🐞 CVE les plus discutées dans le mois de juillet

GreyNoise has observed exploit attempts targeting CVE-2023-28771 — an RCE vuln affecting Zyxel devices. Full analysis + malicious IPs 🔗https://www.greynoise.io/blog/exploit-attempts-targeting-zyxel-cve-2023-28771 #Cybersecurity #ThreatIntel #Vulnerabilities #GreyNoise

Critical Zyxel Vulnerability Is Being Actively ExploitedOn June 16, researchers observed concentrated burst of exploit attempts within a short time window targeting CVE-2023-28771 — a remote code execution vulnerability affecting Zyxel Internet Key Exchange (IKE) packet decoders …

Massive Surge in Exploits Targeting Zyxel Vulnerability: What You Need to KnowIntroduction: A Resurgence in a Dormant Threat A critical vulnerability affecting Zyxel firewall devices—CVE-2023-28771—has suddenly resurfaced as a high-priority cybersecurity concern. Though it was fi…

#Zyxel devices are under active attack via CVE-2023-28771. Researchers spotted a sudden spike in exploit attempts from 244 IPs, possibly tied to #Mirai botnet variants. 🔗 https://hackread.com/zyxel-devices-active-exploits-cve-2023-28771-vulnerability/#CyberSecurity #Vulnerability…

Zyxel Devices Hit by Active Exploits Targeting CVE-2023-28771 Vulnerability https://hackread.com/zyxel-devices-active-exploits-cve-2023-28771-vulnerability/?utm_source=dlvr.it&utm_medium=%5Binfosec.exchange%5D

A critical remote code execution flaw (CVE-2023-28771) in Zyxel devices is being actively exploited by a Mirai-like botnet. The vulnerability, affecting Zyxel networking devices, allows attackers to run their own programs on vulnerable devices. Security experts urge immediate act…

Zyxel Devices Hit by Active Exploits Targeting CVE-2023-28771 Vulnerability https://hackread.com/zyxel-devices-active-exploits-cve-2023-28771-vulnerability/

Critical Linux Vulnerability CVE-2023-0386: What You Need to Know Before July 8, 2025Introduction: A Race Against Time for Linux System Security A newly disclosed vulnerability is sending shockwaves through the Linux community. Known as CVE-2023-0386, this critical flaw has been …

En las últimas 24 horas, se han reportado ataques a JWT con certificados X509, una vulnerabilidad crítica en software de soporte remoto y explotación activa en el kernel de Linux. Además, la escalada de privilegios en openSUSE y el crecimiento del ransomware en América Latina des…

Linux users: imagine your system's hidden door left wide open. CVE-2023-0386 lets attackers snag root access in popular distros. Is your setup at risk? Dive in to learn more before it’s too late.https://thedefendopsdiaries.com/understanding-cve-2023-0386-a-critical-linux-vulnerab…

CISA Issues Urgent Warning Over Exploited Linux Kernel Vulnerability: CVE-2023-0386CISA's High-Priority Alert for Linux Systems The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical warning to all U.S. federal agencies following the discovery of an act…

Critical Linux Kernel Flaw Exploited: CISA Flags CVE-2023-0386 in Active AttacksIntroduction: A Wake-Up Call for Linux Systems The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has raised alarms once again by adding a significant Linux vulnerability—CVE-2023-0386—t…

米当局、Linuxカーネルの脆弱性悪用に注意喚起 - Security NEXTSecurity NEXT 米当局は、「Linuxカーネル」の既知脆弱性「CVE-2023-0386」が悪用されているとして注意喚起を行った。 ：Security NEXT. https://www.security-next.com/171506

Linux – CVE-2023-0386 : la CISA alerte sur l’exploitation active de cette faille de sécurité ! https://www.it-connect.fr/linux-cve-2023-0386-alerte-cisa-exploitation-faille/ #ActuCybersécurité #Cybersécurité #Vulnérabilité #Linux

Linux Alert: Il bug su udisks consente l’accesso a Root sulle principali distribuzioniGli esperti avvertono che due nuove vulnerabilità di escalation dei privilegi locali possono essere sfruttate per ottenere privilegi di root sui sistemi che eseguono le distribuzioni Linux più d…

CVE-2023-0386: Vulnerabilidad crítica en Linux permite escalar privilegios a nivel roothttps://laboratoriolinux.es/index.php/-noticias-mundo-linux-/software/38194-cve-2023-0386-vulnerabilidad-critica-en-linux-permite-escalar-privilegios-a-nivel-root.html

Canadian Telco not patching year old RCE 🙄“The Canadian Centre for Cyber Security and the FBI confirm that the Chinese state-sponsored 'Salt Typhoon' hacking group is also targeting Canadian telecommunication firms, breaching a telecom provider in February.During the February 20…

En las últimas 24 horas, los ciberataques han aumentado: APT28 utiliza Signal para ofensivas en Ucrania, mientras que el malware SparkKitty roba fotos y criptomonedas en Google Play y la App Store. Además, una violación de datos afecta a 743,000 pacientes en McLaren Health Care. …

https://www.walknews.com/952551/ 中国のSalt Typhoonがカナダ企業をCiscoの脆弱性経由でハッキング：当局が明かす（CVE-2023-20198） | Codebook｜Security News #Canada #カナダ

https://www.wacoca.com/news/2564285/ 中国のSalt Typhoonがカナダ企業をCiscoの脆弱性経由でハッキング：当局が明かす（CVE-2023-20198） | Codebook｜Security News #CANADA #カナダ

Analysis of the latest Mirai wave exploiting TBK DVR devices with CVE-2024-3721The abuse of known security flaws to deploy bots on vulnerable systems is a widely recognized problem. Many automated bots constantly search the web for known vulnerabilities in servers and devices con…

New Mirai Botnet Variant Exploits TBK DVR Vulnerability: A New Threat to IoT SecurityNew Mirai Botnet Variant Exploits TBK DVR Vulnerability: A New Threat to IoT Security Introduction A newly uncovered strain of the infamous Mirai botnet is now targeting vulnerable TBK digital vi…

Mirai Botnet Strikes Again: TBK DVR Devices Under Siege via CVE-2024-3721 ExploitWidespread Exploitation Targets Vulnerable DVRs in Global Cyber Assault In the ever-evolving landscape of cybersecurity, a new threat has emerged targeting digital video recording (DVR) devices. A fr…

New Mirai botnet variant exploits TBK DVR devices via CVE-2024-3721, infecting 50K+ devices globally. Check IoCs and patch now to avoid DDoS attacks. Details: https://redteamnews.com/red-team/cve/new-mirai-botnet-variant-exploits-tbk-dvr-devices-via-cve-2024-3721/

New Mirai Botnet Variant Targets DVR Devices via CVE-2024-3721 VulnerabilityCybersecurity Alert: A New Threat to IoT Devices A newly discovered variant of the notorious Mirai botnet has emerged, targeting specific digital video recorders (DVRs) using a command injection vulnerabi…

🟥 𝐃𝐚𝐢𝐥𝐲 𝐑𝐞𝐩𝐨𝐫𝐭 - 𝟎𝟗 𝐉𝐮𝐧𝐞 𝟐𝟎𝟐𝟓 🟥(Posts are updated throughout the day)𝐍𝐞𝐰𝐬:1. Europe just launched DNS4EU, a public DNS resolver with privacy and security optionshttps://www.ghacks.net/2025/06/08/europe-just-launched-dns4eu-a-public-dns-resolver-with-privacy-and-security-options/2…

Las últimas 24 horas revelaron vulnerabilidades críticas en routers TP-Link y Zyxel, un ataque al sistema de correo del Washington Post, y el descubrimiento de un grupo cibercriminal vinculado a FIN7. Además, se confiscó $7.74 millones en criptomonedas de Corea del Norte, y se de…

The vulnerability in question is CVE-2023-33538 (CVSS score: 8.8), a command injection bug that could result in the execution of arbitrary system commands when processing the ssid1 parameter in a specially crafted HTTP GET request. https://thehackernews.com/2025/06/tp-link-router…

🚨 CISA just flagged a live exploit in TP-Link routers (CVE-2023-33538, CVSS 8.8) — attackers can run system commands remotely.Worse? Many affected models may be end-of-life, with no fix coming.Here’s what you need to know ↓ https://thehackernews.com/2025/06/tp-link-router-flaw-cv…

Ever hear of #CVE #TimeTravel ?Here you go. A 2011 CVE reported in 2025 🙃 #Perl #cve201110007

CVE-2011-10007 was actually published on 2025-06-05. 🔗 Vulnerability details https://vulnerability.circl.lu/vuln/CVE-2011-10007🔗 Details https://github.com/richardc/perl-file-find-rule/pull/4🔗 'phasing out 2-arg open ' https://www.nntp.perl.org/group/perl.perl5.porters/2025/06/ms…