Aggregator

За маской искусственного интеллекта скрывается Fickle Stealer — вор цифровых кошельков.

A critical memory corruption vulnerability in the popular file archiver 7-Zip has been discovered that allows attackers to trigger denial of service conditions by crafting malicious RAR5 archive files. The vulnerability, tracked as CVE-2025-53816 and designated GHSL-2025-058, affects all versions of 7-Zip prior to version 25.00. Security researcher Jaroslav Lobačevski discovered the vulnerability from GitHub […]

The post New 7-Zip Vulnerability Enables Malicious RAR5 File to Crash Your System appeared first on Cyber Security News.

IntroductionToday, we will t

微软发布针对 SharePoint 的安全补丁修复两个高危漏洞（CVE-2025-53770 和 CVE-2025-53771），涉及远程代码执行和 spoofing 风险。这些漏洞已被积极利用进行攻击。建议用户更新至最新版本并启用 AMSI 和 Defender 等保护措施以应对威胁。

Microsoft on Sunday released security patches for an actively exploited security flaw in SharePoint and also disclosed details of another vulnerability that it said has been addressed with "more robust protections." The tech giant acknowledged it's "aware of active attacks targeting on-premises SharePoint Server customers by exploiting vulnerabilities partially addressed by the July Security

A team of analysts at Kaspersky Lab has uncovered an exceptionally sophisticated piece of malware embedded within the Exchange infrastructure of governmental institutions. Based on forensic logs and the nature of the executable code,...

The post GhostContainer: Kaspersky Uncovers Elite APT Backdoor Infiltrating Asian Government Exchange Servers appeared first on Penetration Testing Tools.

HPE修复了Instant On接入点的两个高危漏洞（CVE-2025-37103和CVE-2025-37102），前者因硬编码凭证可绕过认证并获取管理权限（CVSS 9.8），后者为命令注入漏洞（CVSS 7.2）。两漏洞可结合使用以提升攻击效果。建议用户尽快升级至软件版本3.2.1.0及以上以防范风险。

Hewlett-Packard Enterprise (HPE) has released security updates to address a critical security flaw affecting Instant On Access Points that could allow an attacker to bypass authentication and gain administrative access to susceptible systems. The vulnerability, tracked as CVE-2025-37103, carries a CVSS score of 9.8 out of a maximum of 10.0. "Hard-coded login credentials were found in HPE

A vulnerability was found in Linux Kernel up to 6.1.74/6.6.13/6.7.1. It has been classified as critical. This affects the function normal_link of the component ASoC. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2024-35842. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Linux Kernel up to 5.10.209/5.15.148/6.1.75/6.6.14/6.7.2. Affected by this vulnerability is an unknown functionality of the component mvpp2. The manipulation leads to improper initialization. This vulnerability is known as CVE-2024-35837. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.75/6.6.14/6.7.2. It has been rated as critical. This issue affects some unknown processing of the component mac80211. The manipulation leads to memory leak. The identification of this vulnerability is CVE-2024-35838. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.7.4. This vulnerability affects the function dma_alloc_coherent of the component dmaengine. The manipulation leads to memory leak. This vulnerability was named CVE-2024-35833. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.6.14/6.7.2. Affected by this issue is the function xsk_buff_free. The manipulation leads to buffer overflow. This vulnerability is handled as CVE-2024-35834. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.7.2 and classified as critical. Affected by this issue is some unknown functionality of the component dpll. The manipulation leads to allocation of resources. This vulnerability is handled as CVE-2024-35836. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

文章描述了48针LQFP/TQFP封装的PCB布局及引脚连接情况,包括VDD、XTO、RST、D+、D-、USB电源总线等金属垫及其相关元器件（如电容、电感）的连接方式,以及PCB上的5金属垫行式接头配置。

A vulnerability was found in Oracle Communications Diameter Signaling Router 8.0.0/8.1.0/8.2.0/8.2.1. It has been classified as critical. Affected is an unknown function of the component IDIH Visualization. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2019-11358. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

新的网络攻击活动利用JavaScript加密货币矿工感染全球3500多个网站，在用户不知情下通过浏览器进行挖矿。该恶意软件采用隐藏技术如混淆代码和动态调整挖矿强度以避免检测，并与 Magecart 信用卡窃取器相关联。

A new attack campaign has compromised more than 3,500 websites worldwide with JavaScript cryptocurrency miners, marking the return of browser-based cryptojacking attacks once popularized by the likes of CoinHive.  Although the service has since shuttered after browser makers took steps to ban miner-related apps and add-ons, researchers from the c/side said they found evidence of a stealthy

Windows 11 测试版新增共享音频功能，支持同时连接多个音频输出设备并播放内容。当前正式版仅限选择单一设备输出，该功能旨在满足多设备用户的使用需求，并计划通过累积更新推广至正式版本。

A vulnerability has been found in Microsoft Windows up to Vista and classified as critical. This vulnerability affects unknown code of the component ASLR. The manipulation leads to information disclosure. This vulnerability was named CVE-2015-2433. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.