Security

Cisco scores a perfect 10 – sadly for a critical flaw in its comms platform

July 2, 2025

Cisco scores a perfect 10 – sadly for a critical flaw in its comms platform

If you’re running the Engineering-Special (ES) builds of Cisco Unified Communications Manager or its Session Management Edition, you need to apply Cisco’s urgent patch after someone at Switchzilla mad …
Read more

Published Date:
Jul 02, 2025 (5 hours, 15 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-20309

Linux Servers Hijacked: Attackers Install Legitimate Proxy Software for Covert Operations

July 2, 2025

Linux Servers Hijacked: Attackers Install Legitimate Proxy Software for Covert Operations

The AhnLab SEcurity intelligence Center (ASEC) has uncovered a series of attacks on poorly secured Linux servers, where instead of deploying classic malware, attackers quietly install legitimate proxy …
Read more

Published Date:
Jul 03, 2025 (3 hours, 35 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2023-49606

CVE-2025-20309 (CVSS 10): Cisco Patches Critical Static SSH Root Credential Flaw in Unified CM

July 2, 2025

CVE-2025-20309 (CVSS 10): Cisco Patches Critical Static SSH Root Credential Flaw in Unified CM

Cisco has disclosed a critical vulnerability in its Unified Communications Manager (Unified CM) and Session Management Edition (SME) platforms. Tracked as CVE-2025-20309 and rated CVSS 10, the flaw ex …
Read more

Published Date:
Jul 03, 2025 (2 hours, 9 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-20309

CVE-2025-20282

CVE-2025-20281

CVE-2025-36560

CVE-2025-31103

Four Critical RCE Flaws Found in Grafana Plugins via Chromium: Patch Now!

July 2, 2025

Four Critical RCE Flaws Found in Grafana Plugins via Chromium: Patch Now!

Grafana Labs has issued an urgent security advisory addressing four critical vulnerabilities affecting two of its key components: the Grafana Image Renderer plugin and the Synthetic Monitoring Agent. …
Read more

Published Date:
Jul 03, 2025 (1 hour, 38 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-6554

CVE-2025-6192

CVE-2025-6191

CVE-2025-5959

Development

China-linked Salt Typhoon Exploits Critical Cisco Vulnerability to Target Canadian Telecom

July 2, 2025

The Canadian Centre for Cyber Security and the U.S. Federal Bureau of Investigation (FBI) have issued an advisory warning of…

Development

APT28 Uses Signal Chat to Deploy BEARDSHELL Malware and COVENANT in Ukraine

July 2, 2025

The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of a new cyber attack campaign by the Russia-linked APT28…

Development

Hackers Target Over 70 Microsoft Exchange Servers to Steal Credentials via Keyloggers

July 2, 2025

Unidentified threat actors have been observed targeting publicly exposed Microsoft Exchange servers to inject malicious code into the login pages…

Development

Citrix Releases Emergency Patches for Actively Exploited CVE-2025-6543 in NetScaler ADC

July 2, 2025

Citrix has released security updates to address a critical flaw affecting NetScaler ADC that it said has been exploited in…

Development

CISA Adds 3 Flaws to KEV Catalog, Impacting AMI MegaRAC, D-Link, Fortinet

July 2, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added three security flaws, each impacting AMI MegaRAC, D-Link DIR-859…

Development

Critical RCE Flaws in Cisco ISE and ISE-PIC Allow Unauthenticated Attackers to Gain Root Access

July 2, 2025

Cisco has released updates to address two maximum-severity security flaws in Identity Services Engine (ISE) and ISE Passive Identity Connector…

Development

MOVEit Transfer Faces Increased Threats as Scanning Surges and CVE Flaws Are Targeted

July 2, 2025

Threat intelligence firm GreyNoise is warning of a “notable surge” in scanning activity targeting Progress MOVEit Transfer systems starting May…

Development

Over 1,000 SOHO Devices Hacked in China-linked LapDogs Cyber Espionage Campaign

July 2, 2025

Threat hunters have discovered a network of more than 1,000 compromised small office and home office (SOHO) devices that have…

Development

Blind Eagle Uses Proton66 Hosting for Phishing, RAT Deployment on Colombian Banks

July 2, 2025

The threat actor known as Blind Eagle has been attributed with high confidence to the use of the Russian bulletproof…

Development

Chrome Zero-Day CVE-2025-6554 Under Active Attack — Google Issues Security Update

July 2, 2025

Google has released security updates to address a vulnerability in its Chrome browser for which an exploit exists in the…

Development

Critical Vulnerability in Anthropic’s MCP Exposes Developer Machines to Remote Exploits

July 2, 2025

Cybersecurity researchers have discovered a critical security vulnerability in artificial intelligence (AI) company Anthropic’s Model Context Protocol (MCP) Inspector project…

Swiss government warns attackers have stolen sensitive data, after ransomware attack at Radix

July 2, 2025

The Swiss government has issued a warning after a third-party service provider suffered a ransomware attack, which saw sensitive information…

Development

North Korean Hackers Target Web3 with Nim Malware and Use ClickFix in BabyShark Campaign

July 2, 2025

Threat actors with ties to North Korea have been observed targeting Web3 and cryptocurrency-related businesses with malware written in the…

Smashing Security podcast #424: Surveillance, spyware, and self-driving snafus

July 2, 2025

A Mexican drug cartel spies on the FBI using traffic cameras and spyware — because “ubiquitous technical surveillance” is no…

CISA warns the Signal clone used by natsec staffers is being attacked, so patch now

July 2, 2025

CISA warns the Signal clone used by natsec staffers is being attacked, so patch now

The US security watchdog CISA has warned that malicious actors are actively exploiting two flaws in the Signal clone TeleMessage TM SGNL, and has directed federal agencies to patch the flaws or discon …
Read more

Published Date:
Jul 02, 2025 (3 hours ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-48928

CVE-2025-48927

CVE-2025-34074 – Lucee Remote Code Execution Vulnerability in Scheduled Task Functionality

July 2, 2025

CVE ID : CVE-2025-34074

Published : July 2, 2025, 8:15 p.m. | 1 hour, 45 minutes ago

Description : An authenticated remote code execution vulnerability exists in Lucee’s administrative interface due to insecure design in the scheduled task functionality. An administrator with access to /lucee/admin/web.cfm can configure a scheduled job to retrieve a remote .cfm file from an attacker-controlled server, which is written to the Lucee webroot and executed with the privileges of the Lucee service account. Because Lucee does not enforce integrity checks, path restrictions, or execution controls for scheduled task fetches, this feature can be abused to achieve arbitrary code execution. This issue is distinct from CVE-2024-55354.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Highlights

CVE-2024-49364 – Tiny-SECP256k1 Buffer Package Private Key Extraction Vulnerability

July 1, 2025

CVE ID : CVE-2024-49364

Published : July 1, 2025, 3:15 a.m. | 4 hours, 18 minutes ago

Description : tiny-secp256k1 is a tiny secp256k1 native/JS wrapper. Prior to version 1.1.7, a private key can be extracted on signing a malicious JSON-stringifiable object, when global Buffer is the buffer package. This affects only environments where require(‘buffer’) is the NPM buffer package. The Buffer.isBuffer check can be bypassed, resulting in k reuse for different messages, leading to private key extraction over a single invalid message (and a second one for which any message/signature could be taken, e.g. previously known valid one). This issue has been patched in version 1.1.7.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…