Tag: cve
-
Entra ID vulnerability exposes gaps in cloud identity trust models, experts warn
Tags: advisory, api, cloud, cve, exploit, flaw, identity, microsoft, mitigation, risk, service, technology, update, vulnerabilityPatching is done, yet the risk lingers: While CVE-2025-55241 initially carried a maximum base severity score of 10.0 out of 10, Microsoft later revised its advisory on September 4 to rate the flaw at 8.7, reflecting its own exploitability assessment.Microsoft rolled out a fix globally within days of the initial report, adding that its internal…
-
WatchGuard Patches Critical Firebox Firewall Flaw (CVE-2025-9242) With 9.3 CVSS Score
WatchGuard has issued security updates addressing a vulnerability, tracked as CVE-2025-9242, affecting its Firebox firewall devices. This flaw involves an out-of-bounds write weakness within the Fireware OS, potentially allowing remote attackers to execute arbitrary code on vulnerable devices configured with IKEv2 VPN. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/cve-2025-9242-vulnerability/
-
WatchGuard Issues Fix for 9.3-Rated Firebox Firewall Vulnerability
WatchGuard has issued a critical security alert for its Firebox firewalls due to a serious vulnerability, CVE-2025-9242. Learn what this ‘out-of-bounds write’ flaw means, which Fireware OS versions are affected, and the urgent steps to take to protect your network from remote attacks. First seen on hackread.com Jump to article: hackread.com/watchguard-fix-for-firebox-firewall-vulnerability/
-
WatchGuard Issues Fix for 9.3-Rated Firebox Firewall Vulnerability
WatchGuard has issued a critical security alert for its Firebox firewalls due to a serious vulnerability, CVE-2025-9242. Learn what this ‘out-of-bounds write’ flaw means, which Fireware OS versions are affected, and the urgent steps to take to protect your network from remote attacks. First seen on hackread.com Jump to article: hackread.com/watchguard-fix-for-firebox-firewall-vulnerability/
-
WatchGuard Issues Fix for 9.3-Rated Firebox Firewall Vulnerability
WatchGuard has issued a critical security alert for its Firebox firewalls due to a serious vulnerability, CVE-2025-9242. Learn what this ‘out-of-bounds write’ flaw means, which Fireware OS versions are affected, and the urgent steps to take to protect your network from remote attacks. First seen on hackread.com Jump to article: hackread.com/watchguard-fix-for-firebox-firewall-vulnerability/
-
CISA Alerts of Hackers Targeting Ivanti Endpoint Manager Mobile Vulnerabilities to Distribute Malware
Cyber threat actors have weaponized two critical Ivanti Endpoint Manager Mobile (EPMM) vulnerabilities”, CVE-2025-4427 and CVE-2025-4428″, to deploy sophisticated malicious loaders and listeners on compromised servers. The malware consists of two sets of components: Loader 1 (web-install.jar, ReflectUtil.class, SecurityHandlerWanListener.class) and Loader 2 (web-install.jar, WebAndroidAppInstaller.class), both designed to inject arbitrary code and maintain persistence on Apache…
-
CISA Warns of Two Malware Strains Exploiting Ivanti EPMM CVE-2025-4427 and CVE-2025-4428
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday released details of two sets of malware that were discovered in an unnamed organization’s network following the exploitation of security flaws in Ivanti Endpoint Manager Mobile (EPMM).”Each set contains loaders for malicious listeners that enable cyber threat actors to run arbitrary code on the compromised…
-
WatchGuard patches ‘critical’ VPN flaw in firewalls that could lead to compromise
Who is affected?: A list of the nearly three dozen firewall models affected by CVE-2025-9242 is available from WatchGuard’s website. The vulnerable versions of the Fireware OS are 2025.1, 12.x, 12.5.x (T15 & T35 models), 12.3.1 (FIPS-certified release), and 11.x (end of life). These are addressed (in the same order) by updating to versions 2025.1.1,…
-
WatchGuard warnt vor Schwachstelle CVE-2025-9242 in Firebox
Der Anbieter WatchGuard ist in der Absicherung von Netzwerken aktiv und bietet in diesem Bereich eine Firebox-Appliance an. In einer aktuellen Sicherheitswarnung vom 17. September 2025 weist der Anbieter auf eine kritische Schwachstelle CVE-2025-9242 in seiner Firebox-Appliance hin, die einem … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/09/18/watchguard-warnt-vor-schachstelle-cve-2025-9242-in-firebox/
-
WatchGuard warnt vor Schachstelle CVE-2025-9242 in Firebox
Der Anbieter WatchGuard ist in der Absicherung von Netzwerken aktiv und bietet in diesem Bereich eine Firebox-Appliance an. In einer aktuellen Sicherheitswarnung vom 17. September 2025 weist der Anbieter auf eine kritische Schwachstelle CVE-2025-9242 in seiner Firebox-Appliance hin, die einem … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/09/18/watchguard-warnt-vor-schachstelle-cve-2025-9242-in-firebox/
-
Google Confirms Real-World Attacks on Chrome Vulnerability CVE-2025-10585
Google has issued an urgent security alert for all users of its Chrome browser, confirming that an active exploit targeting a critical vulnerability, CVE-2025-10585, is currently being used in real-world attacks. The flaw resides in Chromium’s V8 JavaScript engine and has prompted Google to release an emergency update for all desktop versions of Chrome. First…
-
CVE-2025-10585 is the sixth actively exploited Chrome zero-day patched by Google in 2025
Google addressed four vulnerabilities affecting its Chrome web browser, including one that has been exploited in the wild. Google released security updates to address four vulnerabilities in the Chrome web browser, including CVE-2025-10585, which has reportedly been exploited in the wild. >>Google is aware that an exploit for CVE-2025-10585 exists in the wild.
-
Google Confirms Real-World Attacks on Chrome Vulnerability CVE-2025-10585
Google has issued an urgent security alert for all users of its Chrome browser, confirming that an active exploit targeting a critical vulnerability, CVE-2025-10585, is currently being used in real-world attacks. The flaw resides in Chromium’s V8 JavaScript engine and has prompted Google to release an emergency update for all desktop versions of Chrome. First…
-
TP-Link Router Zero-Day Lets Attackers Execute Code by Bypassing ASLR
Researchers have uncovered a zero-day vulnerability in TP-Link routers that allows attackers to bypass Address Space Layout Randomization (ASLR) and execute arbitrary code remotely. Tracked as CVE-2025-9961, this flaw resides in the CWMP (TR-069) binary and can be triggered through malformed SOAP requests, granting full control of affected devices. A detailed technical walkthrough of discovery,…
-
Critical WatchGuard Vulnerability Lets Unauthenticated Attackers Run Arbitrary Code
WatchGuard released an advisory detailing a critical vulnerability in its Firebox line of network security appliances. Tracked as CVE-2025-9242, the flaw resides in the iked component of WatchGuard’s Fireware OS. An out-of-bounds write in the IKEv2 handling routine can allow a remote, unauthenticated attacker to execute arbitrary code on affected devices. Overview of the Vulnerability…
-
Google Patches Chrome Zero-Day CVE-2025-10585 as Active V8 Exploit Threatens Millions
Google on Wednesday released security updates for the Chrome web browser to address four vulnerabilities, including one that it said has been exploited in the wild.The zero-day vulnerability in question is CVE-2025-10585, which has been described as a type confusion issue in the V8 JavaScript and WebAssembly engine.Type confusion vulnerabilities can have severe consequences as…
-
How Tenable Found a Way To Bypass a Patch for BentoML’s Server-Side Request Forgery Vulnerability CVE-2025-54381
Tenable Research recently discovered that the original patch for a critical vulnerability affecting BentoML could be bypassed. In this blog, we explain in detail how we discovered this patch bypass in this widely used open source tool. The vulnerability is now fully patched. Key takeaways Tenable Research discovered that the initial patch for a high-severity…
-
Critical CVEs in Chaos-Mesh Enable In-Cluster Code Execution
A trio of critical vulnerabilities in the Chaos-Mesh platform allow in-cluster attackers to run arbitrary code, even in default configuration First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/cves-chaos-mesh-cluster-code/
-
Apple patches critical zero-day in ImageIO amid reports of targeted exploits
Attackers shifting to core image services: Attackers seem to be moving focus to image processing modules in core system software, rather than going after obvious network-facing services or applications. Last week, Samsung patched a critical bug (CVE-2025-21043) affecting its supplied image library ‘libimagecodec.quram.so’ that allowed remote code execution via a crafted image with zero user…
-
Apple patches critical zero-day in ImageIO amid reports of targeted exploits
Attackers shifting to core image services: Attackers seem to be moving focus to image processing modules in core system software, rather than going after obvious network-facing services or applications. Last week, Samsung patched a critical bug (CVE-2025-21043) affecting its supplied image library ‘libimagecodec.quram.so’ that allowed remote code execution via a crafted image with zero user…
-
Ransomware HybridPetya hebelt UEFI Secure Boot aus
UEFI-Nachahmung von Petya/NotPetya unter Ausnutzung von CVE-2024-7344 auf VirusTotal entdeckt First seen on welivesecurity.com Jump to article: www.welivesecurity.com/de/eset-research/ransomware-hybridpetya-hebelt-uefi-secure-boot-aus/
-
Gefährliche Schwachstellen in Kubernetes-Testing-Plattform Chaos-Mesh
Das JFrog-Security-Research-Team hat mehrere kritische Schwachstellen in Chaos-Mesh, einer weit verbreiteten Testing-Plattform in Kubernetes-Umgebungen, entdeckt und offengelegt. Die Sicherheitslücken wurden unter dem Namen ‘Chaotic Deputy” (CVE-2025-59358, CVE-2025-59359, CVE-2025-59360 und CVE-2025-59361) zusammengefasst, wobei die letzten drei jeweils eine CVSS-Bewertung von 9.8 aufweisen. Sie ermöglichen es Angreifern mit Zugriff innerhalb des Clusters, vollständige Kontrolle über die Umgebung…
-
Apple Patches 0-Day Vulnerabilities in Older iPhones and iPads
Apple has released critical security updates for older iPhone and iPad models, addressing a zero-day vulnerability that has reportedly been exploited in sophisticated targeted attacks. The iOS 16.7.12 and iPadOS 16.7.12 updates, released on September 15, 2025, patch a serious security flaw affecting legacy Apple devices. Active Exploitation Confirmed The vulnerability, tracked as CVE-2025-43300, represents…
-
Chaos Mesh Critical Vulnerabilities Expose Kubernetes Clusters to Takeover
Security Research recently uncovered four new flaws, CVE-2025-59358, CVE-2025-59359, CVE-2025-59360, and CVE-2025-59361, in the default configuration of the Chaos Controller Manager GraphQL server, a popular open-source chaos engineering platform for Kubernetes. Three of these flaws carry a maximum CVSS 3.1 score of 9.8, enabling any pod in the cluster to run arbitrary commands or inject…
-
Apple backports fix for actively exploited CVE-2025-43300
Apple announced it has backported patches for a recently addressed actively exploited vulnerability tracked as CVE-2025-43300. Apple has backported security patches released to address an actively exploited vulnerability tracked as CVE-2025-43300. In August 2025, Apple addressed the actively exploited zero-day CVE-2025-43300 in iOS, iPadOS, and macOS. The vulnerability is zero-day out-of-bounds write issue that resides…
-
CVE-2025-10200 und CVE-2025-10201 – Sicherheitsforscher verdienen 73.000 Dollar mit Chrome-Schwachstellen
First seen on security-insider.de Jump to article: www.security-insider.de/google-chrome-sicherheitsluecken-update-a-1f4d81522be6d6c8237658eef4fb2df5/
-
Apple backports fix for actively exploited CVE-2025-43300
Apple announced it has backported patches for a recently addressed actively exploited vulnerability tracked as CVE-2025-43300. Apple has backported security patches released to address an actively exploited vulnerability tracked as CVE-2025-43300. In August 2025, Apple addressed the actively exploited zero-day CVE-2025-43300 in iOS, iPadOS, and macOS. The vulnerability is zero-day out-of-bounds write issue that resides…
-
CVE-2025-10200 und CVE-2025-10201 – Sicherheitsforscher verdienen 73.000 Dollar mit Chrome-Schwachstellen
First seen on security-insider.de Jump to article: www.security-insider.de/google-chrome-sicherheitsluecken-update-a-1f4d81522be6d6c8237658eef4fb2df5/
-
Linux Kernel KSMBD Flaw Lets Remote Attackers Drain Server Resources
A critical vulnerability in the Linux kernel’s KSMBD implementation has been discovered that allows remote attackers to completely exhaust server connection resources through a simple denial-of-service attack. The flaw, tracked as CVE-2025-38501 and dubbed >>KSMBDrain,
-
Apple Backports Fix for CVE-2025-43300 Exploited in Sophisticated Spyware Attack
Apple on Monday backported fixes for a recently patched security flaw that has been actively exploited in the wild.The vulnerability in question is CVE-2025-43300 (CVSS score: 8.8), an out-of-bounds write issue in the ImageIO component that could result in memory corruption when processing a malicious image file.”Apple is aware of a report that this issue…