CVE-2025-32801 – Kea Root Privilege Escalation Remote Code Execution

May 28, 2025

CVE ID : CVE-2025-32801

Published : May 28, 2025, 5:15 p.m. | 22 minutes ago

Description : Kea configuration and API directives can be used to load a malicious hook library. Many common configurations run Kea as root, leave the API entry points unsecured by default, and/or place the control sockets in insecure paths.
This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8.

Severity: 7.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-32802 – Kea File Overwrite Vulnerability

Next Article CVE-2024-47056 – Mautic Sensitive Information Disclosure

Highlights

CVE-2025-7165 – PHPGurukul/Campcodes Cyber Cafe Management System SQL Injection Vulnerability

July 8, 2025

CVE ID : CVE-2025-7165

Published : July 8, 2025, 6:15 a.m. | 36 minutes ago

Description : A vulnerability was found in PHPGurukul/Campcodes Cyber Cafe Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Top 10 Use Cases of Vibe Coding in Large-Scale Node.js Applications

Cloudsmith launches ML Model Registry to provide a single source of truth for AI models and datasets

Kong Acquires OpenMeter to Unlock AI and API Monetization for the Agentic Era

Microsoft Graph CLI to be retired

‘Cronos: The New Dawn’ was by far my favorite experience at Gamescom 2025 — Bloober might have cooked an Xbox / PC horror masterpiece

ASUS built a desktop gaming PC around a mobile CPU — it’s an interesting, if flawed, idea

Hollow Knight: Silksong arrives on Xbox Game Pass this week — and Xbox’s September 1–7 lineup also packs in the horror. Here’s every new game.

The Xbox remaster that brought Gears to PlayStation just passed a huge milestone — “ending the console war” and proving the series still has serious pulling power

Magento (Adobe Commerce) or Optimizely Configured Commerce: Which One to Choose

Magento (Adobe Commerce) or Optimizely Configured Commerce: Which One to Choose

Updates from N|Solid Runtime: The Best Open-Source Node.js RT Just Got Better

Scale Your Business with AI-Powered Solutions Built for Singapore’s Digital Economy

‘Cronos: The New Dawn’ was by far my favorite experience at Gamescom 2025 — Bloober might have cooked an Xbox / PC horror masterpiece

‘Cronos: The New Dawn’ was by far my favorite experience at Gamescom 2025 — Bloober might have cooked an Xbox / PC horror masterpiece

ASUS built a desktop gaming PC around a mobile CPU — it’s an interesting, if flawed, idea

Hollow Knight: Silksong arrives on Xbox Game Pass this week — and Xbox’s September 1–7 lineup also packs in the horror. Here’s every new game.

CVE-2025-32801 – Kea Root Privilege Escalation Remote Code Execution

CISA Adds TP-Link and WhatsApp Flaws to KEV Catalog Amid Active Exploitation

Pennsylvania Attorney General’s Office Recovers from Ransomware Attack

Linux’s Ascendancy: Charting the Open-Source Surge in the Desktop OS Arena

LocalStack is a cloud service emulator

Top Vertiv Server Rack Supplier in India | Certified Dealer

Debouncing vs Throttling in JavaScript: When to Use Each

CVE-2025-7165 – PHPGurukul/Campcodes Cyber Cafe Management System SQL Injection Vulnerability

ResolverRAT Campaign Targets Healthcare, Pharma via Phishing and DLL Side-Loading

Tamari – fully-featured recipe manager

ISO 20022 – End of MT Coexistence for Cash Instructions Fast Approaching

CVE-2025-32801 – Kea Root Privilege Escalation Remote Code Execution

Related Posts