CVE-2024-48248 – Threat Note

From Cybersecurity Help – Cyber Security Week in Review: March 21, 2025

In brief: Windows zero-day abused in widespread APT campaigns, the US lifts sanctions on Tornado Cash, and more. Read More

shaikh Saqib March 21, 2025

News

From Security Week – CISA Warns of Exploited Nakivo Vulnerability

[[{"value":"CISA has added an absolute path traversal bug in Nakivo Backup and Replication to its Known Exploited Vulnerabilities list. The post CISA Warns of Exploited Nakivo Vulnerability appeared first on…

shaikh Saqib March 20, 2025

News

From The Hacker News – CISA Adds NAKIVO Vulnerability to KEV Catalog Amid Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity security flaw impacting NAKIVO Backup & Replication software to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability in question is CVE-2024-48248 (CVSS score: 8.6), an absolute path traversal bug that could allow an unauthenticated attacker to

shaikh Saqib March 20, 2025

News

From Dark Reading – Nakivo Fixes Critical Flaw in Backup & Replication Tool

The vendor's products fall in a category that ransomware operators like to target to circumvent victims' ability to recover from a successful attack. Read More

shaikh Saqib February 28, 2025