Aggregator

A vulnerability classified as critical was found in NetApp SAN Host Utilities up to 7.x on Windows. This affects an unknown part of the component Installer. The manipulation results in improper privilege management. This vulnerability is known as CVE-2025-26513. Attacking locally is a requirement. No exploit is available. Upgrading the affected component is advised.

Authorities linked the 40-year-old to multiple crimes by tracing the email address he used for a cybercrime forum to the same account he used to apply for a U.S. visa in 2016.

The post Jordanian national pleads guilty after unknowingly selling FBI agent access to 50 company networks appeared first on CyberScoop.

Security has always moved in waves. Not because we suddenly get smarter, but because we learn from past mistakes, identify gaps, hit limits, need to protect new technologies, and then go and do our best to solve those new security challenges with the technologies at hand. The era of AI (let’s be clear, we have […]

The post How AI Impacts the Cyber Market and The Future of SIEM first appeared on Future of Tech and Security: Strategy & Innovation with Raffy.

The post How AI Impacts the Cyber Market and The Future of SIEM appeared first on Security Boulevard.

CVE-2025-64155, a command injection vulnerability, was disclosed earlier this week and quickly came under attack from a variety of IP addresses.

A vulnerability marked as problematic has been reported in Apple macOS up to 10.15.3. The affected element is an unknown function of the component Intel Graphics Driver. Performing a manipulation results in information disclosure. This vulnerability is cataloged as CVE-2019-14615. The attack must be initiated from a local position. There is no exploit available. It is suggested to upgrade the affected component.

A vulnerability was found in Intel CPU. It has been classified as problematic. Affected by this vulnerability is an unknown functionality of the component Processor Graphics Handler. The manipulation leads to information disclosure. This vulnerability is referenced as CVE-2019-14615. The attack can only be performed from a local environment. No exploit is available.

A cross-site scripting (XSS) flaw in the web-based control panel used by operators of the StealC info-stealing malware allowed researchers to observe active sessions and gather intelligence on the attackers' hardware. [...]

A vulnerability described as problematic has been identified in DoubleWiki Extension up to 1.39.3 on MediaWiki. This affects an unknown part of the file includes/DoubleWiki.php of the component Column Alignment. Executing a manipulation can lead to cross site scripting. This vulnerability is tracked as CVE-2023-37304. The attack can be launched remotely. No exploit exists.

A vulnerability classified as critical has been found in CheckUser Extension up to 1.39.3 on MediaWiki. This vulnerability affects unknown code of the component Error Message Handler. The manipulation leads to improper access controls. This vulnerability is listed as CVE-2023-37303. The attack must be carried out from within the local network. There is no available exploit.

A vulnerability classified as critical was found in MediaWiki up to 1.39.3. This issue affects the function SubmitEntityAction of the component Wikibase. The manipulation results in improper access controls. This vulnerability is cataloged as CVE-2023-37301. The attack must originate from the local network. There is no exploit available.

A vulnerability has been found in CheckUser Extension up to 1.39.3 on MediaWiki and classified as critical. This affects an unknown part of the component CheckUserLog API. This manipulation causes improper access controls. This vulnerability is registered as CVE-2023-37300. The attack requires access to the local network. No exploit is available.

A vulnerability has been found in SmartSoft SmartBPM.NET and classified as critical. This issue affects some unknown processing. The manipulation leads to relative path traversal. This vulnerability is traded as CVE-2023-37288. It is possible to initiate the attack remotely. There is no exploit available.

You’ve probably felt the pain of trying to move fast while navigating a growing maze of privacy rules. Learn how synthetic data helps your organization comply with CCPA.

The post CCPA: Understanding how synthetic data can help achieve compliance appeared first on Security Boulevard.

当「超级助理」变成广告入口，AI 的中立性改变了什么

PromptArmor threat researchers uncovered a vulnerability in Anthropic's new Cowork that already was detected in the AI company's Claude Code developer tool, and which allows a threat actor to trick the agent into uploading a victim's sensitive files to their own Anthropic account.

The post Vulnerability in Anthropic’s Claude Code Shows Up in Cowork appeared first on Security Boulevard.

Session 9A: Android Security 2

Authors, Creators & Presenters: Daniel Klischies (Ruhr University Bochum), Philipp Mackensen (Ruhr University Bochum), Veelasha Moonsamy (Ruhr University Bochum)

PAPER
Vulnerability, Where Art Thou? An Investigation of Vulnerability Management in Android Smartphone Chipsets

Vulnerabilities in Android smartphone chipsets have severe consequences, as recent real-world attacks have demonstrated that adversaries can leverage vulnerabilities to execute arbitrary code or exfiltrate confidential information. Despite the far-reaching impact of such attacks, the lifecycle of chipset vulnerabilities has yet to be investigated, with existing papers primarily investigating vulnerabilities in the Android operating system. This paper provides a comprehensive and empirical study of the current state of smartphone chipset vulnerability management within the Android ecosystem. For the first time, we create a unified knowledge base of 3,676 chipset vulnerabilities affecting 437 chipset models from all four major chipset manufacturers, combined with 6,866 smartphone models. Our analysis revealed that the same vulnerabilities are often included in multiple generations of chipsets, providing novel empirical evidence that vulnerabilities are inherited through multiple chipset generations. Furthermore, we demonstrate that the commonly accepted 90-day responsible vulnerability disclosure period is seldom adhered to. We find that a single vulnerability often affects hundreds to thousands of different smartphone models, for which update availability is, as we show, often unclear or heavily delayed. Leveraging the new insights gained from our empirical analysis, we recommend several changes that chipset manufacturers can implement to improve the security posture of their products. At the same time, our knowledge base enables academic researchers to conduct more representative evaluations of smartphone chipsets, accurately assess the impact of vulnerabilities they discover, and identify avenues for future research.

ABOUT NDSS
The Network and Distributed System Security Symposium (NDSS) fosters information exchange among researchers and practitioners of network and distributed system security. The target audience includes those interested in practical aspects of network and distributed system security, with a focus on actual system design and implementation. A major goal is to encourage and enable the Internet community to apply, deploy, and advance the state of available security technologies.

Our thanks to the Network and Distributed System Security (NDSS) Symposium for publishing their Creators, Authors and Presenter’s superb NDSS Symposium 2025 Conference content on the Organizations' YouTube Channel.

Permalink

The post NDSS 2025 – Vulnerability, Where Art Thou? Vulnerability Management In Android Smartphone Chipsets appeared first on Security Boulevard.

A vulnerability was found in Juniper Paragon Active Assurance 4.1.0/4.2.0. It has been rated as problematic. This impacts an unknown function of the component probe_serviced. This manipulation causes information disclosure. This vulnerability appears as CVE-2024-30381. The attacker needs to be present on the local network. There is no available exploit.

A vulnerability described as critical has been identified in Linux Kernel up to 5.4.295/5.10.239/5.15.98/6.1.15/6.2.2. Affected by this vulnerability is the function get_user_pages_fast of the component VMCI. The manipulation results in out-of-bounds read. This vulnerability is identified as CVE-2023-53259. The attack can only be performed from the local network. There is not any exploit available. Upgrading the affected component is recommended.

A vulnerability identified as critical has been detected in Linux Kernel up to 6.0.2. Impacted is the function of_find_matching_node of the component clk. The manipulation leads to improper update of reference count. This vulnerability is listed as CVE-2022-50444. The attack must be carried out from within the local network. There is no available exploit. You should upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.1.152/6.6.106/6.12.47/6.16.7. Affected by this vulnerability is the function stm32_fmc2 of the file kernel/dma/debug.c of the component mtd. Such manipulation leads to buffer overflow. This vulnerability is referenced as CVE-2025-39907. The attack needs to be initiated within the local network. No exploit is available. Upgrading the affected component is advised.