Aggregator

CVE-2025-43559 | Adobe ColdFusion up to 2021.19/2023.13/2025.1 input validation (apsb25-52 / EUVD-2025-14518)

2 months 1 week ago

A vulnerability classified as critical has been found in Adobe ColdFusion up to 2021.19/2023.13/2025.1. This affects an unknown part. The manipulation leads to improper input validation. This vulnerability is uniquely identified as CVE-2025-43559. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2025-53820 | LabRedesCefetRJ WeGIA up to 3.4.4 index.php erro cross site scripting (EUVD-2025-21391)

Vuldb Updates

2 months 1 week ago

A vulnerability was found in LabRedesCefetRJ WeGIA up to 3.4.4. It has been classified as problematic. This affects an unknown part of the file index.php. The manipulation of the argument erro leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-53820. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2006-1770 | Azerbaijan AzDGVote 1.0 vote.php int_path file inclusion (EDB-27615 / XFDB-25762)

Vuldb Updates

2 months 1 week ago

A vulnerability was found in Azerbaijan AzDGVote 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file vote.php. The manipulation of the argument int_path leads to file inclusion. This vulnerability is handled as CVE-2006-1770. The attack may be launched remotely. Furthermore, there is an exploit available.

vuldb.com

Qilin

Dark Feed IO

2 months 1 week ago

You must login to view this content

cohenido

CVE-2025-22041 | Linux Kernel up to 6.1.133/6.6.86/6.12.22/6.13.10/6.14.1 ksmbd_sessions_deregister use after free (Nessus ID 234884 / WID-SEC-2025-0844)

Vuldb Updates

2 months 1 week ago

A vulnerability classified as critical has been found in Linux Kernel up to 6.1.133/6.6.86/6.12.22/6.13.10/6.14.1. Affected is the function ksmbd_sessions_deregister. The manipulation leads to use after free. This vulnerability is traded as CVE-2025-22041. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2025-22051 | Linux Kernel up to 6.13.10/6.14.1 gpib usb_dev null pointer dereference (Nessus ID 240657 / WID-SEC-2025-0844)

Vuldb Updates

2 months 1 week ago

A vulnerability was found in Linux Kernel up to 6.13.10/6.14.1. It has been classified as critical. This affects the function usb_dev of the component gpib. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2025-22051. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2025-22033 | Linux Kernel up to 6.1.133/6.6.86/6.12.22/6.13.10/6.14.1 Virtual Address do_compat_alignment_fixup null pointer dereference (Nessus ID 234884 / WID-SEC-2025-0844)

Vuldb Updates

2 months 1 week ago

A vulnerability was found in Linux Kernel up to 6.1.133/6.6.86/6.12.22/6.13.10/6.14.1 and classified as critical. Affected by this issue is the function do_compat_alignment_fixup of the component Virtual Address Handler. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2025-22033. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2025-22038 | Linux Kernel up to 6.1.133/6.6.86/6.12.22/6.13.10/6.14.1 ksmbd num_subauth out-of-bounds (Nessus ID 234884 / WID-SEC-2025-0844)

Vuldb Updates

2 months 1 week ago

A vulnerability was found in Linux Kernel up to 6.1.133/6.6.86/6.12.22/6.13.10/6.14.1 and classified as problematic. Affected by this issue is the function num_subauth of the component ksmbd. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2025-22038. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2025-22036 | Linux Kernel up to 6.12.22/6.13.10/6.14.1 exfat block_read_full_folio race condition (Nessus ID 237088 / WID-SEC-2025-0844)

Vuldb Updates

2 months 1 week ago

A vulnerability was found in Linux Kernel up to 6.12.22/6.13.10/6.14.1 and classified as problematic. This issue affects the function block_read_full_folio of the component exfat. The manipulation leads to race condition. The identification of this vulnerability is CVE-2025-22036. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2025-22030 | Linux Kernel up to 6.12.22/6.13.10/6.14.1 zswap crypto_free_acomp acomp_ctx initialization (Nessus ID 240657 / WID-SEC-2025-0844)

Vuldb Updates

2 months 1 week ago

A vulnerability has been found in Linux Kernel up to 6.12.22/6.13.10/6.14.1 and classified as problematic. Affected by this vulnerability is the function crypto_free_acomp of the component zswap. The manipulation of the argument acomp_ctx leads to improper initialization. This vulnerability is known as CVE-2025-22030. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2025-22031 | Linux Kernel up to 6.13.10/6.14.1 bwctrl pci_bus null pointer dereference (Nessus ID 240657 / WID-SEC-2025-0844)

Vuldb Updates

2 months 1 week ago

A vulnerability was found in Linux Kernel up to 6.13.10/6.14.1. It has been rated as critical. This issue affects the function pci_bus of the component bwctrl. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2025-22031. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2025-22028 | Linux Kernel up to 6.12.22/6.13.10/6.14.1 vimc v4l2-subdev.c s_stream privilege escalation (Nessus ID 240657 / WID-SEC-2025-0844)

Vuldb Updates

2 months 1 week ago

A vulnerability classified as problematic was found in Linux Kernel up to 6.12.22/6.13.10/6.14.1. Affected by this vulnerability is the function s_stream of the file drivers/media/v4l2-core/v4l2-subdev.c of the component vimc. The manipulation leads to privilege escalation. This vulnerability is known as CVE-2025-22028. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2025-22029 | Linux Kernel up to 6.6.86/6.12.22/6.13.10/6.14.1 fs/exec.c check_unsafe_exec privilege escalation (Nessus ID 237088 / WID-SEC-2025-0844)

Vuldb Updates

2 months 1 week ago

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.6.86/6.12.22/6.13.10/6.14.1. Affected is the function check_unsafe_exec of the file fs/exec.c. The manipulation leads to privilege escalation. This vulnerability is traded as CVE-2025-22029. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2025-22026 | Linux Kernel up to 6.14.1 nfsd svc_proc_register return value (Nessus ID 240657 / WID-SEC-2025-0844)

Vuldb Updates

2 months 1 week ago

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.14.1. This issue affects the function svc_proc_register of the component nfsd. The manipulation leads to unchecked return value. The identification of this vulnerability is CVE-2025-22026. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

vuldb.com

2025-07-08: Koi Loader/Koi Stealer infection

Malware Traffic Analysis Net

2 months 1 week ago

Threat Attack Daily - 14th of July 2025

Dark Web Informer - Cyber Threat Intelligence

2 months 1 week ago

Threat Attack Daily - 14th of July 2025

Dark Web Informer - Cyber Threat Intelligence

Ransomware Attack Update for the 14th of July 2025

Dark Web Informer - Cyber Threat Intelligence

2 months 1 week ago

Ransomware Attack Update for the 14th of July 2025

Dark Web Informer - Cyber Threat Intelligence

House passes bill to formalize NTIA’s cyber role following Salt Typhoon attacks

CyberScoop

2 months 1 week ago

The bipartisan legislation would codify the agency’s position as the one in charge of coordinating responses to incidents like the breach on U.S. telecoms.

The post House passes bill to formalize NTIA’s cyber role following Salt Typhoon attacks appeared first on CyberScoop.

mbracken

CitrixBleed 2 beckons sweeping alarm as exploits spread across the globe

CyberScoop

2 months 1 week ago

The number of Citrix customers impacted by CVE-2025-5777 remains unknown, but researchers have already observed more than 11.5 million attack attempts, targeting thousands of sites.

The post CitrixBleed 2 beckons sweeping alarm as exploits spread across the globe appeared first on CyberScoop.

Matt Kapko

CVE-2024-29855 | Veeam Recovery Orchestrator prior 7.0.0.379/7.1.0.230 improper authentication (kb4585)

Vuldb Updates

2 months 1 week ago

A vulnerability was found in Veeam Recovery Orchestrator. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper authentication. This vulnerability is known as CVE-2024-29855. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

vuldb.com

Aggregator

Managed ad