Aggregator

Active Directory is one of the most vulnerable access points in an organization's IT environment. Companies cannot wait for a real attack to pressure-test their AD recovery strategy.

NVISO discovered new variants of the BRICKSTORM backdoor, initially designed for Linux, on Windows systems

攻击者可利用它们在受影响设备上执行任意代码或绕过安全保护机制。

Key Points Introduction NTLM (New Technology LAN Manager) is a suite of authentication protocols developed by Microsoft to verify user identities and protect the integrity and confidentiality of network communications. NTLM operates through a direct client-server exchange known as the NTLM challenge/response mechanism, in which the server challenges the client to prove its identity without […]

The post CVE-2025-24054, NTLM Exploit in the Wild appeared first on Check Point Research.

Submit #553645 / VDB-305076

Submit #553631 / VDB-305075

APT-группа шлёт фальшивые документы с реальных адресов.

The Trump Administration is ending funding for MITRE's crucial CVE database program, a move that promises to hobble cybersecurity efforts around the world. However, CVE Board members introduce a new nonprofit organizations free of government funding and oversight.

The post CISA at the Last Minute Extends Funding for Crucial MITRE CVE Program appeared first on Security Boulevard.

Submit #553627 / VDB-305074

APT29 (aka Cozy Bear, aka Midnight Blizzard) is, once again, targeting European diplomats with fake invitations to wine-tasting events, Check Point researchers have shared. Cozy Bear uses wine-tastings and dinners as a lure In early 2024, Zscaler flagged a low-volume phishing campaign aimed at delivering the WINELOADER backdoor to European diplomats. The lure was a PDF file containing a fake invitation letter supposedly send by the Ambassador of India, inviting diplomats to a wine-tasting event. … More →

The post Cozy Bear targets EU diplomats with wine-tasting invites (again) appeared first on Help Net Security.

Submit #552816 / VDB-305073

Submit #552815 / VDB-305072

Submit #552814 / VDB-305071

Submit #552808 / VDB-305070

Submit #552796 / VDB-305069

Oracle addresses 171 CVEs in its second quarterly update of 2025 with 378 patches, including 40 critical updates.

Background

On April 15, Oracle released its Critical Patch Update (CPU) for April 2025, the second quarterly update of the year. This CPU contains fixes for 171 unique CVEs in 378 security updates across 32 Oracle product families. Out of the 378 security updates published this quarter, 10.6% of patches were assigned a critical severity. Medium severity patches accounted for the bulk of security patches at 54.5%, followed by high severity patches at 32.3%.

This quarter’s update includes 40 critical patches across 15 CVEs.

SeverityIssues PatchedCVEsCritical4015High12252Medium20698Low106Total378171Analysis

This quarter, the Oracle SQL Developer product family contained the highest number of patches at 103, accounting for 27.3% of the total patches, followed by Oracle Hyperion at 43 patches, which accounted for 11.4% of the total patches.

A full breakdown of the patches for this quarter can be seen in the following table, which also includes a count of vulnerabilities that can be exploited over a network without authentication.

Oracle Product FamilyNumber of PatchesRemote Exploit without AuthOracle SQL Developer10382Oracle Hyperion432Oracle Secure Backup4235Oracle Communications3422Oracle E-Business Suite3126Oracle Commerce1611Oracle Enterprise Manager1511Oracle JD Edwards1111Oracle Hospitality Applications85Oracle Database Server73Oracle TimesTen In-Memory Database76Oracle REST Data Services65Oracle Analytics65Oracle Essbase42Oracle Communications Applications44Oracle Insurance Applications41Oracle MySQL42Oracle Policy Automation44Oracle Construction and Engineering32Oracle Financial Services Applications32Oracle Food and Beverage Applications32Oracle Java SE33Oracle PeopleSoft32Oracle Supply Chain30Oracle NoSQL Database22Oracle Retail Applications20Oracle Siebel CRM22Oracle Application Express11Oracle Autonomous Health Framework10Oracle GoldenGate11Oracle Graph Server and Client10Oracle Fusion Middleware11Solution

Customers are advised to apply all relevant patches in this quarter’s CPU. Please refer to the April 2025 advisory for full details.

Identifying affected systems

A list of Tenable plugins to identify these vulnerabilities will appear here as they’re released. This link uses a search filter to ensure that all matching plugin coverage will appear as it is released.

Get more information

• Oracle Critical Patch Update Advisory - April 2025
• Oracle April 2025 Critical Patch Update Risk Matrices
• Oracle Advisory to CVE Map

Join Tenable's Security Response Team on the Tenable Community.
Learn more about Tenable One, the Exposure Management Platform for the modern attack surface.

Oracle addresses 171 CVEs in its second quarterly update of 2025 with 378 patches, including 40 critical updates.

Background

On April 15, Oracle released its Critical Patch Update (CPU) for April 2025, the second quarterly update of the year. This CPU contains fixes for 171 unique CVEs in 378 security updates across 32 Oracle product families. Out of the 378 security updates published this quarter, 10.6% of patches were assigned a critical severity. Medium severity patches accounted for the bulk of security patches at 54.5%, followed by high severity patches at 32.3%.

This quarter’s update includes 40 critical patches across 15 CVEs.

Severity Issues Patched CVEs Critical 40 15 High 122 52 Medium 206 98 Low 10 6 Total 378 171 Analysis

This quarter, the Oracle SQL Developer product family contained the highest number of patches at 103, accounting for 27.3% of the total patches, followed by Oracle Hyperion at 43 patches, which accounted for 11.4% of the total patches.

A full breakdown of the patches for this quarter can be seen in the following table, which also includes a count of vulnerabilities that can be exploited over a network without authentication.

Oracle Product Family Number of Patches Remote Exploit without Auth Oracle SQL Developer 103 82 Oracle Hyperion 43 2 Oracle Secure Backup 42 35 Oracle Communications 34 22 Oracle E-Business Suite 31 26 Oracle Commerce 16 11 Oracle Enterprise Manager 15 11 Oracle JD Edwards 11 11 Oracle Hospitality Applications 8 5 Oracle Database Server 7 3 Oracle TimesTen In-Memory Database 7 6 Oracle REST Data Services 6 5 Oracle Analytics 6 5 Oracle Essbase 4 2 Oracle Communications Applications 4 4 Oracle Insurance Applications 4 1 Oracle MySQL 4 2 Oracle Policy Automation 4 4 Oracle Construction and Engineering 3 2 Oracle Financial Services Applications 3 2 Oracle Food and Beverage Applications 3 2 Oracle Java SE 3 3 Oracle PeopleSoft 3 2 Oracle Supply Chain 3 0 Oracle NoSQL Database 2 2 Oracle Retail Applications 2 0 Oracle Siebel CRM 2 2 Oracle Application Express 1 1 Oracle Autonomous Health Framework 1 0 Oracle GoldenGate 1 1 Oracle Graph Server and Client 1 0 Oracle Fusion Middleware 1 1 Solution

Customers are advised to apply all relevant patches in this quarter’s CPU. Please refer to the April 2025 advisory for full details.

Identifying affected systems

A list of Tenable plugins to identify these vulnerabilities will appear here as they’re released. This link uses a search filter to ensure that all matching plugin coverage will appear as it is released.

Get more information

• Oracle Critical Patch Update Advisory - April 2025
• Oracle April 2025 Critical Patch Update Risk Matrices
• Oracle Advisory to CVE Map

Join Tenable's Security Response Team on the Tenable Community.
Learn more about Tenable One, the Exposure Management Platform for the modern attack surface.

The post Oracle April 2025 Critical Patch Update Addresses 171 CVEs appeared first on Security Boulevard.

Premium Packages 是一款免费的全功能 WordPress 电子商务插件，可轻松销售数字产品。

Struggling with proprietary identity solutions? This comprehensive guide explores how open source CIAM platforms offer enterprises transparency, flexibility, & cost control while maintaining robust security. Compare leading solutions and discover which best balances security and customer experience.

The post Open Source CIAM: A Practical Guide for the Modern Enterprise appeared first on Security Boulevard.