CVE-2025-47730 – TeleMessage API Authentication Token Disclosure

May 8, 2025

CVE ID : CVE-2025-47730

Published : May 8, 2025, 2:15 p.m. | 1 hour, 22 minutes ago

Description : The TeleMessage archiving backend through 2025-05-05 accepts API calls (to request an authentication token) from the TM SGNL (aka Archive Signal) app with the credentials of logfile for the user and enRR8UVVywXYbFkqU#QDPRkO for the password.

Severity: 4.8 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-45818 – Slims Senayan Library Management Systems SQL Injection Vulnerability

Next Article CVE-2025-47729 – TeleMessage End-to-End Encryption Vulnerability

Highlights

CVE-2025-52566 – LLama Heap Overflow Vulnerability

June 24, 2025

CVE ID : CVE-2025-52566

Published : June 24, 2025, 4:15 a.m. | 1 hour, 14 minutes ago

Description : llama.cpp is an inference of several LLM models in C/C++. Prior to version b5721, there is a signed vs. unsigned integer overflow in llama.cpp’s tokenizer implementation (llama_vocab::tokenize) (src/llama-vocab.cpp:3036) resulting in unintended behavior in tokens copying size comparison. Allowing heap-overflowing llama.cpp inferencing engine with carefully manipulated text input during tokenization process. This issue has been patched in version b5721.

Severity: 8.6 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: Across the 4th Dimension

Cursor vs GitHub Copilot (2025): Which AI Platform Wins for Your Node.js Dev Team?

NuGet adds support for Trusted Publishing

AWS launches IDE extension for building browser automation agents

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

DistroWatch Weekly, Issue 1140

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

IDC ServiceScape for Microsoft Power Apps Low-Code/No-Code Custom Application Development Services

A Stream-Oriented UI library for interactive web applications

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

CVE-2025-47730 – TeleMessage API Authentication Token Disclosure

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

How to configure a Linked Server between Amazon RDS for SQL Server and Teradata database

NHS Charter Urges Vendors to Improve Cybersecurity to Prevent Ransomware

GitHub Issues search now supports nested queries and boolean operators: Here’s how we (re)built it

I tested this Garmin sleep tracker for weeks – here’s why it replaces my smart ring for good

CVE-2025-52566 – LLama Heap Overflow Vulnerability

Microsoft says it accidentally broke Windows 10 Start menu, taskbar recent files feature

The Hidden Trade-Offs of Scriptless Automation Are You Sacrificing Strategy for Speed?

CVE-2025-6849 – Simple Forum Cross-Site Scripting (XSS) Vulnerability

CVE-2025-47730 – TeleMessage API Authentication Token Disclosure

Related Posts