CVE-2025-44557 – Cypress PSoC4 BLE State Machine Transition Vulnerability

June 27, 2025

CVE ID : CVE-2025-44557

Published : June 27, 2025, 5:15 p.m. | 1 hour, 57 minutes ago

Description : A state machine transition flaw in the Bluetooth Low Energy (BLE) stack of Cypress PSoC4 v3.66 allows attackers to bypass the pairing process and authentication via a crafted pairing_failed packet.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46707 – VMware ESXi Firmware Privilege Escalation

Next Article CVE-2025-44559 – Realtek RTL8762E BLE DoS Vulnerability

Highlights

CVE-2025-53027 – Oracle Virtualization VirtualBox Core Virtual Takeover

July 16, 2025

CVE ID : CVE-2025-53027

Published : July 15, 2025, 8:15 p.m. | 6 hours, 44 minutes ago

Description : Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is 7.1.10. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).

Severity: 8.2 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Designing With AI, Not Around It: Practical Advanced Techniques For Product Design Use Cases

Why Companies Are Investing in AI-Powered React.js Development Services in 2025

The coming AI smartphone: Redefining personal tech

Modern React animation libraries: Real examples for engaging UIs

How Debian 13’s little improvements add up to the distro’s surprisingly big leap forward

Why xAI is giving you ‘limited’ free access to Grok 4

How Apple may revamp Siri to a voice assistant I’d actually use (and ditch Gemini for)

I jump-started a bus from the 1930s with this power bank – here’s the verdict

Laravel’s UsePolicy Attribute: Explicit Authorization Control

Laravel’s UsePolicy Attribute: Explicit Authorization Control

The Laravel Way to Build AI Agents That Actually Work

The Laravel Way to Build AI Agents That Actually Work

Microsoft sued over killing support for Windows 10

Microsoft sued over killing support for Windows 10

Grok 4 rolled out for free-tier users worldwide, with some limits

Firefox AI slammed for hogging CPU and draining battery

CVE-2025-44557 – Cypress PSoC4 BLE State Machine Transition Vulnerability

WinRAR Zero-Day Under Active Exploitation – Update to Latest Version Immediately

BadCam Attack Turns Trusted Linux Webcams into Stealthy USB Weapons

Windows 11 KB5063060 issues, install fails on Windows 11 24H2 for some users

CVE-2024-45208 – Cisco Versa Director TCP Port Remote Code Execution Vulnerability

CVE-2022-50229 – ALSA bcd2000 Use-After-Free Vulnerability

Download your photos before AT&T shuts down its cloud storage service permanently

CVE-2025-53027 – Oracle Virtualization VirtualBox Core Virtual Takeover

CVE-2025-49073 – Axiomthemes Sweet Dessert Deserialization of Untrusted Data Object Injection Vulnerability

I swapped my favorite JBL speaker for this new Bose, and it’ll be hard to give it up

CVE-2024-49845 – Microsoft Windows FRS Memory Corruption Vulnerability

CVE-2025-44557 – Cypress PSoC4 BLE State Machine Transition Vulnerability

Related Posts