CVE-2025-30409 – Acronis Cyber Protect Cloud Agent Denial of Service

April 24, 2025

CVE ID : CVE-2025-30409

Published : April 24, 2025, 2:15 p.m. | 44 minutes ago

Description : Denial of service due to allocation of resources without limits. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39904.

Severity: 5.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-43855 – Apache tRPC WebSocket Server Crash Vulnerability (Denial of Service)

Next Article CVE-2025-30408 – Acronis Cyber Protect Cloud Agent Windows Privilege Escalation

Highlights

CVE-2025-47275 – Auth0-PHP Session Cookie Brute Force

May 15, 2025

CVE ID : CVE-2025-47275

Published : May 15, 2025, 10:15 p.m. | 1 hour, 7 minutes ago

Description : Auth0-PHP provides the PHP SDK for Auth0 Authentication and Management APIs. Starting in version 8.0.0-BETA1 and prior to version 8.14.0, session cookies of applications using the Auth0-PHP SDK configured with CookieStore have authentication tags that can be brute forced, which may result in unauthorized access. Certain pre-conditions are required to be vulnerable to this issue: Applications using the Auth0-PHP SDK, or the Auth0/symfony, Auth0/laravel-auth0, and Auth0/wordpress SDKs that rely on the Auth0-PHP SDK; and session storage configured with CookieStore. Upgrade Auth0/Auth0-PHP to v8.14.0 to receive a patch. As an additional precautionary measure, rotating cookie encryption keys is recommended. Note that once updated, any previous session cookies will be rejected.

Severity: 9.1 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Development tool updates from WWDC: Foundation Models framework, Xcode 26, Swift 6.2, and more

Decoding The SVG path Element: Line Commands

Your favorite AI chatbot is lying to you all the time

Your CarPlay is getting a major overhaul on iOS 26: 3 new features arriving to your dashboard

Every iPad model that supports iPadOS 26 (and which ones won’t be compatible)

Why I recommend this Lenovo Android tablet to most people – especially at this price

Community News: Latest PECL Releases (06.10.2025)

Community News: Latest PECL Releases (06.10.2025)

SOLID Design Principles Every JavaScript Deveveloper Should Know

Perficient Boldly Advances Business Through Technology Partnerships and Collaborative Innovation

Final Fantasy XVI launches on Xbox, and FF VII Remake Intergrade is coming this winter

Final Fantasy XVI launches on Xbox, and FF VII Remake Intergrade is coming this winter

PowerToys Run adds Internet speed test, video downloader & more

Not Rumor Anymore: Persona 4 Revival Announced At Xbox Games Showcase 2025

CVE-2025-30409 – Acronis Cyber Protect Cloud Agent Denial of Service

SAP waarschuwt voor nieuwe kritieke NetWeaver-kwetsbaarheid

Ivanti Workspace Control hardcoded key flaws expose SQL credentials

CVE-2025-5065 – Google Chrome FileSystemAccess API UI Spoofing Vulnerability

Why MongoDB is the Perfect Fit for a Unified Namespace

Postman introduces Agent Mode to integrate the power of AI agents into Postman’s core capabilities

The emperors of AI coding tools have no clothes – and it’s creating a productivity delusion

CVE-2025-47275 – Auth0-PHP Session Cookie Brute Force

CVE-2025-3841 – Wix Incubator Jam Jinja2 Template Handler Template Injection Vulnerability

RedGolf Hackers Expose Fortinet Exploits & Tools Used to Hack Organizations

NVIDIA AI Releases Describe Anything 3B: A Multimodal LLM for Fine-Grained Image and Video Captioning

CVE-2025-30409 – Acronis Cyber Protect Cloud Agent Denial of Service

Related Posts