Tag: authentication bypass
CISA Warns of Active Exploitation in Palo Alto Firewall OS Flaw
The flaw enables remote attackers to bypass authentication and establish unauthorized VPN access on Palo Alto firewalls, with active exploitation…
Active Exploitation of PAN OS Authentication Flaw Targets Global Protect Gateways
Threat actors are actively exploiting an authentication bypass flaw in Palo Alto Networks PAN OS that allows forged cookies to…
Active Attacks Target cPanel Flaw to Install Filemanager Backdoor
Threat actors are actively exploiting a critical cPanel authentication bypass flaw to drop a cross-platform backdoor and steal credentials from…
Cisco Secure Workload Flaw Opens Door to Full System Takeover via API
The critical bug in Cisco Secure Workload requires no authentication and grants attackers full Site Admin control via internal REST…
Four-Faith Industrial Routers Exploited to Fuel Global Botnet Campaign
Attackers are exploiting a critical authentication bypass flaw in Four-Faith industrial routers to enroll them into botnets for DDoS and…
Cisco SD-WAN Auth Bypass Under Active Attack as CISA Sets Remediation Deadline
CISA mandates federal agencies patch a critical Cisco SD WAN authentication bypass by May 17 as threat actors exploit the…
Critical Zero-Day in Cisco SD-WAN Controller Allows Full Admin Takeover
The flaw gives unauthenticated attackers full administrative control over enterprise SD-WAN infrastructure without any valid credentials.
Attackers Exploit Unpatched PraisonAI API Authentication Gap
Attackers began probing PraisonAI deployments within hours of the advisory, scanning for the exposed /agents and /chat endpoints on internet…