGH: PaperCut NG/MF Cross-Site Request Forgery (CSRF) Vulnerability

CVE-2023-2533

28.07.2025 15:00 ๐Ÿ‘ 0 ๐Ÿ” 0 ๐Ÿ’ฌ 0 ๐Ÿ“Œ 0