CVE-2025-32408 – Soffid Console Java Deserialization Remote Code Execution

April 21, 2025

CVE ID : CVE-2025-32408

Published : April 21, 2025, 1:15 p.m. | 45 minutes ago

Description : In Soffid Console 3.5.38 before 3.5.39, necessary checks were not applied to some Java objects. A malicious agent could possibly execute arbitrary code in the Sync Server and compromise security.

Severity: 8.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleThe “industry’s first” SD Express 8.0 card is here, and it’s coming for your SSD

Next Article CVE-2024-55211 – Think Router Tk-Rt-Wr135G Authentication Bypass

Highlights

CVE-2025-32959 – CUBA Platform Denial of Service File Upload Vulnerability

April 22, 2025

CVE ID : CVE-2025-32959

Published : April 22, 2025, 6:16 p.m. | 31 minutes ago

Description : CUBA Platform is a high level framework for enterprise applications development. Prior to version 7.2.23, the local file storage implementation does not restrict the size of uploaded files. An attacker could exploit this by uploading excessively large files, potentially causing the server to run out of space and return HTTP 500 error, resulting in a denial of service. This issue has been patched in version 7.2.23. A workaround is provided on the Jmix documentation website.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

In MCP era API discoverability is now more important than ever

Black Myth: Wukong is coming to Xbox exactly one year after launching on PlayStation

Reddit wants to sue Anthropic for stealing its data, but the Claude AI manufacturers vow to “defend ourselves vigorously”

Satya Nadella says Microsoft makes money every time you use ChatGPT: “Every day that ChatGPT succeeds is a fantastic day”

Multiple reports suggest a Persona 4 Remake from Atlus will be announced during the Xbox Games Showcase

TC39 advances numerous proposals at latest meeting

TC39 advances numerous proposals at latest meeting

TypeBridge – zero ceremony, compile time rpc for client and server com

Simplify Cloud-Native Development with Quarkus Extensions

Black Myth: Wukong is coming to Xbox exactly one year after launching on PlayStation

Black Myth: Wukong is coming to Xbox exactly one year after launching on PlayStation

Reddit wants to sue Anthropic for stealing its data, but the Claude AI manufacturers vow to “defend ourselves vigorously”

Satya Nadella says Microsoft makes money every time you use ChatGPT: “Every day that ChatGPT succeeds is a fantastic day”

CVE-2025-32408 – Soffid Console Java Deserialization Remote Code Execution

Leadership, Trust, and Cyber Hygiene: NCSC’s Guide to Security Culture in Action

CVE-2025-4318 Critical RCE in AWS Amplify Codegen UI

You can build a Lego set of Nintendo’s GameBoy console this year

DolphinGemma: How Google AI is helping decode dolphin communication

This smart air purifier effectively replaced allergy medicine for me – and it’s impressively quiet

Microsoft’s Copilot Vision is now free for all Edge users – here’s how it works

CVE-2025-32959 – CUBA Platform Denial of Service File Upload Vulnerability

CVE-2025-39357 – Mojoomla Hospital Management System SQL Injection

OSI releases latest draft of Open Source AI Definition

FreedomBox – Debian-based distribution

CVE-2025-32408 – Soffid Console Java Deserialization Remote Code Execution

Related Posts