Aggregator

A vulnerability classified as problematic has been found in Open Asset Import Library Assimp 5.4.3. This impacts the function MDCImporter::InternReadFile of the file assimp/code/AssetLib/MDC/MDCLoader.cpp of the component MDC File Parser. The manipulation of the argument pcVerts leads to out-of-bounds read. This vulnerability is listed as CVE-2025-5166. The attack must be carried out locally. In addition, an exploit is available. The project decided to collect all Fuzzer bugs in a main-issue to address them in the future.

A vulnerability labeled as problematic has been found in LibreCad 2.2.0. The impacted element is an unknown function of the component DXF Document Handler. Executing manipulation can lead to null pointer dereference. This vulnerability is tracked as CVE-2021-45343. The attack can be launched remotely. No exploit exists.

A vulnerability was found in GitLab Community Edition and Enterprise Edition. It has been classified as problematic. Affected by this vulnerability is an unknown functionality of the component Protected Branch Handler. This manipulation causes improper control of resource identifiers. The identification of this vulnerability is CVE-2023-3444. It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is recommended.

The U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) has imposed sanctions on Russian national Vitaliy Sergeyevich Andreyev, DPRK official Kim Ung Sun, Chinese entity Shenyang Geumpungri Network Technology Co., Ltd. DPRK-based Korea Sinjin Trading Corporation for their involvement in a sophisticated fraudulent scheme involving information technology workers orchestrated by the Democratic […]

The post U.S. Treasury Sanctions North Korean IT Worker Network Funding Weapons Programs appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Defensie heeft bij de Raad van State hoger beroep ingediend tegen de uitspraak van de rechter om de natuurvergunning voor Vliegbasis Leeuwarden te vernietigen. Naast het hoger beroep wordt met het ministerie van Landbouw, Visserij, Voedselzekerheid en Natuur ook de aanvraag voor de natuurvergunning hervat.

Hey, hey, everyone, I hope you’re ready to get back into another Season! There’s a bit I’d like to review from Season 8, but first, list talk about this Season’s theme, GACHA.

С 1 сентября в России заработает сервис “вторая рука”.

A vulnerability identified as critical has been detected in Citrix NetScaler ADC and NetScaler Gateway up to 37.240/47.47/55.329/59.21. This impacts an unknown function of the component Gateway/IPv6 Service. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2025-7775. The attack is possible to be carried out remotely. Moreover, an exploit is present. You should upgrade the affected component.

A vulnerability described as problematic has been identified in TOTOLINK X2000R up to 2.0.0. The affected element is an unknown function of the file /etc/shadow.sample of the component Administrative Interface. The manipulation results in use of default credentials. This vulnerability is known as CVE-2025-9577. Attacking locally is a requirement. Furthermore, an exploit is available.

A vulnerability marked as problematic has been reported in seeedstudio ReSpeaker LinkIt7688. Impacted is an unknown function of the file /etc/shadow of the component Administrative Interface. The manipulation leads to use of default credentials. This vulnerability is traded as CVE-2025-9576. An attack has to be approached locally. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

Submit #636070 / VDB-320914

Submit #636069 / VDB-321691

Submit #636068 / VDB-321690

Email has always been a double-edged sword in the world of business. On one hand, it’s the fastest,…

Cisco has issued a high-severity security advisory warning of a dangerous vulnerability in its Nexus 3000 and 9000 Series switches that could allow attackers to trigger denial of service (DoS) attacks through crafted network packets. The vulnerability, tracked as CVE-2025-20241 and assigned a CVSS score of 7.4, affects the Intermediate System-to-Intermediate System (IS-IS) feature in Cisco NX-OS […]

The post Cisco Nexus 3000 & 9000 Vulnerability Enables DoS Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

关键词勒索软件知名危机公关公司 Singer Associates 被勒索软件组织 Qilin 声称攻陷。

关键词数据泄露最近，有一家暗网的黑客服务引起了安全圈的广泛关注。

关键词网络攻击近日，瑞典IT服务供应商Miljödata遭遇大规模勒索软件攻击，导致约200个市政当局和地区政

关键词安全漏洞网络安全公司 Cybernews 日前披露，在腾讯云的部分服务器上发现严重配置错误，导致内部敏感