CVE-2025-4378 – Ataturk University ATA-AOF Mobile Application Cleartext Transmission and Hard-coded Credentials Vulnerability

June 24, 2025

CVE ID : CVE-2025-4378

Published : June 24, 2025, 5:15 p.m. | 1 hour, 38 minutes ago

Description : Cleartext Transmission of Sensitive Information, Use of Hard-coded Credentials vulnerability in Ataturk University ATA-AOF Mobile Application allows Authentication Abuse, Authentication Bypass.This issue affects ATA-AOF Mobile Application: before 20.06.2025.

Severity: 10.0 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2024-56916 – Netbox Community XSS: Cross-Site Scripting in Configuration History

Next Article CVE-2024-56918 – Netbox Community XSS Vulnerability

Highlights

CVE-2025-5850 – Tenda AC15 HTTP POST Request Handler Buffer Overflow Vulnerability

June 9, 2025

CVE ID : CVE-2025-5850

Published : June 8, 2025, 11:15 p.m. | 4 hours, 29 minutes ago

Description : A vulnerability was found in Tenda AC15 15.03.05.19_multi. It has been declared as critical. This vulnerability affects the function formsetschedled of the file /goform/SetLEDCf of the component HTTP POST Request Handler. The manipulation of the argument Time leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Coded Smorgasbord: High Strung

Chainguard launches trusted collection of verified JavaScript libraries

CData launches Connect AI to provide agents access to enterprise data sources

PostgreSQL 18 adds asynchronous I/O to improve performance

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

DistroWatch Weekly, Issue 1140

PHP 8.5.0 RC 1 available for testing

PHP 8.5.0 RC 1 available for testing

Terraform Code Generator Using Ollama and CodeGemma

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

CVE-2025-4378 – Ataturk University ATA-AOF Mobile Application Cleartext Transmission and Hard-coded Credentials Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Best early Labor Day phone deals 2025: Save up to $300 on Samsung, Google, and more

AI Agents Act Like Employees With Root Access—Here’s How to Regain Control

CVE-2025-20276 – “Cisco Unified CCX Java Deserialization Remote Code Execution Vulnerability”

U.S. Lawmakers Target ‘Adversarial AI’ in Bipartisan Push to Fortify Federal Systems

CVE-2025-5850 – Tenda AC15 HTTP POST Request Handler Buffer Overflow Vulnerability

CVE-2025-1419 – Konsola Proget Stored Cross-Site Scripting Vulnerability

How to Add Page Numbers and Sections in Adobe InDesign

CVE-2025-7417 – Tenda O3V2 HTTPd Stack-Based Buffer Overflow

CVE-2025-4378 – Ataturk University ATA-AOF Mobile Application Cleartext Transmission and Hard-coded Credentials Vulnerability

Related Posts