Privilege Escalation - Geek Feed

Critical RCE bug in VMware vCenter Server now exploited in attacks

November 18, 2024November 18, 2024 geekfeed0Tagged Actively Exploited, Broadcom, Elevation of Privileges, Privilege Escalation, rce, Remote Code Execution, vCenter Server, vmware

Broadcom warned today that attackers are now exploiting two VMware vCenter Server vulnerabilities, one of which is a critical remote code execution flaw. TZL security researchers reported the RCE vulnerability (CVE-2024-38812) during China’s 2024 Matrix Cup hacking contest. It is caused by a heap overflow weakness in the vCenter’s DCE/RPC protocol implementation and affects products […]

2 mins read

LiteSpeed Cache WordPress plugin bug lets hackers get admin access

November 1, 2024November 1, 2024 geekfeed0Tagged Elevation of Privileges, hackers, LiteSpeed Cache, Plugin, Privilege Escalation, wordpress

The free version of the popular WordPress plugin LiteSpeed Cache has fixed a dangerous privilege elevation flaw on its latest release that could allow unauthenticated site visitors to gain admin rights. LiteSpeed Cache is a caching plugin used by over six million WordPress sites, helping to speed up and improve user browsing experience. The newly discovered high-severity flaw […]

3 mins read