Week 16 of 2024

• CVE-2024-24996 and CVE-2024-29204: More Critical Flaws in Ivanti Products: Avalanche MDM
• CVE-2024-31497: Critical PuTTY Vulnerability Allows Secret Key Recovery
• CVE-2024-28890, CVE-2024-31077, and CVE-2024-31857: Critical Vulnerabilities Forminator WordPress Plugin
• Attackers Targeting VPN, SSH, and Web Applications with millions of login attempts
• CVE-2024-3400: Palo Alto PAN-OS Vulnerability

Brought to you by Brad Causey, CISSP and Joey Vandegrift at SecurIT360