Command Injection Vulnerability Archives

CISA and FBI Issue Alert on OS Command Injection Vulnerabilities

Rohan Timalsina | July 23, 2024 | CISA Advisory, CISA Threat Update, Cisco Vulnerabilities, command injection, Command Injection Vulnerability, FBI alert, FBI warning, Ivanti Vulnerabilities, Linux & Open Source News, MITRE ATTACK, OS command injection, OS command injection prevention, OS command injection vulnerabilities, Palo Alto Networks, secure by design, Secure by Design Alert

CISA and FBI issued a critical advisory on July 10, 2024, urging software companies to review their products and eliminate OS command injection vulnerabilities at the source. This urgent call comes in ...

TuxCare

Velvet Ant Exploits Cisco Zero-Day Flaw

Wajahat Raja | July 16, 2024 | China-nexus cyber espionage, Cisco NX-OS vulnerability, Command Injection Vulnerability, CVE-2024-20399, Cybersecurity News, Cybersecurity zero-day flaw

Recent events in the cybersecurity landscape have brought to light the activities of a China-nexus cyber espionage group known as Velvet Ant. The threat actor group has been observed exploiting a zero-day ...

TuxCare

Palo Alto Networks PAN-OS Command Injection Vulnerability (CVE-2024-3400)

NSFOCUS | April 17, 2024 | Blog, Command Injection Vulnerability, CVE-2024-3400, Emergency Response, Palo Alto Networks, PAN-OS

Overview Recently, NSFOCUS CERT detected that Palo Alto Networks issued a security announcement and fixed the command injection vulnerability (CVE-2024-3400) in PAN-OS. Since GlobalProtect gateway or portal configured in PAN-OS does not ...

NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.