Aggregator

CVE-2025-58385 | DOXENSE WATCHDOC prior 6.1.0.5094 Active Directory hard-coded credentials

VulDB Recent Entries
9 months ago
A vulnerability described as critical has been identified in DOXENSE WATCHDOC. Affected by this vulnerability is an unknown functionality of the component Active Directory Handler. Executing manipulation can lead to hard-coded credentials. This vulnerability appears as CVE-2025-58385. The attack may be performed from remote. There is no available exploit. Upgrading the affected component is recommended.
vuldb.com

CVE-2025-36274 | IBM Aspera HTTP Gateway up to 2.3.1 cleartext transmission

VulDB Recent Entries
9 months ago
A vulnerability marked as problematic has been reported in IBM Aspera HTTP Gateway up to 2.3.1. Affected is an unknown function. Performing manipulation results in cleartext transmission of sensitive information. This vulnerability is reported as CVE-2025-36274. The attack is possible to be carried out remotely. No exploit exists. It is suggested to upgrade the affected component.
vuldb.com

CVE-2025-58384 | DOXENSE WATCHDOC 6.1.0.5094 Administration Interface deserialization (EUVD-2025-31375)

VulDB Recent Entries
9 months ago
A vulnerability labeled as critical has been found in DOXENSE WATCHDOC 6.1.0.5094. This impacts an unknown function of the component Administration Interface. Such manipulation leads to deserialization. This vulnerability is documented as CVE-2025-58384. The attack can be executed remotely. There is not any exploit available. The affected component should be upgraded.
vuldb.com

CVE-2025-36326 | IBM Cognos Controller/Controller up to 11.0.1 hard-coded key

VulDB Recent Entries
9 months ago
A vulnerability categorized as problematic has been discovered in IBM Cognos Controller and Controller up to 11.0.1. The impacted element is an unknown function. The manipulation results in use of hard-coded cryptographic key . This vulnerability is cataloged as CVE-2025-36326. The attack may be launched remotely. There is no exploit available. It is advisable to upgrade the affected component.
vuldb.com

China is Fueling Surveillance Technology Adoption in Latin America—Who is in Charge of Data Privacy?

Security Boulevard
9 months ago

China’s Belt and Road Initiative (BRI) is well known for funding major infrastructure projects, including new highways, ports and energy plants across more than 150 countries. However, China has also gained a serious foothold when it comes to surveillance infrastructure. This less publicized development has taken off in Latin America in particular, where 35 cities..

The post China is Fueling Surveillance Technology Adoption in Latin America—Who is in Charge of Data Privacy? appeared first on Security Boulevard.

Conrad Egusa

CVE-2025-59689

CVE Trends
9 months ago
Currently trending CVE - Hype Score: 1 - Libraesva ESG 4.5 through 5.5.x before 5.5.7 allows command injection via a compressed e-mail attachment. For ESG 5.0 a fix has been released in 5.0.31. For ESG 5.1 a fix has been released in 5.1.20. For ESG 5.2 a fix has been released in 5.2.31. For ESG 5.4 a fix has been ...

CVE-2025-51591

CVE Trends
9 months ago
Currently trending CVE - Hype Score: 1 - A Server-Side Request Forgery (SSRF) in JGM Pandoc v3.6.4 allows attackers to gain access to and compromise the whole infrastructure via injecting a crafted iframe.

News alert: Living Security unveils HRMCon 2025 lineup amid 81% human cyber risk visibility gap

Security Boulevard
9 months ago

Austin, Texas, Sept. 25, 2025, CyberNewswire — Living Security, a global leader in Human Risk Management (HRM), today announced the full speaker lineup for the Human Risk Management Conference (HRMCon 2025), taking place October 20, 2025, at Austin’s Q2 … (more…)

The post News alert: Living Security unveils HRMCon 2025 lineup amid 81% human cyber risk visibility gap first appeared on The Last Watchdog.

The post News alert: Living Security unveils HRMCon 2025 lineup amid 81% human cyber risk visibility gap appeared first on Security Boulevard.

cybernewswire

Top 10 Best AI Penetration Testing Companies in 2025

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
9 months ago

In 2025, AI penetration testing tools have become the backbone of modern cybersecurity strategies, offering automation, intelligence-driven reconnaissance, and vulnerability analysis faster than traditional manual assessments. Businesses now demand AI-powered solutions to protect against evolving cyber threats and ensure compliance. Choosing the right AI penetration testing platform not only saves time and resources but also […]

The post Top 10 Best AI Penetration Testing Companies in 2025 appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Kaaviya

LLM-Based LAMEHUG Malware Dynamically Generate Commands for Reconnaissance and Data Theft

Cyber Security News
9 months ago

A sophisticated new threat has emerged in the cybersecurity landscape that represents a significant evolution in malware development. The LAMEHUG malware family, first identified by CERT-UA in July 2025, marks a concerning advancement in cyber attack methodology by integrating artificial intelligence directly into its operational framework. Unlike traditional malware that relies on static, pre-programmed instructions, […]

The post LLM-Based LAMEHUG Malware Dynamically Generate Commands for Reconnaissance and Data Theft appeared first on Cyber Security News.

Tushar Subhra Dutta

Managed ad