Aggregator

A vulnerability classified as critical has been found in Fortinet FortiWeb, FortiOS and FortiProxy. Affected is an unknown function of the component Node.js Websocket Module. The manipulation leads to improper privilege management. This vulnerability is traded as CVE-2025-22254. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Fortinet FortiOS up to 6.4.16/7.0.17/7.2.11/7.4.7/7.6.0. It has been rated as problematic. This issue affects some unknown processing of the component SSL-VPN. The manipulation leads to information disclosure. The identification of this vulnerability is CVE-2025-25250. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

AI-powered programming tools are rapidly gaining popularity, and one of the most prominent—Cursor—has introduced a new YOLO mode (short for “you only live once”) that enables its agent to execute complex sequences of actions...

The post Cursor AI’s “YOLO Mode” Exposed: Security Firm Warns of Easy Bypasses, Data Deletion, and RCE Risks appeared first on Penetration Testing Tools.

Microsoft Sentinel Data Lake aims to provide inexpensive storage for large volumes of telemetry, while threat intelligence will be included with Defender XDR at no extra cost.

Following a wave of criticism sparked by a recent ProPublica report alleging that Microsoft had engaged engineers based in China to support cloud systems tied to the U.S. Department of Defense, the company has...

The post Microsoft Halts China-Based Support for US DoD Cloud After ProPublica Expose & Pentagon Backlash appeared first on Penetration Testing Tools.

This daily article is intended to make it easier for those who want to stay updated with my regular Dark Web Informer and X/Twitter posts.

A vulnerability was found in Fortinet FortiSIEM up to 6.7.4. It has been rated as problematic. Affected by this issue is some unknown functionality of the component API Request Handler. The manipulation leads to information disclosure. This vulnerability is handled as CVE-2023-40723. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Fortinet FortiNDR up to 1.5.3/7.0.5/7.1.1/7.2.1/7.4.0 and classified as problematic. Affected by this issue is some unknown functionality of the component HTTP GET Request Handler. The manipulation leads to cross-site request forgery. This vulnerability is handled as CVE-2023-48790. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Fortinet FortiADC up to 7.4.0. It has been declared as problematic. This vulnerability affects unknown code of the component HTTPS Request Handler. The manipulation leads to cross site scripting. This vulnerability was named CVE-2023-37933. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Fortinet FortiWeb up to 7.0.10/7.2.10/7.4.7. This affects an unknown part of the component HTTPS Request Handler. The manipulation leads to improper handling of syntactically invalid structure. This vulnerability is uniquely identified as CVE-2023-42784. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Apple has announced that, effective immediately, users in South Korea can add the widely used Tmoney transit card to their Apple Wallet. With this integration, commuters can effortlessly ride subways, buses, and other public...

The post Apple Wallet Now Supports Tmoney: South Korea Commuters Tap to Pay with iPhone & Apple Watch appeared first on Penetration Testing Tools.

Threat Attack Daily - 22nd of July 2025

Ransomware Attack Update for the 22nd of July 2025

Coyote Trojan becomes first malware to abuse Microsoft’s UI Automation in real attacks, targeting banks and crypto platforms with stealthy tactics.

The Lumma infostealer malware operation is gradually resuming activities following a massive law enforcement operation in May, which resulted in the seizure of 2,300 domains and parts of its infrastructure. [...]

Hackers and cybercrime groups are part of a virtual feeding frenzy, after Microsoft's recent disclosure of new vulnerabilities in on-premises editions of SharePoint Server.

A program manager at Lawrence Livermore National Laboratory told lawmakers Tuesday that the recent contract expiration puts OT security at risk.

The post Contract lapse leaves critical infrastructure cybersecurity sensor data unanalyzed at national lab  appeared first on CyberScoop.

A vulnerability classified as problematic was found in Dave Gamble cJSON Library up to 1.7.6. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper resource management. This vulnerability is known as CVE-2018-1000215. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Dave Gamble cJSON Library up to 1.7.2. Affected by this issue is some unknown functionality. The manipulation as part of JSON Data leads to double free. This vulnerability is handled as CVE-2018-1000216. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Dave Gamble cJSON Library up to 1.7.3. This affects an unknown part. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2018-1000217. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.