Tag: #vulnerability
GitLab has issued a critical security alert regarding a severe vulnerability in its GitLab Community and Enterprise editions, potentially allowing attackers to execute pipeline jobs as other users. With over 30 million registered users and adoption by more than 50% of Fortune 100 companies, including T-Mobile, Goldman Sachs, Airbus, Lockheed Martin, Nvidia, and UBS, this […]
Cisco’s NX-OS zero-day vulnerability (CVE-2024-20399) has been actively exploited by the Chinese state-sponsored threat actor known as Velvet Ant, highlighting the urgent need for cybersecurity professionals and network administrators to secure affected systems. In a forensic investigation led by Sygnia, it was discovered that Velvet Ant gained administrator-level credentials to access Cisco Nexus switches and […]
A critical GitLab vulnerability has been identified, tracked as CVE-2024-5655, affecting certain versions of GitLab Community and Enterprise Editions. This severe issue, with a CVSS score of 9.6 out of 10, enables attackers to run pipelines as any user, posing a significant security risk. It impacts all GitLab CE/EE versions from 15.8 through 16.11.4, 17.0.0 […]