Security Vulnerabilities

The latest Security Vulnerabilities

NewsSecurity Vulnerabilities

Ivanti Endpoint Manager EFile Directory Traversal Remote Code Execution Vulnerability (CVE-2025-9712)

Luke Simmonds 1091 Views 0 Comments 0 min read

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager.

Read More
NewsSecurity Vulnerabilities

Linux Kernel ksmbd generate_key context.iov_base Null Pointer Dereference Denial-of-Service Vulnerability (CVE-2025-38562)

Luke Simmonds 1171 Views 0 Comments 0 min read

– This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of the Linux Kernel.

Read More
NewsSecurity Vulnerabilities

Fortinet FortiWeb _cmf_get_config_file_path Directory Traversal Information Disclosure Vulnerability (CVE-2025-53609)

Jason Davies 1286 Views 0 Comments 0 min read

– This vulnerability allows remote attackers to disclose sensitive information on affected installations of Fortinet FortiWeb.

Read More
NewsSecurity Vulnerabilities

Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability

Jason Davies 983 Views 0 Comments 0 min read

– A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow an authenticated, remote attacker to execute arbitrary code on an affected device.

Read More
NewsSecurity Vulnerabilities

Multiple Cisco products affected by Remote Code Execution Vulnerability (CVE-2025-20363)

Luke Simmonds 958 Views 0 Comments 1 min read

– This vulnerability is due to improper validation of user-supplied input in HTTP requests.

Read More
NewsSecurity Vulnerabilities

Apple macOS OGG Audio File Header Parsing Memory Corruption Remote Code Execution Vulnerability (CVE-2025-43346)

Jason Davies 1157 Views 0 Comments 0 min read

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS.

Read More
NewsSecurity Vulnerabilities

Apple Safari IPC Connection Invalidation Use-After-Free Information Disclosure Vulnerability (CVE-2025-43368)

Luke Simmonds 956 Views 0 Comments 0 min read

CVE number = CVE-2025-43368 This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple Safari. User

Read More
NewsSecurity Vulnerabilities

Digilent WaveForms DWF3WORK File Parsing Directory Traversal Remote Code Execution Vulnerability (CVE-2025-10203)

Luke Simmonds 1029 Views 0 Comments 0 min read

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Digilent WaveForms.

Read More
NewsSecurity Vulnerabilities

Palo Alto User-ID Credential Agent: Cleartext Exposure of Service Account password (CVE-2025-4235)

Jason Davies 1085 Views 0 Comments 1 min read

– An information exposure vulnerability in the Palo Alto Networks User-ID Credential Agent (Windows-based) can expose the service account password under specific non-default configurations.

Read More
NewsSecurity Vulnerabilities

Microsoft .NET IsTypeAuthorized Deserialization of Untrusted Data Denial-of-Service Vulnerability

Jason Davies 1095 Views 0 Comments 0 min read

– This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Microsoft .NET.

Read More