Aggregator

CVE-2025-55473 | Asian Arts Talents Foundation Website /ip.php X-Forwarded-For cross site scripting (EUVD-2025-26419)

VulDB Recent Entries
1 day 3 hours ago
A vulnerability, which was classified as problematic, was found in Asian Arts Talents Foundation Website. Affected by this vulnerability is an unknown functionality of the file /ip.php. The manipulation of the argument X-Forwarded-For results in cross site scripting. This vulnerability is reported as CVE-2025-55473. The attack can be launched remotely. No exploit exists.
vuldb.com

Iran-Nexus Hackers Abuses Omani Mailbox to Target Global Governments

Cyber Security News
1 day 3 hours ago

A sophisticated spear-phishing campaign orchestrated by Iranian-aligned operators has been identified targeting diplomatic missions worldwide through a compromised Ministry of Foreign Affairs of Oman mailbox. The attack, discovered in August 2025, represents a continuation of tactics associated with the Homeland Justice group connected to Iran’s Ministry of Intelligence and Security (MOIS). The campaign leveraged social […]

The post Iran-Nexus Hackers Abuses Omani Mailbox to Target Global Governments appeared first on Cyber Security News.

Tushar Subhra Dutta

CVE-2025-32100 | Samsung Mobile Processor Exynos up to 9110 ROHC Packet out-of-bounds write (EUVD-2025-26420)

VulDB Recent Entries
1 day 3 hours ago
A vulnerability, which was classified as critical, has been found in Samsung Mobile Processor Exynos up to 9110. Affected is an unknown function of the component ROHC Packet Handler. The manipulation leads to out-of-bounds write. This vulnerability is documented as CVE-2025-32100. The attack requires being on the local network. There is not any exploit available.
vuldb.com

CVE-2025-57778 | Digilent DASYLab DSB File Parser improper validation of specified index, position, or offset in input

VulDB Recent Entries
1 day 3 hours ago
A vulnerability classified as critical was found in Digilent DASYLab. This impacts an unknown function of the component DSB File Parser. Executing manipulation can lead to improper validation of specified index, position, or offset in input. This vulnerability is registered as CVE-2025-57778. It is possible to launch the attack remotely. No exploit is available.
vuldb.com

CVE-2025-32098 | Samsung Magician up to 8.3 on Windows Update privilege escalation (EUVD-2025-26421)

VulDB Recent Entries
1 day 3 hours ago
A vulnerability classified as critical has been found in Samsung Magician up to 8.3 on Windows. This affects an unknown function of the component Update Handler. Performing manipulation results in privilege escalation. This vulnerability is cataloged as CVE-2025-32098. The attack must originate from the local network. There is no exploit available.
vuldb.com

CVE-2024-48705 | Wavlink AC1200 M32A3_V1410_230602/M32A3_V1410_240222 adm.cgi set_sys_adm newpass command injection

VulDB Recent Entries
1 day 3 hours ago
A vulnerability labeled as critical has been found in Wavlink AC1200 M32A3_V1410_230602/M32A3_V1410_240222. Impacted is the function set_sys_adm of the file adm.cgi. The manipulation of the argument newpass results in command injection. This vulnerability is identified as CVE-2024-48705. The attack can be executed remotely. There is not any exploit available.
vuldb.com

CVE-2025-57616 | rust-ffmpeg up to 0.3.0 Data Structure write_interleaved use after free (Issue 192)

VulDB Recent Entries
1 day 3 hours ago
A vulnerability was found in rust-ffmpeg up to 0.3.0. It has been declared as critical. Affected by this issue is the function write_interleaved of the component Data Structure Handler. Such manipulation leads to use after free. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is uniquely identified as CVE-2025-57616. The attack can be launched remotely. No exploit exists.
vuldb.com

CVE-2025-57615 | rust-ffmpeg 0.3.0 sws_allocVec usize null pointer dereference (Issue 192)

VulDB Recent Entries
1 day 3 hours ago
A vulnerability was found in rust-ffmpeg 0.3.0. It has been classified as problematic. Affected by this vulnerability is the function sws_allocVec. This manipulation of the argument usize causes null pointer dereference. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is handled as CVE-2025-57615. The attack can be initiated remotely. There is not any exploit available.
vuldb.com

CVE-2025-57614 | rust-ffmpeg 0.3.0 Dimension Parameter denial of service (Issue 192)

VulDB Recent Entries
1 day 3 hours ago
A vulnerability was found in rust-ffmpeg 0.3.0 and classified as problematic. Affected is an unknown function of the component Dimension Parameter Handler. The manipulation results in denial of service. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is known as CVE-2025-57614. It is possible to launch the attack remotely. No exploit is available.
vuldb.com

CVE-2025-57613 | rust-ffmpeg 0.3.0 avio_alloc_context null pointer dereference (Issue 192)

VulDB Recent Entries
1 day 3 hours ago
A vulnerability has been found in rust-ffmpeg 0.3.0 and classified as problematic. This impacts the function avio_alloc_context. The manipulation leads to null pointer dereference. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is traded as CVE-2025-57613. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com

CVE-2025-57612 | rust-ffmpeg 0.3.0 av_get_sample_fmt_name null pointer dereference (Issue 192)

VulDB Recent Entries
1 day 3 hours ago
A vulnerability, which was classified as problematic, was found in rust-ffmpeg 0.3.0. This affects the function av_get_sample_fmt_name. Executing manipulation can lead to null pointer dereference. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability appears as CVE-2025-57612. The attack may be performed from remote. There is no available exploit.
vuldb.com

CVE-2025-57611 | rust-ffmpeg 0.3.0 avfilter_graph_dump null pointer dereference (Issue 192)

VulDB Recent Entries
1 day 3 hours ago
A vulnerability, which was classified as problematic, has been found in rust-ffmpeg 0.3.0. The impacted element is the function avfilter_graph_dump. Performing manipulation results in null pointer dereference. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is reported as CVE-2025-57611. The attack is possible to be carried out remotely. No exploit exists.
vuldb.com

INC

Dark Feed IO
1 day 3 hours ago

You must login to view this content

cohenido

Stop Panicking: The FIDO ‘Bypass’ That Never Actually Bypassed FIDO

Security Boulevard
1 day 3 hours ago

The cybersecurity world exploded in August 2025 when SquareX dropped a bombshell at Black Hat USA: passkeys were “pwned.” Headlines screamed. Twitter erupted. CTOs panicked. But here’s what actually happened: absolutely nothing changed about FIDO’s security. The Anatomy of a Media Meltdown SquareX’s presentation, “Passkeys Pwned: Turning WebAuthn Against Itself,” sent shockwaves through enterprise security..

The post Stop Panicking: The FIDO ‘Bypass’ That Never Actually Bypassed FIDO appeared first on Security Boulevard.

Jack Poller

Managed ad