Mastodawn

CISA Warns of Actively Exploited Oracle WebLogic Server Vulnerability

The US Cybersecurity and Infrastructure Security Agency (CISA) is sounding the alarm on a highly exploitable Oracle WebLogic Server vulnerability, CVE-2024-21182, that's being actively targeted by threat actors. Over 1,592 vulnerable servers are currently exposed online, making it a pressing concern for organizations…

https://osintsights.com/cisa-warns-of-actively-exploited-oracle-weblogic-server-vulnerability?utm_source=mastodon&utm_medium=social

#Cve202421182 #OracleWeblogicServer #ExploitedVulnerability #EmergingThreats #Cisa

CISA Warns of Actively Exploited Oracle WebLogic Server Vulnerability

Protect your Oracle WebLogic Server from CVE-2024-21182 exploits. Learn how to patch and prevent attacks with our expert guidance and stay secure now.

OSINTSights

Analyst207 May 8

Ivanti Discloses Actively Exploited Zero-Day in Endpoint Manager

Ivanti has confirmed that hackers are actively exploiting a zero-day vulnerability, CVE-2026-6973, in its Endpoint Manager Mobile (EPMM) software, allowing them to run code remotely with administrative privileges. The company has issued patches for this and four other EPMM flaws to protect its customers.

https://osintsights.com/ivanti-discloses-actively-exploited-zero-day-in-endpoint-manager?utm_source=mastodon&utm_medium=social

#Ivanti #EndpointManager #Cve20266973 #ZeroDay #ExploitedVulnerability

Ivanti Discloses Actively Exploited Zero-Day in Endpoint Manager

Ivanti discloses actively exploited zero-day CVE-2026-6973 in Endpoint Manager, issue patched. Learn how to secure your system now and prevent further exploitation.

OSINTSights

Analyst207 Apr 14

Microsoft Patch Tuesday Addresses 165 Vulnerabilities, Including Exploited SharePoint Flaw

Microsoft's April Patch Tuesday update is a doozy, addressing a whopping 165 vulnerabilities, including a SharePoint Server spoofing flaw that's already been exploited in the wild. This mega update also fixes a bug that was publicly disclosed by a frustrated researcher.

https://osintsights.com/microsoft-patch-tuesday-addresses-165-vulnerabilities-including-exploited-sharep?utm_source=mastodon&utm_medium=social

#PatchTuesday #Microsoft #Sharepoint #ExploitedVulnerability #EmergingThreats

Microsoft Patch Tuesday Addresses 165 Vulnerabilities, Including Exploited SharePoint Flaw

Microsoft addresses 165 vulnerabilities in April Patch Tuesday, including an exploited SharePoint flaw, and issues fixes to protect users, learn more now.

OSINTSights

Analyst207 Apr 8

CISA Mandates Emergency Patch for Exploited Ivanti EPMM Flaw

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a high-priority alert, ordering US government agencies to patch a critical vulnerability in Ivanti Endpoint Manager Mobile (EPMM) within just four days, as the flaw has been under active exploitation since January. With a Sunday deadline looming, federal IT…

https://osintsights.com/cisa-mandates-emergency-patch-for-exploited-ivanti-epmm-flaw?utm_source=mastodon&utm_medium=social

#IvantiEpmm #Cisa #EndpointSecurity #ExploitedVulnerability #EmergingThreats

CISA Mandates Emergency Patch for Exploited Ivanti EPMM Flaw

Patch Ivanti EPMM flaw now: CISA mandates emergency update for exploited vulnerability, secure systems within four days to prevent cyber attacks.

OSINTSights

BeyondMachines

Sep 9, 2023

Cisco VPN in ASA and FTD unpatched vulnerability exploited in ransomware group attacks
#cybersecurity #infosec #advisory #exploitedvulnerability
https://beyondmachines.net/event_details/cisco-vpn-in-asa-and-ftd-unpatched-vulnerability-exploited-in-ransomware-group-attacks-6-a-s-d-1/gD2P6Ple2L

Cisco VPN in ASA and FTD unpatched vulnerability exploited in ransomware group attacks

Cisco has identified a critical zero-day vulnerability, tracked as CVE-2023-20269, in its Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software, which has been actively exploited by the Akira ransomware group since August. It can be remotely exploited via brute force attacks, prompting Cisco to work on security updates and share indicators of compromise (IoCs) and recommending mitigation measures.

BeyondMachines