CVE-2025-43595 – MSP360 Backup Privilege Escalation Vulnerability

May 1, 2025

CVE ID : CVE-2025-43595

Published : May 1, 2025, 10:15 p.m. | 1 hour, 12 minutes ago

Description : An insecure file system permissions vulnerability in MSP360 Backup 4.3.1.115 allows a lower privileged user to execute commands with root level privileges in the ‘Online Backup’ folder. Users are recommended to upgrade to MSP360 Backup 4.4 (released on 2025-04-22).

Severity: 7.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4176 – PHPGurukul Blood Bank & Donor Management System SQL Injection Vulnerability

Next Article CVE-2025-27365 – IBM MQ Operator SIGSEGV Memory Corruption Vulnerability

Highlights

CVE-2011-10028 – RealNetworks RealArcade ActiveX Exec Arbitrary Command Execution

August 20, 2025

CVE ID : CVE-2011-10028

Published : Aug. 20, 2025, 4:15 p.m. | 8 hours, 35 minutes ago

Description : The RealNetworks RealArcade platform includes an ActiveX control (InstallerDlg.dll, version 2.6.0.445) that exposes a method named Exec via the StubbyUtil.ProcessMgr COM object. This method allows remote attackers to execute arbitrary commands on a victim’s Windows machine without proper validation or restrictions. This platform was sometimes referred to or otherwise known as RealArcade or Arcade Games and has since consolidated with RealNetworks’ platform, GameHouse.

Severity: 8.7 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Representative Line: Brace Yourself

Beyond the Pilot: A Playbook for Enterprise-Scale Agentic AI

GitHub launches MCP Registry to provide central location for trusted servers

MongoDB brings Search and Vector Search to self-managed versions of database

Distribution Release: Security Onion 2.4.180

Distribution Release: Omarchy 3.0.1

Distribution Release: Mauna Linux 25

Distribution Release: SparkyLinux 2025.09

AI Momentum and Perficient’s Inclusion in Analyst Reports – Highlights From 2025 So Far

AI Momentum and Perficient’s Inclusion in Analyst Reports – Highlights From 2025 So Far

Shopping Portal using Python Django & MySQL

Perficient Earns Adobe’s Real-time CDP Specialization

Valve Survey Reveals Slight Retreat in Steam-on-Linux Share

Valve Survey Reveals Slight Retreat in Steam-on-Linux Share

Review: Elecrow’s All-in-one Starter Kit for Pico 2

FOSS Weekly #25.38: GNOME 49 Release, KDE Drama, sudo vs sudo-rs, Local AI on Android and More Linux Stuff

CVE-2025-43595 – MSP360 Backup Privilege Escalation Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Mudlet – immersive, multiplayer, pure-text game

Warhammer 40,000: Space Marine 2 is borrowing one of Gears of War’s best modes — and it’s live right now

CVE-2025-55033 – Focus for iOS JavaScript Injection Vulnerability

CVE-2024-52588 – Strapi SSRF Vulnerability

CVE-2011-10028 – RealNetworks RealArcade ActiveX Exec Arbitrary Command Execution

Best Free and Open Source Alternatives to Corel Capture

How to Redesign a UI Without Losing Usability: A Case Study on Modernizing a Legacy App

5 Powerful Ways to Deploy PHP Applications with DeployHQ

CVE-2025-43595 – MSP360 Backup Privilege Escalation Vulnerability

Related Posts