vulnerabilities

Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility – Go Health Pro

by
Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility – Go Health Pro

Mar 21, 2025Ravie LakshmananCyber Attack / Vulnerability Two now-patched security flaws impacting Cisco Smart Licensing Utility are seeing active exploitation attempts, according to SANS Internet Storm Center. The two critical-rated vulnerabilities in question are listed below – CVE-2024-20439 (CVSS score: 9.8) – The presence of an undocumented static user credential for an administrative account that … Read more

GitLab fixes critical SSO bypass vulnerabilities in update – Go Health Pro

by
GitLab fixes critical SSO bypass vulnerabilities in update – Go Health Pro

GitLab posted updates to its platform following the disclosure of a pair of critical security vulnerabilities.The company said that both the Enterprise and Community Edition platforms should be updated as soon as possible to protect against any potential exploit attempts.“We are committed to ensuring all aspects of GitLab that are exposed to customers or that … Read more

CISA Adds Four Actively Exploited Vulnerabilities to KEV Catalog, Urges Fixes by Feb 25 – Go Health Pro

by
CISA Adds Four Actively Exploited Vulnerabilities to KEV Catalog, Urges Fixes by Feb 25 – Go Health Pro

Feb 05, 2025Ravie LakshmananVulnerability / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The list of vulnerabilities is as follows – CVE-2024-45195 (CVSS score: 7.5/9.8) – A forced browsing vulnerability in Apache … Read more

Increased Data Access Opens Wide Medical Device Security Vulnerabilities – Go Health Pro

by
Increased Data Access Opens Wide Medical Device Security Vulnerabilities – Go Health Pro

The latest GlobalData report, ‘Cybersecurity in Healthcare – Thematic Research’ reveals that increased data access means there are more opportunities for security vulnerabilities in the medical device sector. Medical analyst at GlobalData, Ashley Clarke says the healthcare, pharma, and medical device sectors are particularly susceptible to cyberattacks. “Medical history cannot be changed, unlike identification and … Read more

Severe Rsync vulnerabilities — CVSS 9.8 — risk RCE, data leaks – Go Health Pro

by
Severe Rsync vulnerabilities — CVSS 9.8 — risk RCE, data leaks – Go Health Pro

Six vulnerabilities in the popular Rsync file-synchronizing tool were disclosed Wednesday, including critical and high-severity flaws that could risk remote code execution (RCE) and data leakage. The Rsync utility is commonly used in Unix-like operating systems, and the Rsync daemon is frequently used to synchronize and distribute files through public mirrors. The CERT Coordination Center … Read more

x