Aggregator

Grok 4.20 будет знать, что вы чувствуете — даже если вы этого не хотите.

A vulnerability was found in Adobe Commerce up to 2.4.9-alpha1. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to path traversal. This vulnerability is known as CVE-2025-49559. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Intel 700 Series Ethernet up to 2.28.4. It has been classified as critical. Affected is an unknown function of the component Linux Kernel-Mode Driver. The manipulation leads to insufficient control flow management. This vulnerability is traded as CVE-2025-25273. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Intel 700 Series Ethernet up to 2.28.4 and classified as critical. This issue affects some unknown processing of the component Linux Kernel-Mode Driver. The manipulation leads to improper input validation. The identification of this vulnerability is CVE-2025-24486. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Intel 800 Series Ethernet up to 1.17.1 and classified as critical. This vulnerability affects unknown code of the component Linux Kernel-Mode Driver. The manipulation leads to improper input validation. This vulnerability was named CVE-2025-24484. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Intel 800 Series Ethernet up to 1.17.1. This affects an unknown part of the component Linux Kernel-Mode Driver. The manipulation leads to improper input validation. This vulnerability is uniquely identified as CVE-2025-24325. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Intel 800 Series Ethernet up to 1.17.1. Affected by this issue is some unknown functionality of the component Linux Kernel-Mode Driver. The manipulation leads to integer overflow. This vulnerability is handled as CVE-2025-24324. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Intel 800 Series Ethernet up to 1.17.1. Affected by this vulnerability is an unknown functionality of the component Linux Kernel-Mode Driver. The manipulation leads to improper check for unusual conditions. This vulnerability is known as CVE-2025-24303. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Intel 800 Series Ethernet up to 1.17.1. Affected is an unknown function of the component Linux Kernel-Mode Driver. The manipulation leads to integer overflow. This vulnerability is traded as CVE-2025-23241. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Intel 800 Series Ethernet up to 1.17.1. It has been rated as critical. This issue affects some unknown processing of the component Linux Kernel-Mode Driver. The manipulation leads to insufficient control flow management. The identification of this vulnerability is CVE-2025-22893. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Intel 700 Series Ethernet up to 2.28.4. It has been declared as problematic. This vulnerability affects unknown code of the component Linux Kernel-Mode Driver. The manipulation leads to resource consumption. This vulnerability was named CVE-2025-26863. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Intel 800 Series Ethernet up to 1.17.1. It has been classified as critical. This affects an unknown part of the component Linux Kernel-Mode Driver. The manipulation leads to integer overflow. This vulnerability is uniquely identified as CVE-2025-22836. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Intel 700 Series Ethernet up to 2.28.4 and classified as problematic. Affected by this issue is some unknown functionality of the component Linux Kernel-Mode Driver. The manipulation leads to resource consumption. This vulnerability is handled as CVE-2025-26697. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Intel 800 Series Ethernet up to 1.17.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the component Linux Kernel-Mode Driver. The manipulation leads to improper check for unusual conditions. This vulnerability is known as CVE-2025-20093. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Intel I350 Series Ethernet up to 5.19.1. Affected is an unknown function of the component Linux Kernel-Mode Driver. The manipulation leads to improper initialization. This vulnerability is traded as CVE-2025-24511. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Intel 700 Series Ethernet up to 2.28.4. This issue affects some unknown processing of the component Linux Kernel-Mode Driver. The manipulation leads to improper authentication. The identification of this vulnerability is CVE-2025-21086. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

New research has uncovered Docker images on Docker Hub that contain the infamous XZ Utils backdoor, more than a year after the discovery of the incident. More troubling is the fact that other images have been built on top of these infected base images, effectively propagating the infection further in a transitive manner, Binarly REsearch said in a report shared with The Hacker News. The firmware

Microsoft disclosed a significant remote code execution (RCE) vulnerability in its Teams collaboration software as part of its August 2025 Patch Tuesday updates. The critical flaw, identified as CVE-2025-53783, could allow an unauthorized attacker to read, write, and even delete user messages and data by executing code over a network. The vulnerability is a heap-based […]

The post Microsoft Teams RCE Vulnerability Let Attackers Read, Write and Delete Messages appeared first on Cyber Security News.

A vulnerability classified as problematic was found in Microsoft Azure Stack Hub. This vulnerability affects unknown code. The manipulation leads to improper authentication. This vulnerability was named CVE-2025-53793. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as critical has been found in Microsoft Windows. This affects an unknown part of the component StateRepository API Server. The manipulation leads to missing authentication. This vulnerability is uniquely identified as CVE-2025-53789. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to apply a patch to fix this issue.