Aggregator

微步连续三年蝉联CNNVD“年度优秀技术支撑单位”、“高质量漏洞优秀贡献单位”

技术手段高超，隐蔽性强

A vulnerability classified as problematic was found in Directus 10.13.0. Affected by this vulnerability is an unknown functionality of the file /presets of the component PATCH Request Handler. The manipulation of the argument User leads to authorization bypass. This vulnerability is known as CVE-2024-6534. The attack can be launched remotely. There is no exploit available.

A vulnerability was found in MDaemon Email Server up to 24.5.1b. It has been rated as problematic. This issue affects some unknown processing of the component HTML E-Mail Message Handler. The manipulation leads to HTML injection. The identification of this vulnerability is CVE-2024-11182. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Output Messenger up to 2.0.62 and classified as critical. This vulnerability affects unknown code. The manipulation leads to path traversal. This vulnerability was named CVE-2025-27920. The attack needs to be initiated within the local network. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Ivanti Endpoint Manager Mobile up to 12.5.0.0. It has been rated as critical. Affected by this issue is some unknown functionality of the component API Request Handler. The manipulation leads to code injection. This vulnerability is handled as CVE-2025-4428. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Microsoft Windows. This issue affects some unknown processing of the component Trusted Runtime Interface Driver. The manipulation leads to uninitialized resource. The identification of this vulnerability is CVE-2025-29829. Local access is required to approach this attack. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, was found in Microsoft Windows. Affected is an unknown function of the component Routing/Remote Access Service. The manipulation leads to uninitialized resource. This vulnerability is traded as CVE-2025-29830. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability has been found in Microsoft Windows and classified as critical. Affected by this vulnerability is an unknown functionality of the component Remote Desktop Services. The manipulation leads to use after free. This vulnerability is known as CVE-2025-29831. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows and classified as problematic. Affected by this issue is some unknown functionality of the component Routing/Remote Access Service. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2025-29832. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows. It has been classified as critical. This affects an unknown part of the component Virtual Machine Bus. The manipulation leads to time-of-check time-of-use. This vulnerability is uniquely identified as CVE-2025-29833. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows. It has been declared as problematic. This vulnerability affects unknown code of the component Remote Access Connection Manager. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2025-29835. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows. It has been rated as problematic. This issue affects some unknown processing of the component Routing/Remote Access Service. The manipulation leads to out-of-bounds read. The identification of this vulnerability is CVE-2025-29836. The attack may be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

HackerNews 编译，转载请注明出处： Elementor建站工具配套插件RomethemeKit曝出严重安全漏洞，该漏洞允许远程代码执行（RCE），目前已在1.5.5版本中完成修复。这款拥有超3万活跃安装量的插件主要用于为Elementor用户提供模板、部件和图标包，简化缺乏编程经验用户的建站流程。 网络安全公司Patchstack研究发现，旧版本中的install_requirements函数因缺少权限验证和非随机数（nonce）检查，使得任何已认证用户（包括仅具备订阅者权限的低权账户）均可利用此漏洞安装并激活任意插件。恶意插件一旦激活，攻击者即可远程执行任意代码。该漏洞被收录为CVE-2025-30911。 开发商Rometheme于2025年1月14日收到漏洞通报，1月30日发布的1.5.4版本尝试修补但未彻底解决问题。直至3月14日推出的1.5.5版本才通过添加权限验证和非随机数检查实现完整修复。 为避免同类漏洞，安全专家建议插件开发者在设计与开发阶段采取以下措施： 对涉及文件上传、插件安装、设置变更等管理级操作实施严格权限控制。 为所有通过AJAX发起的操作添加非随机数验证，防范跨站请求伪造（CSRF）攻击。 禁止向订阅者、投稿者等低权限角色开放插件安装/激活等敏感功能接口。 建立完善的验证框架并遵循WordPress官方编码规范，可显著降低远程代码执行等风险。定期代码审计、安全测试与及时更新同样是保障插件安全的关键措施。       消息来源： infosecurity-magazine； 本文由 HackerNews.cc 翻译整理，封面来源于网络； 转载请注明“转自 HackerNews.cc”并附上原文

HackerNews 编译，转载请注明出处： Mozilla已发布安全更新，修复其Firefox浏览器中两个可能被用于窃取敏感数据或执行任意代码的严重漏洞。这两个漏洞均作为零日漏洞在Pwn2Own柏林黑客大赛中被利用，详情如下—— CVE-2025-4918：解析Promise对象时存在的越界访问漏洞，攻击者可借此对JavaScript Promise对象实施读写操作。 CVE-2025-4919：优化线性累加运算时存在的越界访问漏洞，攻击者可通过混淆数组索引尺寸对JavaScript对象实施读写操作。 简而言之，成功利用任一漏洞的攻击者都能实施越界读写，进而窃取敏感信息或造成内存损坏，最终实现代码执行。该系列漏洞影响范围包括： 138.0.4版本之前的所有Firefox浏览器（含安卓版） 128.10.1版本之前的所有Firefox扩展支持版（ESR） 115.23.1版本之前的所有Firefox ESR版本 CVE-2025-4918的发现与报告归功于Palo Alto Networks的Edouard Bochin与Tao Yan，CVE-2025-4919则由Manfred Paul发现。值得注意的是，这两个漏洞在上周的Pwn2Own柏林赛事中被成功演示利用，发现者各获得5万美元奖金。 Mozilla在声明中强调：“两起攻击均未突破我们的沙箱环境（这是获取用户系统控制权的必要条件）。尽管实际影响有限，仍建议所有用户和管理员立即升级至最新版本。”鉴于浏览器仍是恶意软件传播的主要载体，及时更新成为抵御潜在威胁的关键措施。       消息来源： thehackernews； 本文由 HackerNews.cc 翻译整理，封面来源于网络； 转载请注明“转自 HackerNews.cc”并附上原文

在情报界，有一场永不停歇的“猫鼠游戏”。今天，就让我们走进美国海岸警卫队（USCG）与哥伦比亚毒贩之间的一场高科技对决，看看这场“猫鼠游戏”究竟有多精彩！

在这个信息战愈演愈烈的世界，一场看不见的战争正在网络空间悄然展开。2025年初，当全球安全专家们惊讶地发现价

HackerNews 编译，转载请注明出处： 网络安全公司Cyble的最新监测数据显示，由于云存储桶配置错误导致的海量数据泄露仍在持续恶化。这家专注于暗网监控与威胁情报的企业透露，其漏洞扫描工具在七大主流云服务商处发现超过66万个暴露的存储桶，涉及2000亿份外泄文件。 仅针对凭证、源代码和机密文件三类敏感数据的筛选就暴露出数百万份高风险文件。Cyble研究人员具体指出：以“源代码”和Go语言为筛选条件，发现560万条结果；环境变量凭证过滤显示11万份敏感信息；机密文件检索则呈现逾160万条记录。 与去年8月相比，暴露云存储桶数量激增30%以上（当时监测到超50万个）。分析报告强调，存储桶配置错误已成为数据泄露的常见诱因——“即使大型企业也难以完美管控云存储访问权限，公开可访问的配置失误屡见不鲜。虽然云存储默认私有，但在共享对象或资源时极易引发复杂风险”。 监测案例显示，外泄数据类型涵盖文档、凭证、源代码乃至内部备份等关键资产。Cyble警告称，这类漏洞正在成为攻击者获取初始访问权限的重要跳板。       消息来源： cybernews； 本文由 HackerNews.cc 翻译整理，封面来源于网络； 转载请注明“转自 HackerNews.cc”并附上原文

今天是520，网民们流行的网络情人节，后来被商家加以宣传推广。这是一个标准的中国专属的人造节日。