Aggregator

A vulnerability has been found in Ilevia EVE X1 Server up to 4.7.18.0.eden and classified as problematic. Affected is an unknown function. This manipulation causes sensitive information in log files. This vulnerability is registered as CVE-2025-34183. Remote exploitation of the attack is possible. No exploit is available.

A vulnerability, which was classified as critical, was found in Ilevia EVE X1 Server and EVE X5 Server up to 4.7.18.0.eden. This impacts the function system. The manipulation results in improper authentication. This vulnerability is cataloged as CVE-2025-34186. The attack may be launched remotely. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in Ilevia EVE X1 Server up to 4.7.18.0.eden. This affects an unknown function of the component POST Parameter Handler. The manipulation of the argument db_log leads to information disclosure. This vulnerability is listed as CVE-2025-34185. The attack may be initiated remotely. There is no available exploit.

A vulnerability classified as critical was found in Ilevia EVE X1 Server and EVE X5 Server up to 4.7.18.0.eden. The impacted element is an unknown function of the component sudo Handler. Executing manipulation can lead to improper privilege management. This vulnerability is tracked as CVE-2025-34187. The attack can be launched remotely. No exploit exists.

A vulnerability classified as critical has been found in Ilevia EVE X1 Server up to 4.7.18.0.eden. The affected element is an unknown function of the file /ajax/php/login.php of the component POST Parameter Handler. Performing manipulation of the argument passwd results in os command injection. This vulnerability is identified as CVE-2025-34184. The attack can be initiated remotely. There is not any exploit available.

A vulnerability described as problematic has been identified in Portabilis i-Educar up to 2.10. Impacted is an unknown function of the file /intranet/educar_calendario_anotacao_cad.php. Such manipulation of the argument nm_anotacao/descricao leads to cross site scripting. This vulnerability is referenced as CVE-2025-10584. It is possible to launch the attack remotely. Furthermore, an exploit is available.

Villager is being pitched as a legitimate AI-powered pentest tool for red teams, but the platform, made by Chinese company Cyberspike, has been loaded almost 11,000 times on PyPI in two months, raising concerns that it is on the same path as Cobalt Strike, another red team tool that became a favorite of malicious actors.

The post Chinese-Made Villager AI Pentest Tool Raises Cobalt Strike-Like Concerns appeared first on Security Boulevard.

Submit #644374 / VDB-324561

Submit #644373 / VDB-316981

A vulnerability described as critical has been identified in Samsung Smart Phone. The affected element is an unknown function of the component Telephony Framework. Executing manipulation can lead to improper access controls. This vulnerability appears as CVE-2023-21487. The attack requires local access. There is no available exploit. Upgrading the affected component is recommended.

A vulnerability classified as critical has been found in Samsung Smart Phone. The impacted element is an unknown function of the component Tips. The manipulation leads to improper access controls. This vulnerability is traded as CVE-2023-21488. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Samsung Smart Phone and classified as problematic. Impacted is the function VideoPreviewActivity of the component Call Setting Handler. The manipulation leads to improper export of android application components. This vulnerability is referenced as CVE-2023-21485. It is possible to launch the attack on the physical device. No exploit is available. To fix this issue, it is recommended to deploy a patch.

A vulnerability was found in Samsung Smart Phone and classified as problematic. The affected element is the function ImagePreviewActivity of the component Call Setting Handler. The manipulation results in improper export of android application components. This vulnerability is identified as CVE-2023-21486. An attack on the physical device is feasible. There is not any exploit available. It is advisable to implement a patch to correct this issue.

The newly emerged worm has spread across hundreds of open source software packages, stealing credentials and infecting other components without much direct attacker input.

A vulnerability labeled as critical has been found in Samsung Smart Phone. This issue affects some unknown processing of the component AppLock. Such manipulation leads to improper access controls. This vulnerability is documented as CVE-2023-21484. The attack needs to be performed locally. There is not any exploit available. The affected component should be upgraded.

A vulnerability, which was classified as critical, has been found in jeecg-boot up to 3.5.3. This vulnerability affects unknown code of the file /testConnection. This manipulation causes path traversal. This vulnerability is registered as CVE-2023-41578. The attack requires access to the local network. No exploit is available.

A vulnerability identified as critical has been detected in Samsung BixbyTouch 2.2.00.6. This vulnerability affects unknown code. Performing manipulation results in improper access controls. This vulnerability is identified as CVE-2023-21465. The attack is only possible with local access. There is not any exploit available. You should upgrade the affected component.

Series C Funding to Drive R&D, Fuel Vision for End-to-End Compliance Capabilities
Texas-based fraud detection startup Seon closed an $80 million Series C funding round to support its shift toward an all-in-one AML and KYC compliance platform powered by AI, as it pursues aggressive international expansion and deeper product integration.

Steganography, Mobile Marketing Attribution, Code Obfuscation Deployed for Ad Fraud
A cybercrime crew using Android mobile apps to conduct advertising fraud took unusual pains to hide its activity, concealing malicious code in downloadable digital images and holding off from infecting the subset of users who organically found their apps through the Google Play store.