Last Updated 11/09/2024 19:18:33 UTC+5 (Asia/Ashgabat)
An hourly updated summary of the most frequent types of security incidents currently being reported from different sources.
For more information, please check out the documentation here.
This is a fork of an awesome project CyberOwl by karimhabush. I want to adapt it for my own non-commercial needs. Moreover, to train my programming skills and contribute to the community. I will appreciate any feedback!
Sincerely, Kotosov Nuryagdy Muhyyev! đź’ś
| OwlEyes Sources | Description |
|---|---|
| US-CERT | United States Computer Emergency and Readiness Team. |
| MA-CERT | Moroccan Computer Emergency Response Team. |
| CERT-FR | The French national government Computer Security Incident Response Team. |
| IBM X-Force Exchange | A cloud-based threat intelligence platform that allows to consume, share and act on threat intelligence. |
| ZeroDayInitiative | An international software vulnerability initiative that was started in 2005 by TippingPoint. |
| OBS Vigilance | Vigilance is an initiative created by OBS (Orange Business Services) since 1999 to watch public vulnerabilities and then offer security fixes, a database and tools to remediate them. |
| VulDB | Number one vulnerability database documenting and explaining security vulnerabilities, threats, and exploits since 1970. |
| HK-CERT | Hong Kong Computer Emergency Response Team Coordination Centre. |
| CA-CCS | Canadian Centre for Cyber Security. |
| EU-CERT | European Union Agency for Cybersecurity. |
| LINUX-SEC | Linux.org Linux Security Announcements (Automated). |
| CERT-SANTE | CERT Santé supports all health and social care establishments in responding to incidents.CERT Santé conducts audits of the exposure of IT systems to internet threats in order to assist healthcare establishments in reducing the risk of cyberattacks.CERT Santé also carries out preventive actions targeting specific threats and offers services designed to improve Information System security (of messaging services in particular). |
| Title | Description | Date |
|---|---|---|
| USN-6998-1: Unbound vulnerabilities | Visit link for details. | Sep 11, 2024 |
| USN-6994-1: Netty vulnerabilities | Visit link for details. | Sep 9, 2024 |
| USN-6997-1: LibTIFF vulnerability | Visit link for details. | Sep 9, 2024 |
| USN-6841-2: PHP vulnerability | Visit link for details. | Sep 9, 2024 |
| USN-6996-1: WebKitGTK vulnerabilities | Visit link for details. | Sep 9, 2024 |
| USN-6995-1: Thunderbird vulnerabilities | Visit link for details. | Sep 9, 2024 |
| DSA-5767-1 thunderbird - security update | Visit link for details. | Sep 8, 2024 |
| USN-6991-1: AIOHTTP vulnerability | Visit link for details. | Sep 5, 2024 |
| DSA-5766-1 chromium - security update | Visit link for details. | Sep 5, 2024 |
| DSA-5609-1 slurm-wlm - security update | Visit link for details. | Sep 5, 2024 |
| USN-6993-1: Vim vulnerabilities | Visit link for details. | Sep 5, 2024 |
| Title | Description | Date |
|---|
| Title | Description | Date |
|---|---|---|
| Adobe Monthly Security Update (September 2024) | Adobe has released monthly security update for their products: Vulnerable ProductRisk LevelImpactsNotesDetails (including CVE)Adobe Media Encoder Medium RiskRemote Code ExecutionInformation Disclosure APSB24-53Adobe Audition Medium RiskRemote... | Release Date: 11 Sep 2024 |
| Fortinet Products Multiple Vulnerabilities | Multiple vulnerabilities were identified in Fortinet Products. A remote attacker could exploit some of these vulnerabilities to trigger sensitive information disclosure, remote code execution and data manipulation on the targeted system. | Release Date: 11 Sep 2024 |
| Google Chrome Multiple Vulnerabilities | Multiple vulnerabilities were identified in Google Chrome. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition and remote code execution on the targeted system. | Release Date: 11 Sep 2024 |
| Microsoft Monthly Security Update (September 2024) | Microsoft has released monthly security update for their products: Vulnerable ProductRisk LevelImpactsNotesSQL Server Medium RiskRemote Code ExecutionInformation DisclosureElevation of Privilege Microsoft Office Extremely High RiskRemote Code ExecutionElevation of... | Release Date: 11 Sep 2024 |
| ChromeOS Multiple Vulnerabilities | Multiple vulnerabilities were identified in ChromeOS. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution, sensitive information disclosure and security restriction bypass on the targeted system. Notes:CVE-2024-7971 is being exploited in... | Release Date: 10 Sep 2024 |
| F5 Products Multiple Vulnerabilities | Multiple vulnerabilities were identified in F5 Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, sensitive information disclosure and security restriction bypass on the targeted system. Note:CVE-2024-... | Release Date: 9 Sep 2024 |
| Mozilla Products Multiple Vulnerabilities | Multiple vulnerabilities were identified in Mozilla Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, spoofing, remote code execution and security restriction bypass on the targeted system. [Updated on 2024-09-10]Updated System / Technologies... | Release Date: 5 Sep 2024 |
| SonicWall Products Denial of Service Vulnerability | A vulnerability has been identified in Sonicwall Products. A remote user can exploit this vulnerability to trigger security restriction bypass and denial of service condition on the targeted system. Note:CVE-2024-40766 is potentially being exploited in the wild. An... | Release Date: 27 Aug 2024 |
| IBM MQ Multiple Vulnerabilities | Multiple vulnerabilities were identified in IBM MQ. A remote attacker could exploit some of these vulnerabilities to trigger sensitive information disclosure, denial of service condition and security restriction bypass on the targeted system. | Release Date: 9 Sep 2024 |
| QNAP NAS Multiple Vulnerabilities | Multiple vulnerabilities were identified in QNAP NAS. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, security restriction bypass, sensitive information disclosure and elevation of privilege on the targeted system. | Release Date: 9 Sep 2024 |
| Title | Description | Date |
|---|
| Title | Description | Date |
|---|---|---|
| VICIdial SQL Injection (CVE-2024-8503) | Visit link for details | Sep 10, 2024 |
| VICIdial command execution (CVE-2024-8504) | Visit link for details | Sep 10, 2024 |
| Ivanti Workspace Control (IWC) privilege escalation (CVE-2024-44104) | Visit link for details | Sep 10, 2024 |
| Ivanti Workspace Control (IWC) privilege escalation (CVE-2024-8012) | Visit link for details | Sep 10, 2024 |
| Ivanti Cloud Services Appliance (CSA) code execution (CVE-2024-8190) | Visit link for details | Sep 10, 2024 |
| Visit link for details | ||
| Visit link for details |
| Title | Description | Date |
|---|---|---|
| [Control systems] ABB security advisory (AV24-513) | Visit link for details | 2024-09-11 |
| Google Chrome security advisory (AV24-512) | Visit link for details | 2024-09-11 |
| Adobe security advisory (AV24–511) | Visit link for details | 2024-09-10 |
| Microsoft security advisory – September 2024 monthly rollup (AV24-510) | Visit link for details | 2024-09-10 |
| Ivanti security advisory (AV24-509) | Visit link for details | 2024-09-10 |
| [Control systems] Schneider Electric security advisory (AV24-508) | Visit link for details | 2024-09-10 |
| [Control systems] Siemens security advisory (AV24–507) | Visit link for details | 2024-09-10 |
| SAP security advisory – September 2024 monthly rollup (AV24-506) | Visit link for details | 2024-09-10 |
| IBM security advisory (AV24-505) | Visit link for details | 2024-09-09 |
| Progress security advisory (AV24-504) | Visit link for details | 2024-09-09 |
| Dell security advisory (AV24-503) | Visit link for details | 2024-09-09 |
| Title | Description | Date |
|---|---|---|
| 2024-092: Critical Vulnerability in Veeam | On September 5, 2024, Veeam disclosed a critical remote code execution (RCE) vulnerability tracked as CVE-2024-40711, affecting Veeam Backup & Replication (VBR). This flaw allows unauthenticated attackers to execute arbitrary code on vulnerable systems (CVSS score: 9.8). VBR is a target for ransomware attacks, as it plays a key role in enterprise data protection. | Friday, September 06, 2024 12:10:44 PM CEST |
| 2024-091: High Severity Vulnerability in VMware Fusion for MacOS | On September 3, 2024, Broadcom disclosed a high-severity vulnerability in VMware Fusion, which could allow attackers to execute arbitrary code on macOS systems. | Wednesday, September 04, 2024 09:49:34 AM CEST |
| 2024-090: Multiple Vulnerabilities in Cisco NX-OS Software | On August 28, Cisco released patches for multiple vulnerabilities affecting its NX-OS software, primarily used in Nexus switches. The most severe of these is a high-severity denial-of-service (DoS) vulnerability in the DHCPv6 relay agent, which could allow an unauthenticated remote attacker to cause targeted devices to reload repeatedly, leading to a DoS condition. Additionally, several medium-severity vulnerabilities were addressed, including issues that could allow privilege escalation and unauthorised code execution. | Monday, September 02, 2024 09:40:58 AM CEST |
| 2024-089: Critical Vulnerability in SonicWall SonicOS | On August 23, 2024, SonicWall issued a security advisory regarding a critical access control vulnerability (CVE-2024-40766) in its SonicOS. This flaw could allow attackers to gain unauthorised access to resources or cause the firewall crash. | Tuesday, August 27, 2024 10:04:41 AM CEST |
| 2024-088: Chrome ZeroDay Vulnerabilities | A critical zero-day vulnerability, CVE-2024-7971, has been identified and patched in Google Chrome. This marks the ninth such vulnerability discovered in 2024. The flaw, which has been actively exploited in the wild, is rooted in a type confusion issue within Chrome's V8 JavaScript engine. This vulnerability allows attackers to potentially execute arbitrary code on affected systems. | Tuesday, August 27, 2024 10:52:26 AM CEST |
| 2024-085: Multiple Vulnerabilities in Moodle | On August 19, 2024, Moodle released a security advisory addressing sixteen vulnerabilities of various severities. | Wednesday, August 21, 2024 02:19:29 PM CEST |
| 2024-084: High Severity Vulnerabilities in F5 Products | On August 14, 2024, F5 released a security advisory addressing nine vulnerabilities in their products. Four of these vulnerabilities have been classified as high severity due to their potential to facilitate session hijacking and to lead to Denial-of-Service (DoS) attacks. | Wednesday, August 21, 2024 02:17:39 PM CEST |
| 2024-083: Palo Alto Cortex XSOAR CommonScripts Critical Vulnerability | On August 14, 2024, Palo Alto Networks released a security advisory for a critical command injection vulnerability, CVE-2024-5914, in Cortex XSOAR. This flaw allows unauthenticated attackers to execute arbitrary commands within the context of an integration container, potentially compromising the system. The vulnerability affects the product's CommonScripts Pack and is rated as high severity with a CVSS score of 9.0. | Tuesday, August 20, 2024 11:15:07 AM CEST |
| 2024-082: Zabbix Server Critical Arbitrary Code Execution Vulnerability | On August 13, 2024, a critical vulnerability, CVE-2024-22116, was disclosed in Zabbix Server, allowing attackers with restricted administrative permissions to execute arbitrary code. The flaw, identified in the Ping script execution within the Monitoring Hosts section, can compromise the entire infrastructure. The vulnerability carries a CVSS score of 9.9. | Friday, August 16, 2024 10:46:49 AM CEST |
| 2024-081: SolarWinds Web Help Desk Critical Remote Code Execution Vulnerability | On August 14, 2024, SolarWinds disclosed a critical remote code execution (RCE) vulnerability, CVE-2024-28986, affecting all versions of their Web Help Desk (WHD) software. The vulnerability, caused by a Java deserialization flaw, allows attackers to execute arbitrary commands on the affected system. The vulnerability has a CVSS score of 9.8. | Friday, August 16, 2024 10:41:49 AM CEST |
| 2024-080: Multiple Critical Vulnerabilities in Microsoft Products | On August 13, 2024, Microsoft addressed 89 vulnerabilities in its August 2024 Patch Tuesday update, including ten zero-day vulnerabilities. This Patch Tuesday also fixes six critical vulnerabilities. | Wednesday, August 14, 2024 04:09:11 PM CEST |
| Title | Description | Date |
|---|---|---|
| 49361109/24 - Vulnérabilités critiques dans les produits Ivanti | Plusieurs vulnérabilités critiques ont été corrigées dans les produits Ivanti susmentionnés. Les attaquants peuvent exploiter ces vulnérabilités pour exécuter du code arbitraire, porter atteinte à la… | 11 septembre 2024 |
| 49351109/24 - Vulnérabilités dans Citrix Workspace app | Citrix annonce la disponibilité d’une mise à jour de sécurité permettant la correction de deux vulnérabilités affectant Citrix Workspace app pour Windows. L’exploitation de ces failles peut permettre… | 11 septembre 2024 |
| 49341109/24 - Vulnérabilités dans plusieurs produits Microsoft (Patch Tuesday Septembre… | Microsoft annonce la correction de plusieurs vulnérabilités affectant les produits Microsoft susmentionnés. L’exploitation de ces failles peut permettre à un attaquant d’exécuter du code arbitraire,… | 11 septembre 2024 |
| 49331109/24 - Vulnérabilités critiques dans les produits Microsoft SQL Server (Patch… | Plusieurs vulnérabilités ont été corrigées dans les versions de Microsoft SQL Server susmentionnées. L’exploitation de ces failles permet à un attaquant d’exécuter du code arbitraire à distance, de… | 11 septembre 2024 |
| 49321109/24 - Vulnérabilités critiques dans les produits Microsoft Azure (Patch Tuesday… | Plusieurs vulnérabilités critiques ont été corrigées dans les produits Azure susmentionnés. L’exploitation de ces failles permet à un attaquant de réussir une élévation de privilèges, d’exécuter du… | 11 septembre 2024 |
| 49311109/24 - Vulnérabilités critiques dans Microsoft Windows (Patch Tuesday Septembre… | Microsoft annonce la correction de plusieurs vulnérabilités critiques y compris trois zero-day dans les systèmes d’exploitation Windows susmentionnés. Les trois zero-day sont :CVE-2024-38014 :… | 11 septembre 2024 |
| 49291109/24 - Vulnérabilités critiques dans Microsoft Office (Patch Tuesday Septembre… | Microsoft annonce la correction de plusieurs vulnérabilités critiques y compris un zero-day « CVE-2024-38226 » affectant les produits Microsoft office. Selon Microsoft l’exploitation du zero-day qui… | 11 septembre 2024 |
| 49281009/24 - Vulnérabilités critiques dans les produits SAP | SAP annonce la disponibilité d’une mise à jour de sécurité corrigeant plusieurs vulnérabilités critiques affectant les produits susmentionnés. L’exploitation de ces failles peut permettre à un… | 10 septembre 2024 |
| 49271009/24 - Vulnérabilité critique dans les produits SonicWall | Une vulnérabilité critique a été identifiée dans les versions susmentionnées des pare-feu SonicWall utilisant des versions vulnérables de SonicOS. SonicWall a révélé que la faille de sécurité affecte… | 10 septembre 2024 |
| 49260909/24 - Vulnérabilités dans les produits Qnap | Plusieurs vulnérabilités critiques ont été corrigées dans les produits Qnap susmentionnés. L’exploitation de ces failles peut permettre à un attaquant d’exécuter du code arbitraire à distance, de… | 10 septembre 2024 |
| Title | Description | Date |
|---|---|---|
| Microsoft - CVE-2024-38106 | Visit link for details. | 11/09/2024 |
| GitHub - CVE-2024-0200 | Visit link for details. | 11/09/2024 |
| D-Link - CVE-2024-44335 | Visit link for details. | 10/09/2024 |
| HAPI FHIR - CVE-2024-45294 | Visit link for details. | 10/09/2024 |
| Zyxel - CVE-2024-7261 | Visit link for details. | 10/09/2024 |
| HPE - CVE-2024-42500 | Visit link for details. | 10/09/2024 |
| Red Hat Satellite - CVE-2024-7012 | Visit link for details. | 10/09/2024 |
| Veeam Backup & Replication - CVE-2024-40711 | Visit link for details. | 10/09/2024 |
| Veeam One - CVE-2024-42019 | Visit link for details. | 09/09/2024 |
| Veeam - CVE-2024-40713 | Visit link for details. | 09/09/2024 |
| Baxter Connex Health Portal - CVE-2024-6796 | Visit link for details. | 09/09/2024 |