Aggregator

CISA Beware! Hackers Are Actively Exploiting Windows Server Update Services RCE Flaw in the Wild

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
10 hours 10 minutes ago

Cybersecurity researchers are sounding the alarm after discovering that hackers are actively exploiting a critical remote code execution (RCE) vulnerability in Microsoft’s Windows Server Update Services (WSUS). The flaw, tracked as CVE-2025-59287, allows unauthenticated attackers to run arbitrary code on vulnerable servers, and evidence suggests that these attacks are being carried out manually, a technique […]

The post CISA Beware! Hackers Are Actively Exploiting Windows Server Update Services RCE Flaw in the Wild appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Kaaviya

CVE-2022-49940 | Linux Kernel prior 5.15.66/5.19.8 tty gsm_receive_buf null pointer dereference (EUVD-2022-55188 / Nessus ID 271309)

Vuldb Updates
10 hours 32 minutes ago
A vulnerability was found in Linux Kernel up to 2dc1be365a70699f7dda92fd9e48b84546086070/5.15.65/5.19.7. It has been rated as critical. Affected is the function gsm_receive_buf of the component tty. This manipulation causes null pointer dereference. The identification of this vulnerability is CVE-2022-49940. The attack needs to be done within the local network. There is no exploit available. Upgrading the affected component is advised.
vuldb.com

CVE-2022-49918 | Linux Kernel up to 4.19.264/5.4.223/5.10.153/5.15.77/6.0.7 ipvs fs/proc/generic.c __ip_vs_cleanup_batch initialization (Nessus ID 271309 / WID-SEC-2025-0922)

Vuldb Updates
10 hours 32 minutes ago
A vulnerability classified as problematic has been found in Linux Kernel up to 4.19.264/5.4.223/5.10.153/5.15.77/6.0.7. The impacted element is the function __ip_vs_cleanup_batch of the file fs/proc/generic.c of the component ipvs. The manipulation leads to improper initialization. This vulnerability is documented as CVE-2022-49918. The attack requires being on the local network. There is not any exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2022-49919 | Linux Kernel up to 5.4.223/5.10.153/5.15.77/6.0.7 netfilter use after free (Nessus ID 271309 / WID-SEC-2025-0922)

Vuldb Updates
10 hours 32 minutes ago
A vulnerability categorized as critical has been discovered in Linux Kernel up to 5.4.223/5.10.153/5.15.77/6.0.7. Affected is an unknown function of the component netfilter. Executing manipulation can lead to use after free. This vulnerability is tracked as CVE-2022-49919. The attack is only possible within the local network. No exploit exists. It is advisable to upgrade the affected component.
vuldb.com

CVE-2022-49812 | Linux Kernel up to 5.10.156/5.15.79/6.0.9 VLAN Protocol BR_VLFLAG_ADDED_BY_SWITCHDEV memory leak (Nessus ID 271309)

Vuldb Updates
10 hours 32 minutes ago
A vulnerability labeled as critical has been found in Linux Kernel up to 5.10.156/5.15.79/6.0.9. Impacted is an unknown function of the component VLAN Protocol. The manipulation of the argument BR_VLFLAG_ADDED_BY_SWITCHDEV results in memory leak. This vulnerability is known as CVE-2022-49812. Access to the local network is required for this attack. No exploit is available. The affected component should be upgraded.
vuldb.com

CVE-2022-49838 | Linux Kernel up to 5.10.155/5.15.80/6.0.9 lib/list_debug.c sctp_sched_fcfs_dequeue denial of service (Nessus ID 271309 / WID-SEC-2025-0922)

Vuldb Updates
10 hours 32 minutes ago
A vulnerability was found in Linux Kernel up to 5.10.155/5.15.80/6.0.9. It has been classified as critical. This vulnerability affects the function sctp_sched_fcfs_dequeue in the library lib/list_debug.c. Performing manipulation results in denial of service. This vulnerability is cataloged as CVE-2022-49838. The attack must originate from the local network. There is no exploit available. Upgrading the affected component is recommended.
vuldb.com

CVE-2022-49877 | Linux Kernel up to 5.4.224/5.10.154/5.15.78/6.0.8 net/core/stream.c sk_stream_kill_queues state issue (Nessus ID 271309 / WID-SEC-2025-0922)

Vuldb Updates
10 hours 32 minutes ago
A vulnerability was found in Linux Kernel up to 5.4.224/5.10.154/5.15.78/6.0.8. It has been declared as problematic. Affected by this issue is the function sk_stream_kill_queues of the file net/core/stream.c. Such manipulation leads to state issue. This vulnerability is documented as CVE-2022-49877. The attack requires being on the local network. There is not any exploit available. It is recommended to upgrade the affected component.
vuldb.com

Managed ad