Development

The blog explores how the EU AI Act regulates general-purpose AI (GPAI) models, especially those posing systemic risks due to their scale, reach, and potential for misuse. It outlines how such models are identified, what legal obligations providers must meet, and how the AI Office enforces compliance.
The post How General-Purpose AI (GPAI) Models Are Regulated first appeared on TestingXperts.

1000+ Unique IPs Attacking Ivanti Connect Secure Systems to Exploit Vulnerabilities

A significant increase in suspicious scanning activity targeting Ivanti Connect Secure (ICS) and Ivanti Pulse Secure (IPS) VPN systems, signaling a potential coordinated reconnaissance effort by threa …
Read more

Published Date:
Apr 24, 2025 (5 hours, 24 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-22457

SonicWall SSLVPN Vulnerability Let Remote Attackers Crash Firewall Appliances

SonicWall has disclosed a critical security vulnerability in its SSLVPN service that allows unauthenticated remote attackers to crash affected firewall appliances, potentially causing significant disr …
Read more

Published Date:
Apr 24, 2025 (2 hours, 53 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-32818

Understanding 2024 cyber attack trends

Mandiant has released the M-Trends 2025 report, which outlines global cyber attack trends based on their own incident response engagements from 2024.
Key trends and insights
In 2024, Mandiant handled …
Read more

Published Date:
Apr 24, 2025 (1 hour, 51 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2024-3400

CVE-2023-48788

CVE-2024-21887

CVE-2023-46805

CVE ID : CVE-2025-0639

Published : April 24, 2025, 8:15 a.m. | 2 hours, 28 minutes ago

Description : An issue has been discovered affecting service availability via issue preview in GitLab CE/EE affecting all versions from 16.7 before 17.9.7, 17.10 before 17.10.5, and 17.11 before 17.11.1.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-1908

Published : April 24, 2025, 8:15 a.m. | 2 hours, 28 minutes ago

Description : An issue has been discovered in GitLab EE/CE that could allow an attacker to track users’ browsing activities, potentially leading to full account take-over, affecting all versions from 16.6 before 17.9.7, 17.10 before 17.10.5, and 17.11 before 17.11.1.

Severity: 7.7 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2024-12244

Published : April 24, 2025, 8:15 a.m. | 2 hours, 28 minutes ago

Description : An issue has been discovered in access controls could allow users to view certain restricted project information even when related features are disabled in GitLab EE, affecting all versions from 17.7 prior to 17.9.7, 17.10 prior to 17.10.5, and 17.11 prior to 17.11.1.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE ID : CVE-2025-1284

Published : April 24, 2025, 9:15 a.m. | 1 hour, 28 minutes ago

Description : The Woocommerce Automatic Order Printing | ( Formerly WooCommerce Google Cloud Print) plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.1 via the xc_woo_printer_preview AJAX action due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Subscriber-level access and above, to view other user’s invoices and orders which can contain sensitive information.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…