Tag: cve
-
Hackers breach Microsoft IIS services using Cityworks RCE bug
Hackers are exploiting a high-severity remote code execution (RCE) flaw in Cityworks deployments, a GIS-centric asset and work order management software, to execute codes on a customers’ Microsoft web servers.In a coordinated advisory with the US Cybersecurity and Infrastructure Security Agency (CISA), Cityworks’ developer Trimble said that the vulnerability, tracked as CVE-2025-0994 with CVSS rating…
-
CISA Flags Critical Trimble Cityworks Vulnerability (CVE-2025-0994) in KEV Catalog
The Cybersecurity and Infrastructure Security Agency (CISA) announced the addition of a critical vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog. The vulnerability, identified as CVE-2025-0994, affects Trimble First seen on thecyberexpress.com Jump to article: thecyberexpress.com/cve-2025-0994-trimble-cityworks-vulnerability/
-
Zimbra Releases Security Updates for SQL Injection, Stored XSS, and SSRF Vulnerabilities
Zimbra has released software updates to address critical security flaws in its Collaboration software that, if successfully exploited, could result in information disclosure under certain conditions.The vulnerability, tracked as CVE-2025-25064, carries a CVSS score of 9.8 out of a maximum of 10.0. It has been described as an SQL injection bug in the ZimbraSync Service…
-
So killen Sie NTLM
Tags: authentication, cloud, crowdstrike, cve, hacker, ibm, mail, microsoft, ntlm, risk, service, technology, vulnerability, windows -
Hackers Exploit AnyDesk Vulnerability to Gain Admin Access PoC Released
A newly discovered vulnerability in AnyDesk, the popular remote desktop software, has sparked serious cybersecurity concerns. Identified as CVE-2024-12754 and tracked under ZDI-24-1711, this flaw allows local attackers to exploit a mechanism to handle Windows background images, potentially escalating their privileges to administrative levels. Researchers warn that this vulnerability poses a significant risk to sensitive…
-
U.S. CISA adds Trimble Cityworks flaw to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Trimble Cityworks vulnerability to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a Trimble Cityworks vulnerability, tracked as CVE-2025-0994, to its Known Exploited Vulnerabilities (KEV) catalog. Trimble Cityworks is a GIS-centric asset management and permitting software designed for local governments, utilities, and…
-
CISA Warns of Active Exploits Targeting Trimble Cityworks Vulnerability
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned that a security flaw impacting Trimble Cityworks GIS-centric asset management software has come under active exploitation in the wild.The vulnerability in question is CVE-2025-0994 (CVSS v4 score: 8.6), a deserialization of untrusted data bug that could permit an attacker to conduct remote code execution.”This could…
-
CISA Warns of Active Exploitation in Trimble Cityworks Vulnerability Leading to IIS RCE
Tags: cisa, cve, cybersecurity, data, exploit, flaw, infrastructure, rce, remote-code-execution, software, vulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned that a security flaw impacting Trimble Cityworks GIS-centric asset management software has come under active exploitation in the wild.The vulnerability in question is CVE-2025-0994 (CVSS v4 score: 8.6), a deserialization of untrusted data bug that could permit an attacker to conduct remote code execution.”This could…
-
7-Zip 0-Day Flaw Added to CISA’s List of Actively Exploited Vulnerabilities
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical 0-day vulnerability affecting the popular file compression utility, 7-Zip, to its Known Exploited Vulnerabilities (KEV) Catalog. The vulnerability, identified as CVE-2025-0411, highlights a severe flaw that allows attackers to bypass the Mark-of-the-Web (MotW) security feature and execute arbitrary code on targeted systems. Details…
-
AMD Processors Vulnerable to Malicious Microcode
Google researchers recently published proof-of-concept code demonstrating the ability to create malicious microcode patches on AMD processors from Zen 1 through Zen 4. This vulnerability would allow an attacker to arbitrarily alter the execution of virtually any instruction on a vulnerable processor. The vulnerability, CVE-2024-56161, affects the most fundamental operation of a modern processor. Furthermore,……
-
Kritische Schwachstelle CVE-2025-23114 in Veeam-Updater
Im Veeam-Updater wurde eine kritische Schwachstelle CVE-2025-23114 gemeldet. Über diese Schwachstelle ließen sich Man in the Middle-Angriffe ausführen. Dies wirkt sich auf verschiedene Produkte des Anbieters aus. Veeam hat entsprechende Sicherheitsupdates zum Schließen der Schwachstelle veröffentlicht. Kritische Schwachstelle CVE-2025-23114 Ich bin … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/02/07/kritische-schwachstelle-cve-2025-23114-in-veeam-updater/
-
U.S. CISA adds Microsoft Outlook, Sophos XG Firewall, and other flaws to its Known Exploited Vulnerabilities catalog
Tags: cisa, cve, cybersecurity, exploit, firewall, flaw, infrastructure, kev, microsoft, remote-code-execution, sophos, vulnerabilityU.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft Outlook, Sophos XG Firewall, and otherflaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA)added the following vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog: The vulnerability CVE-2024-21413 (CVSS score of 9.8) is a Remote Code Execution flaw in Microsoft Outlook.…
-
Changing the tide: Reflections on threat data from 2024
Thorsten examines last year’s CVE list and compares it to recent Talos Incident Response trends. Plus, get all the details on the new vulnerabilities disclosed by Talos’ Vulnerability Research Team. First seen on blog.talosintelligence.com Jump to article: blog.talosintelligence.com/changing-the-tide-reflections-on-threat-data-from-2024/
-
XE Hacker Group Exploiting Veracode 0-Day’s to Deploy Malware Steal Credit Card Details
Tags: access, credit-card, cve, cyber, cybercrime, exploit, group, hacker, malware, software, vulnerability, zero-dayThe XE Group, a sophisticated Vietnamese-origin cybercrime organization active since 2013, has escalated its operations by exploiting two zero-day vulnerabilities in VeraCore software, CVE-2024-57968 and CVE-2025-25181. These vulnerabilities, identified in a joint investigation by Intezer and Solis Security, have been used to deploy malware, steal sensitive information, and maintain long-term access to compromised systems. VeraCore…
-
Cisco addressed two critical flaws in its Identity Services Engine (ISE)
Cisco addressed critical flaws in Identity Services Engine, preventing privilege escalation and system configuration changes. Cisco addressed multiple vulnerabilities, including two critical remote code execution flaws, tracked as CVE-2025-20124 (CVSS score of 9.9) and CVE-2025-20125 (CVSS score of 9.1), in Identity Services Engine (ISE). A remote attacker authenticated with read-only administrative privileges could exploit the…
-
Cisco Patches Critical ISE Vulnerabilities Enabling Root CmdExec and PrivEsc
Cisco has released updates to address two critical security flaws Identity Services Engine (ISE) that could allow remote attackers to execute arbitrary commands and elevate privileges on susceptible devices.The vulnerabilities are listed below -CVE-2025-20124 (CVSS score: 9.9) – An insecure Java deserialization vulnerability in an API of Cisco ISE that could permit an authenticated, remote…
-
XE Group Exploits Zero-Day Vulnerabilities in VeraCore CVE-2024-57968 CVE-2025-25181
Cybersecurity researchers from Intezer and Solis Security have uncovered a dramatic shift in tactics by XE Group, a First seen on securityonline.info Jump to article: securityonline.info/xe-group-exploits-zero-day-vulnerabilities-in-veracore-cve-2024-57968-cve-2025-25181/
-
U.S. CISA adds Linux kernel flaw to its Known Exploited Vulnerabilities catalog
Tags: android, attack, cisa, cve, cybersecurity, exploit, infrastructure, kev, linux, vulnerability, zero-dayU.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Linux kernel vulnerability to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a Linux kernel vulnerability, tracked as CVE-2024-53104, to its Known Exploited Vulnerabilities (KEV) catalog. The February 2025 Android security updates addressed 48 vulnerabilities, the zero-day flaw CVE-2024-53104 which is actively exploited in attacks…
-
Swap EOL Zyxel routers, upgrade Netgear ones!
There will be no patches for EOL Zyxel routers under attack via CVE-2024-40891, the company has confirmed. Meanwhile, Netgear has issued patches for critical flaws affecting … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/02/05/swap-eol-zyxel-routers-upgrade-netgear-ones-patches-cve-2024-40891/
-
New Veeam Flaw Allows Arbitrary Code Execution via Manthe-Middle Attack
Veeam has released patches to address a critical security flaw impacting its Backup software that could allow an attacker to execute arbitrary code on susceptible systems.The vulnerability, tracked as CVE-2025-23114, carries a CVSS score of 9.0 out of 10.0.”A vulnerability within the Veeam Updater component that allows an attacker to utilize a Man-in-the-Middle attack to…
-
CISA Issues Exploitation Warning for .NET Vulnerability
CISA has added CVE-2024-29059, a flaw affecting Microsoft .NET, to its Known Exploited Vulnerabilities catalog. The post CISA Issues Exploitation Warning for .NET Vulnerability appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/cisa-issues-exploitation-warning-for-net-vulnerability/
-
Veeam Backup Vulnerability Allows Attackers to Execute Arbitrary Code
A critical vulnerability, CVE-2025-23114, has been discovered within the Veeam Updater component that poses a serious risk to organizations utilizing Veeam’s backup solutions. The flaw allows attackers to leverage a Man-in-the-Middle (MitM) attack to inject and execute arbitrary code with root-level permissions on the affected appliance server. The vulnerability, reported through HackerOne by security researcher…
-
Threat Actors Exploit CVE-2019-18935 to Gain Remote Access and Elevate Privileges
The eSentire Threat Response Unit (TRU) has reported that threat actors are actively exploiting a six-year-old vulnerability, CVE-2019-18935, First seen on securityonline.info Jump to article: securityonline.info/threat-actors-exploit-cve-2019-18935-to-gain-remote-access-and-elevate-privileges/
-
AMD, Google disclose Zen processor microcode vulnerability
AMD said CVE-2024-56161, which first leaked last month, requires an attacker to have local administrator privileges as well as developed and executed malicious microcode. First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366618758/AMD-Google-disclose-Zen-processor-microcode-vulnerability