Zero-day Attack - Geek Feed

Ivanti warns of new Connect Secure flaw used in zero-day attacks

January 10, 2025January 10, 2025 geekfeed0Tagged Connect Secure, CVE-2025-0282, CVE-2025-0283, Ivanti, malware, rce, Remote Code Execution, vulnerability, Zero-Day, Zero-day Attack

Ivanti is warning that hackers exploited a Connect Secure remote code execution vulnerability tracked as CVE-2025-0282 in zero-day attacks to install malware on appliances. The company says it became aware of the vulnerabilities after the Ivanti Integrity Checker Tool (ICT) detected malicious activity on customers’ appliances. Ivanti launched an investigation and confirmed that threat actors were actively […]

3 mins read

Oracle warns of Agile PLM file disclosure flaw exploited in attacks

November 20, 2024November 20, 2024 geekfeed0Tagged Actively Exploited, CVE-2024-21287, Oracle, Oracle Agile PLM, vulnerability, zero day, Zero-day Attack

Oracle has fixed an unauthenticated file disclosure flaw in Oracle Agile Product Lifecycle Management (PLM) tracked as CVE-2024-21287, which was actively exploited as a zero-day to download files. Oracle Agile PLM is a software platform that enables businesses to manage product data, processes, and collaboration across global teams. Yesterday, Oracle urged Agile PLM customers to install the […]

1 min read