Aggregator
CVE-2025-6444 | ServiceStack GetErrorResponse input validation
CVE-2025-6445 | ServiceStack FindType path traversal
CVE-2025-6442 | Ruby WEBrick HTTP Request read_header request smuggling
Submit #597454: tarantool tarantool 3.3.1 (commit 46cc98b) Reachable Assertion [Accepted]
CVE-2025-52879 | JetBrains TeamCity up to 2025.03.2 NPM Registry Integration cross site scripting
CVE-2025-52877 | JetBrains TeamCity up to 2025.03.2 diskUsageBuildsStats Page cross site scripting
CVE-2025-52876 | JetBrains TeamCity up to 2025.03.2 favoriteIcon Page cross site scripting (EUVD-2025-18915)
CVE-2025-52875 | JetBrains TeamCity up to 2025.03.2 Performance Monitor Page cross site scripting (EUVD-2025-18914)
Microsoft will start removing legacy drivers from Windows Update
Microsoft will start removing legacy drivers from Windows Update to improve driver quality for Windows users but, most importantly, to increase security, the company has announced. This is intended to be an ongoing process and Microsoft is planning to introduce new publishing rules for driver updates. A step-by-step process Microsoft is, in effect, trimming its “driver garden” so that Windows will – ideally and in time – only deal with fresh, well-tested, secure and compatible … More →
The post Microsoft will start removing legacy drivers from Windows Update appeared first on Help Net Security.
CVE-2025-52878 | JetBrains TeamCity up to 2025.03.2 Username authorization
SparkKitty Targets iOS and Android Devices via App Store and Google Play Attacks
A sophisticated spyware campaign, dubbed SparkKitty, has emerged as a significant threat to both iOS and Android users, infiltrating even the official app stores like Google Play and the App Store. First detected in connection with the earlier SparkCat campaign from January 2025, which targeted crypto wallet seed phrases, SparkKitty has since evolved into a […]
The post SparkKitty Targets iOS and Android Devices via App Store and Google Play Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.