HPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication Bypass

June 15, 2025

Hewlett Packard Enterprise (HPE) has released security updates to address as many as eight vulnerabilities in its StoreOnce data backup and deduplication solution that could result in an authentication bypass and remote code execution.
“These vulnerabilities could be remotely exploited to allow remote code execution, disclosure of information, server-side request forgery, authentication bypass,

Source: Read More

Previous ArticleDistroWatch Weekly, Issue 1126

Next Article Microsoft has a new tool to get you off Windows 10 and onto a Windows 11 PC

Highlights

CVE-2025-53096 – Moonlight Sunshine Clickjacking Vulnerability

July 1, 2025

CVE ID : CVE-2025-53096

Published : July 1, 2025, 2:15 a.m. | 5 hours, 18 minutes ago

Description : Sunshine is a self-hosted game stream host for Moonlight. Prior to version 2025.628.4510, the web UI of Sunshine lacks protection against Clickjacking attacks. This vulnerability allows an attacker to embed the Sunshine interface within a malicious website using an invisible or disguised iframe. If a user is tricked into interacting (one or multiple clicks) with the malicious page while authenticated, they may unknowingly perform actions within the Sunshine application without their consent. This issue has been patched in version 2025.628.4510.

Severity: 5.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The Ultimate Guide to Node.js Development Pricing for Enterprises

Stack Overflow: Developers’ trust in AI outputs is worsening year over year

Web Components: Working With Shadow DOM

Google’s new Opal tool allows users to create mini AI apps with no coding required

I replaced my Samsung OLED TV with this Sony Mini LED model for a week – and didn’t regret it

I tested the most popular robot mower on the market – and it was a $5,000 crash out

5 gadgets and accessories that leveled up my gaming setup (including a surprise console)

Why I’m patiently waiting for the Samsung Z Fold 8 next year (even though the foldable is already great)

Performance Analysis with Laravel’s Measurement Tools

Performance Analysis with Laravel’s Measurement Tools

Memoization and Function Caching with this PHP Package

Laracon US 2025 Livestream

Microsoft mysteriously offered a Windows 11 upgrade to this unsupported Windows 10 PC — despite it failing to meet the “non-negotiable” TPM 2.0 requirement

Microsoft mysteriously offered a Windows 11 upgrade to this unsupported Windows 10 PC — despite it failing to meet the “non-negotiable” TPM 2.0 requirement

With Windows 10’s fast-approaching demise, this Linux migration tool could let you ditch Microsoft’s ecosystem with your data and apps intact — but it’s limited to one distro

Windows 10 is 10 years old today — let’s look back at 10 controversial and defining moments in its history

HPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication Bypass

Performance Analysis with Laravel’s Measurement Tools

Memoization and Function Caching with this PHP Package

Agentforce World Tour NYC: Real AI for Financial Services, Live in Action

CVE-2025-53311 – Navayan Subscribe CSRF Stored XSS

Adobe’s Photoshop AI editing magic finally comes to Android – and it’s free

CVE-2025-5014 – The Home Villas | Real Estate WordPress Theme File Deletion Vulnerability (Arbitrary File Deletion)

CVE-2025-53096 – Moonlight Sunshine Clickjacking Vulnerability

How to Optimize Sitecore Headless and Next.js on Vercel

Google Classroom Has Some New Tools to Help Teachers Track Student Progress

Borderlands 4 drops stunning new story trailer

HPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication Bypass

Related Posts