Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability (CVE-2025-24054)
CVE-2025-24054 is a vulnerability involving NTLM hash disclosure through spoofing, triggered by specially crafted .library-ms files.
Read MoreSecurity Vulnerabilities
The latest Security Vulnerabilities
Path traversal vulnerability in Commvault Command Center Innovation Release (CVE-2025-34028)
A critical security vulnerability has been identified in the Commvault Command Center installation, allowing remote attackers to execute arbitrary code without authentication.
Read More
SAP NetWeaver Visual Composer Metadata Uploader High Risk Vulnerability (CVE-2025-31324)
This vulnerability affects the platform’s visual composer, it lets a remote and unauthenticated attacker upload malicious files directly to the system without authorisation.
Read MoreSonicWALL Connect Tunnel Link Following Denial-of-Service Vulnerability (CVE-2025-32817)
CVE-2025-32817 – This vulnerability allows local attackers to create a denial-of-service condition on affected installations of SonicWALL Connect Tunnel.
Read More
Unauthenticated Remote Code Execution in Erlang/OTP SSH (CVE-2025-32433)
A serious vulnerability (CVE-2025-32433) has been identified in the Erlang/OTP SSH server that may allow an attacker to perform unauthenticated remote code execution (RCE).
Read More
Multiple Cisco Products Unauthenticated Remote Code Execution in Erlang/OTP SSH Server (CVE-2025-32433)
On April 16th 2025, a critical vulnerability in the Erlang/OTP SSH server was disclosed. This vulnerability could allow an unauthenticated, remote attacker to perform remote code execution (RCE) on an affected device.
Read MoreCisco Webex App Client-Side Remote Code Execution Vulnerability (CVE-2025-20236)
A vulnerability in the custom URL parser of Cisco Webex App could allow an unauthenticated, remote attacker to persuade a user to download arbitrary files, which could allow the attacker to execute arbitrary commands on the host of the targeted user.
Read More
SonicWall Authenticated SMA100 Arbitrary Command Injection Vulnerability Is Been Exploited (CVE-2021-20035)
CVE number – CVE-2021-20035 Improper neutralization of special elements in the SMA100 management interface allows a remote authenticated attacker to
Read More
Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability (CVE-2025-24054)
CVE number = CVE-2025-24054 This is a spoofing vulnerability involving the Windows New Technology LAN Manager (NTLM) hash, which Microsoft
Read MoreCisco Nexus Dashboard LDAP Username Enumeration Vulnerability (CVE-2025-20150)
CVE-2025-20150 – A vulnerability in Cisco Nexus Dashboard could allow an unauthenticated, remote attacker to enumerate LDAP user accounts.
Read More