Security Vulnerabilities

The latest Security Vulnerabilities

NewsSecurity Vulnerabilities

Parallels Desktop Technical Data Reporter Link Following Local Privilege Escalation Vulnerability (CVE-2025-0413)

CVE-2025-0413 – This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop.

Read More
NewsSecurity Vulnerabilities

Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance Vulnerabilities

CVE numbers CVE-2025-20184 and CVE-2025-20185. Multiple vulnerabilities in Cisco AsyncOS Software for Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance could allow an attacker to execute arbitrary commands locally or remotely.

Read More
NewsSecurity Vulnerabilities

Cisco NX-OS Software Image Verification Bypass Vulnerability (CVE-2024-20397)

CVE number = CVE-2024-20397 – A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker with physical access to an affected device, or an authenticated, local attacker with administrative credentials, to bypass NX-OS image signature verification.

Read More
NewsSecurity Vulnerabilities

Cisco Identity Services Engine Insecure Java Deserialization and Authorization Bypass Vulnerabilities (CVE-2025-20124)

CVE numbers CVE-2025-20124 and CVE-2025-20125 – Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands and elevate privileges on an affected device.

Read More
NewsSecurity Vulnerabilities

TeamViewer Improper Neutralization of Argument Delimiters Local Privilege Escalation Vulnerability (CVE-2025-0065)

CVE-2025-0065 – This vulnerability allows local attackers to escalate privileges on affected installations of TeamViewer.

Read More
NewsSecurity Vulnerabilities

Google Chrome AI Manager Use-After-Free Remote Code Execution Vulnerability (CVE-2024-9954)

CVE-2024-9954 – This vulnerability allows remote attackers to execute arbitrary code on affected installations of Google Chrome.

Read More
NewsSecurity Vulnerabilities

Hyperbridge critical vulnerability (CVE-2025-24800)

A critical vulnerability was discovered in the ismp-grandpa crate, that allowed a malicious prover easily convince the verifier of the finality of arbitrary headers.

Read More
NewsSecurity Vulnerabilities

WordPress WP Go Maps Plugin is vulnerable to Cross Site Request Forgery (CVE-2025-24742)

CVE-2025-24742 – There is a Cross-Site Request Forgery (CSRF) vulnerability in WP Go Maps (formerly WP Google Maps) WP Go Maps.

Read More
NewsSecurity Vulnerabilities

Cisco BroadWorks SIP Denial of Service Vulnerability (CVE-2025-20165)

A vulnerability in the SIP processing subsystem of Cisco BroadWorks could allow an unauthenticated, remote attacker to halt the processing of incoming SIP requests, resulting in a denial of service (DoS) condition.

Read More
NewsSecurity Vulnerabilities

Cisco Meeting Management REST API Privilege Escalation Vulnerability (CVE-2025-20156)

A vulnerability in the REST API of Cisco Meeting Management could allow a remote, authenticated attacker with low privileges to elevate privileges to administrator on an affected device.

Read More