Security Vulnerabilities

Elevation of Privilege Vulnerability in Visual Studio (CVE-2025-29813)

May 12, 2025 Jason Davies 83 Views 0 Comments CVE-2025-29813, Elevation of Privilege Vulnerability, Microsoft, Microsoft Visual Studio 0 min read

An elevation of privilege vulnerability exists when Visual Studio improperly handles pipeline job tokens.

News Security Vulnerabilities

Cisco Catalyst SD-WAN Manager Arbitrary File Overwrite Vulnerability (CVE-2025-20213)

May 9, 2025 Jason Davies 200 Views 0 Comments Arbitrary File Overwrite Vulnerability, Cisco, Cisco Catalyst SD-WAN, CVE-2025-20213, Cyber Security 1 min read

A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, local attacker to overwrite arbitrary files on the local file system of an affected device.

News Security Vulnerabilities

Out of bounds write vulnerability in FreeType versions 2.13.0 and below (CVE-2025-27363)

May 8, 2025 Luke Simmonds 148 Views 0 Comments CVE-2025-27363, Cyber Security, FreeType, Out-of-Bounds Write Vulnerability 0 min read

An out of bounds write exists in FreeType versions 2.13.0 and below (newer versions of FreeType are not vulnerable) when attempting to parse font subglyph structures related to TrueType GX and variable font files.

News Security Vulnerabilities

Cisco IOS XE Wireless Controller Software Arbitrary File Upload Vulnerability (CVE-2025-20188)

May 8, 2025 Luke Simmonds 258 Views 0 Comments Cisco, Cisco IOS XE, CVE-2025-20188, File Upload Vulnerability 1 min read

CVE number = CVE-2025-20188 A vulnerability in the Out-of-Band Access Point (AP) Image Download feature of Cisco IOS XE Software

News Security Vulnerabilities

Cisco IOS XE SNMP OID Handling Out-Of-Bounds Read Denial-of-Service Vulnerability (CVE-2025-20172)

May 6, 2025 Jason Davies 164 Views 0 Comments Cisco, Cisco IOS XE, CVE-2025-20172, Cyber Security, DoS Vulnerability 0 min read

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Cisco IOS XE.

News Security Vulnerabilities

Apache Parquet Java – Potential malicious code execution from trusted packages (CVE-2025-46762)

May 5, 2025 Jason Davies 168 Views 0 Comments Apache, Apache Parquet Java, CVE-2025-46762, Cyber Security 0 min read

Schema parsing in the parquet-avro module of Apache Parquet 1.15.0 and previous versions allows bad actors to execute arbitrary code.

News Security Vulnerabilities

Cisco IOS XE SNMP GET-NEXT ciscoFlashFileSize Unexpected Sign Extension Denial-of-Service Vulnerability (CVE-2025-20169)

May 5, 2025 Jason Davies 160 Views 0 Comments Cisco, Cisco IOS XE, CVE-2025-20169, Cyber Security, DoS Vulnerability 0 min read

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Cisco IOS XE.

News Security Vulnerabilities

Synology BeeStation BST150-4T Unnecessary Privileges Remote Code Execution Vulnerability (CVE-2024-10445)

May 2, 2025 Luke Simmonds 202 Views 0 Comments CVE-2024-10445, Cyber Security, Remote Code Execution Vulnerability, Synology NAS 0 min read

CVE number = CVE-2024-10445 This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Synology BeeStation BST150-4T

News Security Vulnerabilities

Apache ActiveMQ NMS Body Deserialization of Untrusted Data Remote Code Execution Vulnerability (CVE-2025-29953)

May 2, 2025 Jason Davies 205 Views 0 Comments Apache, Apache ActiveMQ, CVE-2025-29953, Cyber Security, Remote Code Execution Vulnerability 0 min read

CVE-2025-29953 – This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apache ActiveMQ NMS.

News Security Vulnerabilities

Oracle VirtualBox OHCI USB Controller Race Condition Local Privilege Escalation Vulnerability (CVE-2024-21113)

May 1, 2025 Jason Davies 182 Views 0 Comments CVE-2024-21113, Cyber Security, Local Privilege Escalation, Oracle VirtualBox 0 min read

CVE-2024-21113 – This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox.

← Previous

Elevation of Privilege Vulnerability in Visual Studio (CVE-2025-29813)

Like this:

Cisco Catalyst SD-WAN Manager Arbitrary File Overwrite Vulnerability (CVE-2025-20213)

Like this:

Out of bounds write vulnerability in FreeType versions 2.13.0 and below (CVE-2025-27363)

Like this:

Cisco IOS XE Wireless Controller Software Arbitrary File Upload Vulnerability (CVE-2025-20188)

Like this:

Cisco IOS XE SNMP OID Handling Out-Of-Bounds Read Denial-of-Service Vulnerability (CVE-2025-20172)

Like this:

Apache Parquet Java – Potential malicious code execution from trusted packages (CVE-2025-46762)

Like this:

Cisco IOS XE SNMP GET-NEXT ciscoFlashFileSize Unexpected Sign Extension Denial-of-Service Vulnerability (CVE-2025-20169)

Like this:

Synology BeeStation BST150-4T Unnecessary Privileges Remote Code Execution Vulnerability (CVE-2024-10445)

Like this:

Apache ActiveMQ NMS Body Deserialization of Untrusted Data Remote Code Execution Vulnerability (CVE-2025-29953)

Like this:

Oracle VirtualBox OHCI USB Controller Race Condition Local Privilege Escalation Vulnerability (CVE-2024-21113)

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this:

Share this:

Like this: