CVE-2025-36038 – IBM WebSphere Application Server Deserialization Code Execution Vulnerability

June 25, 2025

CVE ID : CVE-2025-36038

Published : June 25, 2025, 9:15 p.m. | 1 hour, 45 minutes ago

Description : IBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to execute arbitrary code on the system with a specially crafted sequence of serialized objects.

Severity: 9.0 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6665 – Code-projects Inventory Management System SQL Injection Vulnerability

Next Article CVE-2025-45333 – Berkeley-ABC Null Pointer Dereference

Highlights

CVE-2025-5165 – Assimp Out-of-Bounds Read Vulnerability

May 26, 2025

CVE ID : CVE-2025-5165

Published : May 26, 2025, 3:15 a.m. | 1 hour, 55 minutes ago

Description : A vulnerability was found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This issue affects the function MDCImporter::ValidateSurfaceHeader of the file assimp/code/AssetLib/MDC/MDCLoader.cpp. The manipulation of the argument pcSurface2 leads to out-of-bounds read. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The project decided to collect all Fuzzer bugs in a main-issue to address them in the future.

Severity: 3.3 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: Classic WTF: When it’s OK to GOTO

Overture Maps launches GERS, a system of unique IDs for global geospatial entities

Agent Mode for Gemini added to Android Studio

Google’s Agent2Agent protocol finds new home at the Linux Foundation

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

Where to buy a Meta Quest 3S Xbox Edition — and why it’s a better bargain than the “normal” Meta Quest 3S

Generate awesome open graph images with Open Graphy

Generate awesome open graph images with Open Graphy

Defining a Dedicated Query Builder in Laravel 12 With PHP Attributes

pxlrbt/filament-activity-log

Linux Jargon Buster: What are Secure Boot & Shim Files?

Linux Jargon Buster: What are Secure Boot & Shim Files?

Fldigi – modem program for most of the digital modes used by radio amateurs

Lwan is an experimental, scalable, high performance HTTP server

CVE-2025-36038 – IBM WebSphere Application Server Deserialization Code Execution Vulnerability

CVE-2025-6627 – TOTOLINK A702R HTTP POST Request Handler Buffer Overflow Vulnerability

CVE-2025-45333 – Berkeley-ABC Null Pointer Dereference

A catalogue of genetic mutations to help pinpoint the cause of diseases

CVE-2025-6530 – “70mai M300 Telnet Service Denial of Service Vulnerability”

CVE-2025-6092 – ComfyAnonymous ComfyUI Cross-Site Scripting Vulnerability

Top 10 Upskilling Courses to stay ahead in 2025

CVE-2025-5165 – Assimp Out-of-Bounds Read Vulnerability

CVE-2025-49194 – Apache Server Plaintext Authentication Exposure

HPE Performance Cluster Manager Vulnerability Allow Remote Attacker to Bypass Authentication

Pixel 7a battery problems? Google might fix it for free – here’s how to check

CVE-2025-36038 – IBM WebSphere Application Server Deserialization Code Execution Vulnerability

Related Posts