Development

Active! Mail RCE flaw exploited in attacks on Japanese orgs

Active! Mail RCE flaw exploited in attacks on Japanese orgs

An Active! Mail zero-day remote code execution vulnerability is actively exploited in attacks on large organizations in Japan.
Active! mail is a web-based email client developed initially by TransWARE …
Read more

Published Date:
Apr 22, 2025 (4 hours, 36 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-42599

“ConfusedComposer”: GCP Composer Vulnerability Allows Privilege Escalation

“ConfusedComposer”: GCP Composer Vulnerability Allows Privilege Escalation

Tenable Research has identified a now-patched privilege-escalation vulnerability in Google Cloud Platform (GCP) dubbed “Confused Composer”. The vulnerability existed within Cloud Composer and could ha …
Read more

Published Date:
Apr 23, 2025 (1 hour, 35 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2024-48510

Zyxel Patches High-Severity Security Flaws in USG FLEX H Firewalls

Zyxel Patches High-Severity Security Flaws in USG FLEX H Firewalls

Zyxel has released patches to address security vulnerabilities in its USG FLEX H series firewalls, urging users to install them for optimal protection. The vulnerabilities involve incorrect permission …
Read more

Published Date:
Apr 23, 2025 (1 hour, 16 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-1732

CVE-2025-1731

CVE-2022-46414

Two Critical RCE Flaws Expose Yi IOT Smart Cameras to Full Device Takeover

Two Critical RCE Flaws Expose Yi IOT Smart Cameras to Full Device Takeover

Security researcher Yassine Damiri has uncovered two critical vulnerabilities in the Yi IOT XY-3820 smart camera, posing significant security risks. Both flaws, rated CVSS 9.8, allow unauthenticated a …
Read more

Published Date:
Apr 23, 2025 (1 hour, 2 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-29660

CVE-2025-29659

CVE-2025-25427

Stored XSS Flaw in TP-Link WR841N Routers Could Expose Admin Credentials (CVE-2025-25427)

Stored XSS Flaw in TP-Link WR841N Routers Could Expose Admin Credentials (CVE-2025-25427)

A security vulnerability has been identified in TP-Link WR841N routers, posing a risk to users. The vulnerability is a stored cross-site scripting (XSS) flaw found in the “upnp.htm” page of the web in …
Read more

Published Date:
Apr 23, 2025 (55 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-25427

CVE-2024-57040

CVE-2024-42815

CVE-2023-1389

IBM HMC Vulnerable to Privilege Escalation Attacks

IBM HMC Vulnerable to Privilege Escalation Attacks

Two security vulnerabilities have been disclosed in the IBM Hardware Management Console (HMC) for Power Systems, both of which could allow a local user to gain elevated privileges.
CVE-2025-1950: Impr …
Read more

Published Date:
Apr 23, 2025 (52 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-1951

CVE-2025-1950

CVE-2025-25427

CVE-2024-0114

CVE-2025-3441 – CVE-2022-1234: Adobe Flash Type Confusion Vulnerability

CVE ID : CVE-2025-3441

Published : April 22, 2025, 11:15 p.m. | 3 hours, 38 minutes ago

Description : Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…