Aggregator

A vulnerability was found in Hitachi Energy TropOS 4th Gen up to 8.9.6.0. It has been declared as critical. Impacted is an unknown function of the component Logging Page. Executing manipulation can lead to os command injection. This vulnerability is registered as CVE-2025-1036. It is possible to launch the attack remotely. No exploit is available.

A vulnerability was found in Linux Kernel up to 6.17.2. It has been classified as critical. This issue affects the function dst_dev_net_rcu of the component tcp_metrics. Performing manipulation results in privilege escalation. This vulnerability is cataloged as CVE-2025-40075. The attack must originate from the local network. There is no exploit available. Upgrading the affected component is recommended.

A vulnerability was found in Hitachi Energy TropOS 4th Gen and classified as critical. This vulnerability affects unknown code of the component Diagnostics Tools Page. Such manipulation leads to os command injection. This vulnerability is listed as CVE-2025-1038. The attack may be performed from remote. There is no available exploit. It is suggested to upgrade the affected component.

A vulnerability has been found in Red Hat OpenShift AI and classified as problematic. This affects an unknown part. This manipulation causes incorrect privilege assignment. This vulnerability is tracked as CVE-2025-12103. The attack is possible to be carried out remotely. No exploit exists.

The complaint follows several enforcement actions and bans from European data protection authorities that the advocacy group noyb alleges Clearview AI has ignored.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.15.194/6.1.155/6.6.111/6.12.52/6.17.2. Affected by this issue is the function run_unpack of the component ntfs3. The manipulation results in integer overflow. This vulnerability is identified as CVE-2025-40068. The attack can only be performed from the local network. There is not any exploit available. You should upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.15.194/6.1.155/6.6.111/6.12.52/6.17.2. Affected by this vulnerability is the function PERF_IDX2OFF of the component perf. The manipulation leads to buffer overflow. This vulnerability is referenced as CVE-2025-40081. The attack needs to be initiated within the local network. No exploit is available. It is advisable to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 5.15.194/6.1.155/6.6.111/6.12.52/6.17.2. Affected is the function bpf_sock_addr. Executing manipulation can lead to privilege escalation. The identification of this vulnerability is CVE-2025-40078. The attack needs to be done within the local network. There is no exploit available. Upgrading the affected component is advised.

A vulnerability classified as critical has been found in Linux Kernel up to 6.17.2. This impacts an unknown function. Performing manipulation results in memory leak. This vulnerability was named CVE-2025-40069. The attack needs to be approached within the local network. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability described as critical has been identified in Linux Kernel up to 6.17.2. This affects the function mt7996_mac_sta_add_links of the component wifi. Such manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2025-40066. The attack can only be initiated within the local network. No exploit exists. Upgrading the affected component is recommended.

A vulnerability marked as critical has been reported in Linux Kernel up to 6.1.155/6.6.111/6.12.52/6.17.2. The impacted element is the function qm_diff_regs of the component crypto. This manipulation causes improper initialization. This vulnerability is handled as CVE-2025-40062. The attack can only be done within the local network. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability labeled as critical has been found in Linux Kernel up to 5.15.194/6.1.155/6.6.111/6.12.52/6.17.2. The affected element is the function etm_setup_aux of the component TRBE Driver. The manipulation results in null pointer dereference. This vulnerability is known as CVE-2025-40060. Access to the local network is required for this attack. No exploit is available. The affected component should be upgraded.

A vulnerability identified as critical has been detected in Linux Kernel up to 6.12.52/6.17.2. Impacted is the function devm_kzalloc of the component coresight. The manipulation of the argument return leads to unchecked return value. This vulnerability is traded as CVE-2025-40059. Access to the local network is required for this attack to succeed. There is no exploit available. You should upgrade the affected component.

A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.12.52/6.17.2. This issue affects the function max_vclocks of the component ptp. Executing manipulation of the argument max can lead to privilege escalation. This vulnerability appears as CVE-2025-40057. The attacker needs to be present on the local network. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.155/6.6.111/6.12.52/6.17.2. It has been rated as critical. This vulnerability affects the function copy_to_iter of the component vhost. Performing manipulation of the argument return results in unchecked return value. This vulnerability is reported as CVE-2025-40056. The attacker must have access to the local network to execute the attack. No exploit exists. Upgrading the affected component is advised.

A critical security flaw in Microsoft's WSUS feature is being actively exploited in the wild by threat actors who could gain access into unpatched servers, remotely control networks, and use them to deliver malware or do other damage. Microsoft is urging organizations to apply a patch to their systems.

The post Critical Microsoft WSUS Security Flaw is Being Actively Exploited appeared first on Security Boulevard.

统计数据显示，向勒索软件组织支付赎金的受害者数量创下了新低，23% 的受害公司屈服支付了赎金，而在 2024 年第一季度这一比例是 28%，此后比例略有上升，但到了 2025 年第三季度创新低。对这一现象的一种解释是企业加大了防御力度，以及政府也施加了压力要求拒绝支付赎金，因为只要支付赎金勒索软件组织就有足够的动机继续发动攻击。勒索软件组织通常在加密受害者系统的同时窃取数据，进行双重勒索。数据显示，2025 年第三季度逾 76% 的攻击涉及数据泄露。2025 年第三季度支持的赎金平均金额和中位数分别降至 37.7 万美元和 14 万美元。Akira 和 Qilin 等勒索软件组织占到了所有有记录攻击的 44%，它们的攻击目标已经转向更有可能支付赎金的中型企业。

A guide to choosing the right EASM product for your organisation, and the security features you need to consider.

Cobalt has undergone a large-scale expansion of its Cobalt Offensive Security Platform to transform offensive security from ad-hoc tests into a continuous, centrally managed program. The human led, AI-powered platform provides the visibility, control, and efficiency needed to secure organizations, from code to company, at scale. According to the 2025 Gartner Innovation Insight: Penetration Testing as a Service report, “by 2029, organizations adopting PTaaS will perform penetration testing up to five times more frequently than … More →

The post Cobalt transforms ad-hoc security testing into a continuous, managed program appeared first on Help Net Security.