Aggregator

CVE-2025-48959 | Acronis Cyber Protect Cloud Agent up to 40076 on Windows default permission (EUVD-2025-16868)

VulDB Recent Entries
9 months 4 weeks ago
A vulnerability was found in Acronis Cyber Protect Cloud Agent up to 40076 on Windows. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to incorrect default permissions. This vulnerability is handled as CVE-2025-48959. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-30415 | Acronis Cyber Protect Cloud Agent up to 40076 improper validation of syntactic correctness of input (EUVD-2025-16869)

VulDB Recent Entries
9 months 4 weeks ago
A vulnerability was found in Acronis Cyber Protect Cloud Agent up to 40076. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper validation of syntactic correctness of input. This vulnerability is known as CVE-2025-30415. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-5648 | Radare2 5.9.9 radiff2 /libr/cons/pal.c r_cons_pal_init -T memory corruption

VulDB Recent Entries
9 months 4 weeks ago
A vulnerability was found in Radare2 5.9.9. It has been classified as problematic. Affected is the function r_cons_pal_init in the library /libr/cons/pal.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. This vulnerability is traded as CVE-2025-5648. An attack has to be approached locally. Furthermore, there is an exploit available. The real existence of this vulnerability is still doubted at the moment. It is recommended to apply a patch to fix this issue. The documentation explains that the parameter -T is experimental and "crashy". Further analysis has shown "the race is not a real problem unless you use asan". A new warning has been added.
vuldb.com

Best Practices for Improving Hybrid and Multicloud Performance

Netscout
9 months 4 weeks ago
Success in the cloud depends less on adoption and more on agility. Recent industry trends point to emerging data management challenges across cloud service providers and legacy infrastructure, often all at once. This requires a shift in how organizations approach cloud strategies—strategically and proactively. Modern...
Anthony Cote

CVE-2025-5647 | Radare2 5.9.9 radiff2 /libr/cons/cons.c r_cons_context_break_pop -T memory corruption (Issue 24237)

VulDB Recent Entries
9 months 4 weeks ago
A vulnerability was found in Radare2 5.9.9 and classified as problematic. This issue affects the function r_cons_context_break_pop in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. The identification of this vulnerability is CVE-2025-5647. The attack needs to be approached locally. Furthermore, there is an exploit available. The real existence of this vulnerability is still doubted at the moment. It is recommended to apply a patch to fix this issue. The documentation explains that the parameter -T is experimental and "crashy". Further analysis has shown "the race is not a real problem unless you use asan". A new warning has been added.
vuldb.com

CVE-2025-5646 | Radare2 5.9.9 radiff2 /libr/cons/pal.c r_cons_rainbow_free -T memory corruption (Issue 24235)

VulDB Recent Entries
9 months 4 weeks ago
A vulnerability has been found in Radare2 5.9.9 and classified as problematic. This vulnerability affects the function r_cons_rainbow_free in the library /libr/cons/pal.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. This vulnerability was named CVE-2025-5646. It is possible to launch the attack on the local host. Furthermore, there is an exploit available. The real existence of this vulnerability is still doubted at the moment. It is recommended to apply a patch to fix this issue. The documentation explains that the parameter -T is experimental and "crashy". Further analysis has shown "the race is not a real problem unless you use asan". A new warning has been added.
vuldb.com

CVE-2025-5645 | Radare2 5.9.9 radiff2 /libr/cons/pal.c r_cons_pal_init -T memory corruption (Issue 24234)

VulDB Recent Entries
9 months 4 weeks ago
A vulnerability, which was classified as problematic, was found in Radare2 5.9.9. This affects the function r_cons_pal_init in the library /libr/cons/pal.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. This vulnerability is uniquely identified as CVE-2025-5645. Attacking locally is a requirement. Furthermore, there is an exploit available. The real existence of this vulnerability is still doubted at the moment. It is recommended to apply a patch to fix this issue. The documentation explains that the parameter -T is experimental and "crashy". Further analysis has shown "the race is not a real problem unless you use asan". A new warning has been added.
vuldb.com

Windows Authentication Coercion Attacks Present Major Risks to Enterprise Networks

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
9 months 4 weeks ago

Authentication coercion remains a potent attack vector in Windows environments, enabling attackers with even low-privileged domain accounts to force targeted systems, often high-value servers or domain controllers, to authenticate to attacker-controlled hosts. This technique is closely tied to NTLM and Kerberos relay attacks, where the coerced authentication session is intercepted and relayed to other services, […]

The post Windows Authentication Coercion Attacks Present Major Risks to Enterprise Networks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Anupriya

CVE-2025-5644 | Radare2 5.9.9 radiff2 /libr/cons/cons.c r_cons_flush -T use after free (Issue 24233)

VulDB Recent Entries
9 months 4 weeks ago
A vulnerability, which was classified as problematic, has been found in Radare2 5.9.9. Affected by this issue is the function r_cons_flush in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to use after free. This vulnerability is handled as CVE-2025-5644. Local access is required to approach this attack. Furthermore, there is an exploit available. The real existence of this vulnerability is still doubted at the moment. It is recommended to apply a patch to fix this issue. The documentation explains that the parameter -T is experimental and "crashy". Further analysis has shown "the race is not a real problem unless you use asan". A new warning has been added.
vuldb.com

CVE-2025-5643 | Radare2 5.9.9 radiff2 /libr/cons/cons.c cons_stack_load -T memory corruption (Issue 24232)

VulDB Recent Entries
9 months 4 weeks ago
A vulnerability classified as problematic was found in Radare2 5.9.9. Affected by this vulnerability is the function cons_stack_load in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. This vulnerability is known as CVE-2025-5643. An attack has to be approached locally. Furthermore, there is an exploit available. The real existence of this vulnerability is still doubted at the moment. It is recommended to apply a patch to fix this issue. The documentation explains that the parameter -T is experimental and "crashy". Further analysis has shown "the race is not a real problem unless you use asan". A new warning has been added.
vuldb.com

预警 : 病毒“黑吃黑”,GitHub开源远控项目暗藏后门

火绒安全实验室
9 months 4 weeks ago
当黑产开发者以为在共享“行业秘笈”时,殊不知已经掉入了黑客布置的陷阱——看似方便的后门远程控制源码和游戏外挂源码等“圈内资源”,实则是植入了恶意代码的投毒诱饵。黑客抓住相关开发者对开源代码的信任,用“魔法”打败“魔法”,上演了一场荒诞戏码。

Managed ad