Summary of Security Updates for December 5, 2024

• Critical Vulnerabilities in Veeam Products
• Zero-Day Vulnerabilities in I-O Data Routers
• New DroidBot Android Malware
• Critical Vulnerability in CyberPanel
• Critical XSS Vulnerability in SolarWinds Platform
• Critical Vulnerability in Infinix Mobile Devices Software
• CISA Guidance on Salt Typhoon Threat
• High-Severity Vulnerability in SolarWinds Platform Patched
• Critical SQL Injection Vulnerability Patched in Django Web Framework
• Critical Flaws in HPE Aruba ClearPass Allow Remote Code Execution
• Critical Remote Denial-of-Service Vulnerability Found in Moxa VPort 07-3 Series
• Compromise of Solana Crypto Wallets Due to a Third-Party Library
• NIST Revamps Password Guidelines
• MirrorFace Targets Japan in Sophisticated Cyber Espionage
• Onapsis Enhances SAP BTP Security
• Senators Demand Probe into Pentagon's Susceptible Communication Systems.

For more information in the SecureResearch Daily Cyber Intelligence Brief, email info@secureresearch.com