Aggregator
159 CVEs Exploited in Q1 2025 — 28.3% Within 24 Hours of Disclosure
Multiple Cisco Tools at Risk from Erlang/OTP SSH Remote Code Execution Flaw
Cisco has issued a high-severity advisory (cisco-sa-erlang-otp-ssh-xyZZy) warning of a critical remote code execution (RCE) vulnerability in products using Erlang/OTP’s SSH server. The flaw, tracked as CVE-2025-32433, allows unauthenticated attackers to execute arbitrary code on vulnerable devices, posing systemic risks to enterprise networks, cloud infrastructure, and telecom systems. Vulnerability Overview The flaw stems from improper handling […]
The post Multiple Cisco Tools at Risk from Erlang/OTP SSH Remote Code Execution Flaw appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Commvault RCE Vulnerability Exploited—PoC Released
Enterprises and managed service providers globally are now facing urgent security concerns following the disclosure of a major pre-authenticated remote code execution (RCE) vulnerability in Commvault’s on-premise backup and recovery software. The issue, tracked as CVE-2025-34028, has rocked the cybersecurity world, particularly after researchers published a fully working proof-of-concept (PoC) exploit. With attackers actively probing […]
The post Commvault RCE Vulnerability Exploited—PoC Released appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Google знает, кто вы, чем болеете и сколько должны — и это даже не шутка, а фича
CVE-2025-3435 | Mang Board WP Plugin up to 1.8.6 on WordPress board_header/board_footer cross site scripting
CVE-2025-3761 | My Tickets Plugin up to 2.0.16 on WordPress mt_save_profile privileges management
CVE-2025-2558 | the-wound Plugin up to 0.0.1 on WordPress file inclusion
CVE-2025-1453 | Category Posts Widget Plugin up to 4.9.19 on WordPress Setting cross site scripting
CVE-2025-46417 | Picklescan up to 0.0.24 DNS ssl.get_server_certificate incomplete blacklist (GHSA-93mv-x874-956g)
CVE-2025-35965 | Mattermost up to 9.11.10/10.4.2/10.5.0 UpdateRunTaskActions allocation of resources
CVE-2025-41423 | Mattermost up to 9.11.10/10.4.2/10.5.0 API Endpoint ignore-thread authorization
CVE-2025-32730 | i-PRO Configuration Tool hard-coded key
CVE-2025-41395 | Mattermost Playbooks Plugin up to 9.11.10/10.4.2/10.5.0/10.5.x RetrospectivePost improper validation of specified type of input
AVX ONE PQC Tool delivers crypto inventory, risk insights, and readiness scoring
AppViewX has announced the launch of the AVX ONE Post-Quantum Cryptography (PQC) Assessment Tool that generates a Cryptographic Bill of Materials and PQC readiness score.
The post AVX ONE PQC Tool delivers crypto inventory, risk insights, and readiness scoring appeared first on Help Net Security.
CVE-2019-19921 | runc up to 1.0.0-rc9 Access Control rootfs_linux.go name resolution (RHSA-2020:0688 / Nessus ID 234786)
CVE-2019-16884 | runc up to 1.0.0-rc8 AppArmor rootfs_linux.go authorization (RHSA-2019:3940 / Nessus ID 234786)
CVE-2002-0597 | Microsoft Windows 2000 LANMAN Service memory allocation (VU#693099 / EDB-21388)
GitGuardian Joins Health-ISAC: Strengthening Cybersecurity in Healthcare Through Secrets Detection
As cyber threats in healthcare continue to evolve, GitGuardian strengthens its commitment to the sector by joining Health-ISAC and offering members enhanced secrets detection capabilities to protect sensitive data.
The post GitGuardian Joins Health-ISAC: Strengthening Cybersecurity in Healthcare Through Secrets Detection appeared first on Security Boulevard.
蚂蚁集团“切面融合智能”应用入选“2024十大优秀网络安全创新成果”
4月23日,由武汉市人民政府主办,中国网络空间安全协会、武汉临空港经济技术开发区管委会承办,中国互联网发展基金会支持的“第二届武汉网络安全创新论坛”正式开幕。大会对外发布“2024十大优秀网络安全创新成果”,蚂蚁集团“切面融合智能在威胁检测领域的应用”入选。
据了解,此次征集面向人工智能安全、智能网联安全、云安全、开源软件安全,从108项征集成果中通过两轮评审,最终评出“2024十大优秀网络安全创新成果”。
在创新成果分享环节,蚂蚁集团资深算法专家仲震宇对“切面融合智能在威胁检测领域的应用”做了解读介绍。全球数字化转型浪潮下,网络空间和数字化业务日益成为经济发展的驱动力,但网络风险态势越发严峻复杂,恶意攻击手段不断翻新。数字化企业庞大且复杂的系统,每日产生海量数据,这对安全防护提出了更高的要求:既要能从数据洪流中实时精准地发现潜在威胁,满足高效、敏捷的威胁对抗实时性要求;也要在突发安全事件时快速响应、有效应变,构建起一套既能灵活应对又能稳固支撑业务连续性的安全体系。
在此背景下,蚂蚁集团创新性地将人工智能技术与蚂蚁集团首创的安全平行切面技术融合,结合安全大模型对安全语义的强大理解能力和对复杂问题的高效处理能力,通过融合安全专家经验和机器智能,基于DKCF(Data/Knowledge/Collaboration/Feedback,即数据/知识/协同/反馈)范式将大模型可信应用到网络安全领域,建立了以“安全平行切面与智能威胁检测”为核心的多层次网络安全纵深防护体系。
该体系中,数据关联分析能力模块,利用基于攻击链路的安全切面数据关联分析能力,构建出完整攻击链路;未知威胁发现能力模块,基于DKCF(数据/知识/协同/反馈)应用框架,将大模型的知识抽象能力和推理能力更可信地应用于未知威胁发现;告警降误报能力模块,依托大模型能力将告警数据与业务行为基线进行关联匹配,大幅减少无效的安全告警;安全对抗知识图谱模块,将ATT&CK战术技术、威胁情报信息融合知识图谱的图节点属性中,提升了威胁检测的准确性和可解释性。
该体系有效应对了现有安全威胁检测技术因安全内视能力和智能化水平不足而普遍存在的误报多、未知威胁发现能力弱、可解释性差等问题,在历次演练和实践中表现出色,提升了整体安全防护的前瞻性和有效性。相关成果曾获评2024 WIC Find智能科技创新应用典型案例、入选《2024人工智能先锋案例集》和大模型应用落地“样板间工程”等。