Aggregator

A vulnerability marked as problematic has been reported in Axiomatic Bento4 up to 1.6.0-641. The affected element is the function AP4_DataBuffer::SetDataSize of the file Mp4Decrypt.cpp of the component mp4decrypt. The manipulation leads to allocation of resources. This vulnerability is referenced as CVE-2025-8537. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

A vulnerability marked as problematic has been reported in AfterShip Package Tracker App up to 5.24.1 on Android. The affected element is an unknown function of the file AndroidManifest.xml of the component com.aftership.AfterShip. The manipulation leads to improper export of android application components. This vulnerability is listed as CVE-2025-9134. The attack must be carried out locally. In addition, an exploit is available. The vendor was contacted early about this disclosure and replied: "After reviewing your report, we have confirmed that this vulnerability does indeed exist and we are actively working to fix it."

A vulnerability described as critical has been identified in QNAP File Station 5 5.5.6.4741. This vulnerability affects unknown code. Such manipulation leads to out-of-bounds write. This vulnerability is traded as CVE-2025-47206. The attack may be launched remotely. There is no exploit available. Upgrading the affected component is recommended.

A vulnerability has been found in D-Link DIR-619L 6.02CN02 and classified as critical. Impacted is the function FirmwareUpgrade of the component boa. The manipulation leads to insufficient verification of data authenticity. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is listed as CVE-2025-8978. The attack may be initiated remotely. In addition, an exploit is available.

A vulnerability, which was classified as problematic, has been found in elunez eladmin up to 2.7. The impacted element is an unknown function of the file eladmin-system\src\main\resources\config\application-prod.yml of the component Druid. This manipulation of the argument login-username/login-password causes use of default credentials. This vulnerability is registered as CVE-2025-8530. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

A vulnerability labeled as problematic has been found in cronoh NanoVault up to 1.2.1. Impacted is the function executeJavaScript of the file /main.js of the component xrb URL Handler. Executing manipulation can lead to cross site scripting. The identification of this vulnerability is CVE-2025-8535. The attack may be launched remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability, which was classified as critical, has been found in humhub cfiles up to 0.16.9. This vulnerability affects unknown code. Performing manipulation results in sql injection. This vulnerability is known as CVE-2025-54790. Remote exploitation of the attack is possible. No exploit is available. It is advisable to upgrade the affected component.

U.S. makes major arrests and sanctions, GhostAction steals 1000s of GitHub secrets, China-linked hackers target political communications.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning of hackers exploiting a critical remote code execution flaw in DELMIA Apriso, a  manufacturing operations management (MOM) and execution (MES) solution from French company Dassault Systèmes. [...]

Meskan Foundry Falls Victim to BEAST Ransomware

New SEO poisoning campaign exposed! FortiGuard Labs reveals how attackers trick users with fake websites to deliver Hiddengh0st…

Microsoft has reminded customers today that devices running Home and Pro editions of Windows 11 23H2 will stop receiving updates in November. [...]

Финансовые тяжбы государства перевесили страдания тысяч пострадавших.

This post first appeared on blog.netwrix.com and was written by Dmitry Vorontsov.
Personally Identifiable Information (PII) is scattered across cloud storage, emails, and databases—making it a prime target for breaches and compliance failures. Automated PII detection, powered by rule-based and machine learning models, helps organizations discover, classify, and secure sensitive information in real time. This guide breaks down how detection works across structured and unstructured data, modern … Continued

Calypso’s Red-Teaming and Agentic Threat Tools Boost F5’s Application Security Edge
F5’s latest acquisition brings Dublin, Ireland-based CalypsoAI’s unique AI security stack into its platform to secure application traffic against LLM misuse, data leakage and shadow AI, enhancing protection for hybrid and multi-cloud environments and helping secure apps and APIs.

Updated CVE Roadmap Follows Threats to Funding
The Cybersecurity and Infrastructure Security Agency is unveiling a new vision for its globally-adopted vulnerability tracking system but security analysts warn that funding threats and turmoil inside the federal agency could derail any reforms before they take hold.

Inogen's Ebenezer Arumai Discusses Cyber Risk in Advance of ManuSec Summit
Ahead of QG Media's 10th ManuSec Summit - scheduled Oct. 14-15 in Chicago - we caught up with Ebenezer Arumai, director of IT infrastructure and security at medical device manufacturer Inogen, to discuss the cyber risk challenges related to medical equipment.

Also: AI Pilot Project Purgatory, Agentic AI Commerce Fraud Concerns
In this week's update, four ISMG editors discussed cybersecurity risks for small and medium-sized businesses, why so many enterprise artificial intelligence projects stall in pilot mode and concerns over fraud with the rise of agentic commerce in payments.